Search for packages
| purl | pkg:rpm/redhat/python-keystoneclient@1:0.2.3-8?arch=el6ost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 2.7 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-44u3-6h7t-dbah
Aliases: CVE-2014-0105 GHSA-gwvq-rgqf-993f PYSEC-2014-70 |
The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached." | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:48:34.336962+00:00 | RedHat Importer | Affected by | VCID-44u3-6h7t-dbah | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0105.json | 38.0.0 |