Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/python-keystoneclient@0.11.0
purl pkg:pypi/python-keystoneclient@0.11.0
Next non-vulnerable version 1.4.0
Latest non-vulnerable version 1.4.0
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-5st1-zx32-3yfw
Aliases:
CVE-2015-1852
GHSA-p9wq-mjh8-q72m
PYSEC-2015-30
PYSEC-2015-31
The s3_token middleware in OpenStack keystonemiddleware before 1.6.0 and python-keystoneclient before 1.4.0 disables certification verification when the "insecure" option is set in a paste configuration (paste.ini) file regardless of the value, which allows remote attackers to conduct man-in-the-middle attacks via a crafted certificate, a different vulnerability than CVE-2014-7144.
1.4.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-79rs-7766-4ycf OpenStack keystonemiddleware (formerly python-keystoneclient) 0.x before 0.11.0 and 1.x before 1.2.0 disables certification verification when the "insecure" option is set in a paste configuration (paste.ini) file regardless of the value, which allows remote attackers to conduct man-in-the-middle attacks via a crafted certificate. CVE-2014-7144
GHSA-7f2c-vp52-gmfw
PYSEC-2014-26
PYSEC-2014-71

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:53:37.556465+00:00 GitLab Importer Affected by VCID-5st1-zx32-3yfw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2015-1852.yml 38.4.0
2026-04-16T21:52:52.264903+00:00 GitLab Importer Fixing VCID-79rs-7766-4ycf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2014-7144.yml 38.4.0
2026-04-11T23:09:04.665630+00:00 GitLab Importer Affected by VCID-5st1-zx32-3yfw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2015-1852.yml 38.3.0
2026-04-11T23:08:29.224946+00:00 GitLab Importer Fixing VCID-79rs-7766-4ycf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2014-7144.yml 38.3.0
2026-04-04T14:31:32.188132+00:00 GHSA Importer Fixing VCID-79rs-7766-4ycf https://github.com/advisories/GHSA-7f2c-vp52-gmfw 38.1.0
2026-04-02T23:17:46.378400+00:00 GitLab Importer Affected by VCID-5st1-zx32-3yfw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2015-1852.yml 38.1.0
2026-04-02T23:17:04.644141+00:00 GitLab Importer Fixing VCID-79rs-7766-4ycf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2014-7144.yml 38.1.0
2026-04-01T17:37:59.970924+00:00 GitLab Importer Affected by VCID-5st1-zx32-3yfw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2015-1852.yml 38.0.0
2026-04-01T17:37:13.154742+00:00 GitLab Importer Fixing VCID-79rs-7766-4ycf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/python-keystoneclient/CVE-2014-7144.yml 38.0.0
2026-04-01T14:59:19.843612+00:00 PyPI Importer Affected by VCID-5st1-zx32-3yfw https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T14:59:10.996963+00:00 PyPI Importer Fixing VCID-79rs-7766-4ycf https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip 38.0.0
2026-04-01T13:08:58.582553+00:00 GithubOSV Importer Fixing VCID-79rs-7766-4ycf https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-7f2c-vp52-gmfw/GHSA-7f2c-vp52-gmfw.json 38.0.0
2026-04-01T12:41:13.890699+00:00 Pypa Importer Affected by VCID-5st1-zx32-3yfw https://github.com/pypa/advisory-database/blob/main/vulns/python-keystoneclient/PYSEC-2015-31.yaml 38.0.0
2026-04-01T12:41:09.192020+00:00 Pypa Importer Fixing VCID-79rs-7766-4ycf https://github.com/pypa/advisory-database/blob/main/vulns/python-keystoneclient/PYSEC-2014-71.yaml 38.0.0