PublicDateAtUSN: 2020-05-07 00:15:00 UTC Candidate: CVE-2020-12691 PublicDate: 2020-05-07 00:15:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12691 https://www.openwall.com/lists/oss-security/2020/05/06/5 https://ubuntu.com/security/notices/USN-4480-1 Description: An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any authenticated user can create an EC2 credential for themselves for a project that they have a specified role on, and then perform an update to the credential user and project, allowing them to masquerade as another user. This potentially allows a malicious user to act as the admin on a project another user has the admin role on, which can effectively grant that user global admin privileges. Ubuntu-Description: Notes: mdeslaur> same fix as CVE-2020-12689 Mitigation: Bugs: https://bugs.launchpad.net/keystone/+bug/1872733 Priority: medium Discovered-by: Assigned-to: CVSS: nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [8.8 HIGH] Patches_keystone: upstream: https://opendev.org/openstack/keystone/commit/a405e4b71d7de31e81a01f07e02f189650eb66fe (pike) upstream: https://opendev.org/openstack/keystone/commit/487c7276c7608fb11086b9875b0d7cc7cf594a5a (queens) upstream: https://opendev.org/openstack/keystone/commit/53d1ccb8a1bdbb5aa0efaacf9739b1a6f436e191 (Rocky) upstream_keystone: released (13.0.4,15.0.1,16.0.0) precise/esm_keystone: DNE trusty_keystone: ignored (out of standard support) trusty/esm_keystone: DNE xenial_keystone: ignored (end of standard support, was needed) esm-infra/xenial_keystone: needed bionic_keystone: released (2:13.0.4-0ubuntu1) eoan_keystone: ignored (reached end-of-life) focal_keystone: not-affected (2:17.0.0-0ubuntu0.20.04.1) groovy_keystone: not-affected (2:18.0.0~b2~git2020073017.b187dfd05-0ubuntu1) hirsute_keystone: not-affected (2:18.0.0~b2~git2020073017.b187dfd05-0ubuntu1) impish_keystone: not-affected (2:18.0.0~b2~git2020073017.b187dfd05-0ubuntu1) jammy_keystone: not-affected (2:18.0.0~b2~git2020073017.b187dfd05-0ubuntu1) devel_keystone: not-affected (2:18.0.0~b2~git2020073017.b187dfd05-0ubuntu1)