Candidate: CVE-2012-5483
PublicDate: 2012-12-26 22:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5483
 https://rhn.redhat.com/errata/RHSA-2012-1556.html
Description:
 tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon
 Elastic Compute Cloud (Amazon EC2) is configured, uses world-readable
 permissions for /etc/keystone/ec2rc, which allows local users to obtain
 access to EC2 services by reading administrative access and secret values
 from this file.
Ubuntu-Description:
Notes:
 jdstrand> /etc/keystone permissions protect against this (0700
  keystone:keystone)
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_keystone:
upstream_keystone: needs-triage
hardy_keystone: DNE
lucid_keystone: DNE
oneiric_keystone: not-affected
precise_keystone: not-affected
quantal_keystone: not-affected
devel_keystone: not-affected