Kieran Spear

**Name of the Vulnerable Software and Affected Versions** python-keystoneclient versions prior to 0.7.0 **Description** A context confusion issue exists in the Keystone auth token middleware, allowing remote authenticated users to potentially gain privileges under certain circumstances. This is related to a bad interaction between eventlet and python-memcached. By making repeated requests with sufficient load on the target system, an authenticated user may assume another authenticated user's complete identity and multi-tenant authorizations, potentially resulting in privilege escalation. This issue affects keystone middleware setups using auth token with memcache. **Recommendations** For versions prior to 0.7.0, update to version 0.7.0 or later to resolve the issue. As a temporary workaround, consider avoiding the use of memcache with the auth token middleware or restricting the load on the target system to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OpenStack Identity (Keystone) versions 2012.2.x through 2013.1.3 OpenStack Identity (Keystone) version 2013.1.4 is not affected, so the range is limited to before this version. **Description** The issue concerns the mamcache and KVS token backends in OpenStack Identity (Keystone) which do not properly compare the PKI token revocation list with PKI tokens. This allows remote attackers to bypass intended access restrictions via a revoked PKI token. **Recommendations** For OpenStack Identity (Keystone) versions 2012.2.x through 2013.1.3, update to version 2013.1.4 or later to resolve the issue.