Published: 03 November 2014
OpenStack Identity (Keystone) before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID.
Launchpad, Ubuntu, Debian
|Ubuntu 14.04 ESM (Trusty Tahr)||
Does not exist
(trusty was not-affected [1:2014.1.1-0ubuntu1])
Upstream: https://review.openstack.org/#/c/94397/ (icehouse)
OSSA 2014-015 watch for regression mentioned in tracker only icehouse and higher