CVE-2015-3646 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3646): OpenStack Identity (Keystone) before 2014.1.5 and 2014.2.x before 2014.2.4 logs the backend_argument configuration option content, which allows remote authenticated users to obtain passwords and other sensitive backend information by reading the Keystone logs. *keystone-2014.2.3-r2 (05 May 2015) 05 May 2015; Matthew Thode <prometheanfire@gentoo.org> +files/CVE-2015-3646-2014.2.3.patch, +keystone-2014.2.3-r2.ebuild, -keystone-2014.2.3-r1.ebuild: fixing a new cve 0day :D
Closing noglsa for ~arch only.