14 DAY TRIAL // Canonical published details about OpenStack Keystone vulnerabilities, in a security notice, for its Ubuntu 12.10 (Raring Ringtail) operating system.
According to Canonical, Keystone would allow unintended access over the network, in certain conditions.
It was discovered that Keystone would not always perform all verification checks, when configured to use PKI.
If the keystone server was configured to use PKI and services, or users requested online verification, an attacker could have potentially exploited this problem in order to bypass the revocation checks.
For a more detailed description of the security problems, you can visit Canonical's security notification.
The security flaws can be fixed if you upgrade your system(s) to the latest python-keystone package, specific to each distribution. To apply the update, run the Update Manager application.
In general, a standard system update will make all the necessary changes. A system restart will not be necessary to implement the changes.