Alerts This Week
Warning Icon 1 1,111
Alerts This Week
Warning Icon 1 1,111

Significant Vulnerabilities in OpenStack Keystone on Ubuntu 22.04 LTS

ubuntu
Calendar Grey December 11, 2025
Dist Ubuntu Esm H88
Ubuntu 22.04 LTS has essential updates for OpenStack Keystone addressing security issues. Check for vulnerabilities and patch now!
Several security issues were fixed in OpenStack Keystone.

Summary

Several security issues were fixed in OpenStack Keystone.

Software Description:

- keystone: OpenStack identity service

Details:

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens

and s3tokens APIs. A remote attacker could possibly use this issue to

obtain unauthorized access and escalate privileges. (CVE-2025-65073)

It was discovered that OpenStack Keystone only validated the first 72

bytes of an application secret. An attacker could possibly use this issue

to bypass password complexity. (CVE-2021-3563)

It was discovered that OpenStack Keystone had a time lag before a token

should be revoked by the security policy. A remote administrator could use

this issue to maintain access for longer than expected. (CVE-2022-2447)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
  keystone                        2:21.0.1-0ubuntu2.1
  python3-keystone                2:21.0.1-0ubuntu2.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7926-1

CVE-2021-3563, CVE-2022-2447, CVE-2025-65073

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7926-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here