ReleaseNotes/2014.2.1

= Release Notes, 2014.2.1 =

The 2014.2.1 release is a Juno bugfix update for OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat), OpenStack Telemetry (Ceilometer) and OpenStack Data Processing (Sahara).

OpenStack Database Service (Trove) did not have stable/juno fixes at this time and will skip 2014.2.1 release.

The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a low risk update with no intentional regressions or API changes.

OpenStack Compute (Nova)

 * OSSA 2014-038 / CVE-2014-3708 - List instances by IP results in DoS of nova-network

OpenStack Networking (Neutron)

 * OSSA 2014-039 / CVE-2014-7821 - Maliciously crafted dns_nameservers will crash neutron

Bugs Fixed
In total, 123 bugs are fixed by this update.


 * List of OpenStack Compute (Nova) bugs fixed in the 2014.2.1 release
 * List of OpenStack Identity (Keystone) bugs fixed in the 2014.2.1 release
 * List of OpenStack Image Registry and Delivery Service (Glance) bugs fixed in the 2014.2.1 release
 * List of OpenStack Networking (Neutron) bugs fixed in the 2014.2.1 release
 * List of OpenStack Block Storage (Cinder) bugs fixed in the 2014.2.1 release
 * List of OpenStack Dashboard (Horizon) bugs fixed in the 2014.2.1 release
 * List of OpenStack Orchestration (Heat) bugs fixed in the 2014.2.1 release
 * List of OpenStack Telemetry (Ceilometer) bugs fixed in the 2014.2.1 release
 * List of OpenStack Data Processing (Sahara) bugs fixed in the 2014.2.1 release

Cinder

 * Fix for the Eventlet threads not released back to the pool added wsgi_keep_alive option. In order to maintain the backward compatibility default value is True and recommended is to set it to False.