Difference between revisions of "ReleaseNotes/2012.1.1"
m (→Horizon) |
|||
(4 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
− | + | ||
= Release Notes, 2012.1.1 = | = Release Notes, 2012.1.1 = | ||
Line 6: | Line 6: | ||
The bugfixes contained in this release were backported from the development branches into a [[StableBranch|stable branch]]. The release is intended to be a relatively risk free update with no intentional regressions or API changes. | The bugfixes contained in this release were backported from the development branches into a [[StableBranch|stable branch]]. The release is intended to be a relatively risk free update with no intentional regressions or API changes. | ||
− | + | __TOC__ | |
== Bugs Fixed == | == Bugs Fixed == | ||
Line 21: | Line 21: | ||
=== Nova === | === Nova === | ||
− | * [https://lists.launchpad.net/openstack/msg10268.html OSSA | + | * [https://lists.launchpad.net/openstack/msg10268.html OSSA 2012-005]/[https://bugs.launchpad.net/bugs/cve/2012-2101 CVE-2012-2101] - No quota enforced on security group rules (High) |
− | * [https://lists.launchpad.net/openstack/msg12883.html OSSA | + | * [https://lists.launchpad.net/openstack/msg12883.html OSSA 2012-007]/[https://bugs.launchpad.net/bugs/cve/2012-2654 CVE-2012-2654] - Security groups fail to be set correctly (Medium) |
=== Glance === | === Glance === | ||
=== Keystone === | === Keystone === | ||
+ | |||
+ | * [https://lists.launchpad.net/openstack/msg15164.html OSSA 2012-010]/[https://bugs.launchpad.net/bugs/cve/2012-3426 CVE-2012-3426] - Various Keystone token expiration issues (Medium) | ||
=== Horizon === | === Horizon === | ||
− | * [https://lists.launchpad.net/openstack/msg11263.html OSSA | + | * [https://lists.launchpad.net/openstack/msg11263.html OSSA 2012-006]/[https://bugs.launchpad.net/bugs/cve/2012-2144 CVE-2012-2144] - Horizon session fixation and reuse (Critical) |
− | * [https://lists.launchpad.net/openstack/msg10211.html OSSA | + | * [https://lists.launchpad.net/openstack/msg10211.html OSSA 2012-004]/[https://bugs.launchpad.net/bugs/cve/2012-2094 CVE-2012-2094] - XSS vulnerability in Horizon log viewer (High) |
== Known Issues and Limitations == | == Known Issues and Limitations == | ||
Line 43: | Line 45: | ||
=== Horizon === | === Horizon === | ||
+ | |||
+ | |||
+ | |||
+ | [[Category:Releases]] | ||
+ | [[Category:Essex]] |
Latest revision as of 00:23, 23 September 2014
Release Notes, 2012.1.1
The 2012.1.1 release is an Essex bugfix update for Nova, Glance, Keystone and Horizon.
The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a relatively risk free update with no intentional regressions or API changes.
Contents
Bugs Fixed
In total, 73 launchpad bugs are fixed by this update.
- List of Nova bugs fixed in the 2012.1.1 release
- List of Glance bugs fixed in the 2012.1.1 release
- List of Keystone bugs fixed in the 2012.1.1 release
- List of Horizon bugs fixed in the 2012.1.1 release
Resolved Security Issues
Nova
- OSSA 2012-005/CVE-2012-2101 - No quota enforced on security group rules (High)
- OSSA 2012-007/CVE-2012-2654 - Security groups fail to be set correctly (Medium)
Glance
Keystone
- OSSA 2012-010/CVE-2012-3426 - Various Keystone token expiration issues (Medium)
Horizon
- OSSA 2012-006/CVE-2012-2144 - Horizon session fixation and reuse (Critical)
- OSSA 2012-004/CVE-2012-2094 - XSS vulnerability in Horizon log viewer (High)
Known Issues and Limitations
Nova
- Bug 1012717 - After "nova reboot" the instance looses the nova-volume on its xml