Difference between revisions of "ReleaseNotes/2012.2.1"
m |
m (added to Releases) |
||
| (One intermediate revision by one other user not shown) | |||
| Line 14: | Line 14: | ||
=== Keystone === | === Keystone === | ||
| − | * [http://lists.openstack.org/pipermail/openstack-announce/2012-November/000056.html OSSA | + | * [http://lists.openstack.org/pipermail/openstack-announce/2012-November/000056.html OSSA 2012-019]/[https://bugs.launchpad.net/keystone/+bug/1079216 CVE-2012-5563] - Extension of token validity through token chaining |
| − | * [http://lists.openstack.org/pipermail/openstack-announce/2012-November/000055.html OSSA | + | * [http://lists.openstack.org/pipermail/openstack-announce/2012-November/000055.html OSSA 2012-019]/[https://bugs.launchpad.net/keystone/+bug/1064914 CVE-2012-5571] - EC2-style credentials invalidation issue |
=== Glance === | === Glance === | ||
| − | * [https://lists.launchpad.net/openstack/msg18466.html OSSA | + | * [https://lists.launchpad.net/openstack/msg18466.html OSSA 2012-017.1]/[https://bugs.launchpad.net/glance/+bug/1065187 CVE-2012-4573]/[https://bugs.launchpad.net/glance/+bug/1076506 CVE-2012-5482] - Authentication bypass for image deletion |
== Bugs Fixed == | == Bugs Fixed == | ||
| Line 41: | Line 41: | ||
* The default of the rpc_control_exchange option for Quantum in this release is 'openstack' rather than 'quantum' - you need to explicitly set it to 'quantum'. See [https://bugs.launchpad.net/quantum/+bug/1083944 bug #1083944] | * The default of the rpc_control_exchange option for Quantum in this release is 'openstack' rather than 'quantum' - you need to explicitly set it to 'quantum'. See [https://bugs.launchpad.net/quantum/+bug/1083944 bug #1083944] | ||
| + | |||
| + | |||
| + | [[Category:Releases]] | ||
| + | [[Category:Folsom]] | ||
Latest revision as of 00:26, 23 September 2014
The 2012.2.1 release is a Folsom bugfix update for Nova, Glance, Cinder, Quantum, Keystone and Horizon.
The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a relatively risk free update with no intentional regressions or API changes.
Contents
Upgrade Notes
- Because of a serious issue with Nova image cache management on shared storage, the image cache manager is now disabled by default. In cases where shared storage isn't in use, it can be re-enabled by setting
image_cache_manager_interval = 40innova.conf. - The 2.1 version of python-quantumclient is required if Nova is configured to use Quantum networking. See this review.
Resolved Security Issues
Keystone
- OSSA 2012-019/CVE-2012-5563 - Extension of token validity through token chaining
- OSSA 2012-019/CVE-2012-5571 - EC2-style credentials invalidation issue
Glance
- OSSA 2012-017.1/CVE-2012-4573/CVE-2012-5482 - Authentication bypass for image deletion
Bugs Fixed
In total, 139 launchpad bugs are fixed by this update.
- List of Nova bugs fixed in the 2012.2 release
- List of Glance bugs fixed in the 2012.2 release
- List of Cinder bugs fixed in the 2012.2 release
- List of Quantum bugs fixed in the 2012.2 release
- List of Keystone bugs fixed in the 2012.2 release
- List of Horizon bugs fixed in the 2012.2 release
Known Issues and Limitations
Nova
- The default of the rpc_control_exchange option for Nova in this release is 'openstack' rather than 'nova' - you need to explicitly set it to 'nova'. See bug #1083944
Quantum
- The default of the rpc_control_exchange option for Quantum in this release is 'openstack' rather than 'quantum' - you need to explicitly set it to 'quantum'. See bug #1083944
