Jump to: navigation, search

Difference between revisions of "ReleaseNotes/2013.1.1"

(Release Notes, 2013.1.1)
(OpenStack Identity (Keystone))
Line 16: Line 16:
  
 
* [http://lists.openstack.org/pipermail/openstack-announce/2013-May/000099.html OSSA-2013-011]/[https://bugs.launchpad.net/keystone/+bug/1166670 CVE-2013-2059] - Keystone tokens not immediately invalidated when user is deleted
 
* [http://lists.openstack.org/pipermail/openstack-announce/2013-May/000099.html OSSA-2013-011]/[https://bugs.launchpad.net/keystone/+bug/1166670 CVE-2013-2059] - Keystone tokens not immediately invalidated when user is deleted
* [https://bugs.launchpad.net/ossn/+bug/1168252 OSSN Keystone conf]/[https://bugs.launchpad.net/keystone/+bug/1172195 CVE-2013-2006] - OpenStack keystone LDAP password disclosure in log files
 
  
 
== Bugs Fixed ==
 
== Bugs Fixed ==

Revision as of 07:19, 13 May 2013

Release Notes, 2013.1.1

The 2013.1.1 release is a Grizzly bugfix update for OpenStack Compute (Nova), OpenStack Block Storage (Cinder), OpenStack Networking, OpenStack Identity (Keystone) and OpenStack Dashboard (Horizon). OpenStack Image Service (Glance) did not have stable backports at this time so it skipped 2013.1.1 release.

The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a relatively risk free update with no intentional regressions or API changes.

Resolved Security Issues

OpenStack Compute (Nova)

OpenStack Identity (Keystone)

Bugs Fixed

In total, 85 launchpad bugs are fixed by this update.

Known Issues and Limitations

  • OpenStack Identity (Keystone) - Read-only LDAP deployments using the bundled identity driver still requires a default domain to be created in LDAP (fix in progress for 2013.1.2).