Difference between revisions of "ReleaseNotes/2013.1.1"
(→Release Notes, 2013.1.1) |
(→OpenStack Identity (Keystone)) |
||
Line 16: | Line 16: | ||
* [http://lists.openstack.org/pipermail/openstack-announce/2013-May/000099.html OSSA-2013-011]/[https://bugs.launchpad.net/keystone/+bug/1166670 CVE-2013-2059] - Keystone tokens not immediately invalidated when user is deleted | * [http://lists.openstack.org/pipermail/openstack-announce/2013-May/000099.html OSSA-2013-011]/[https://bugs.launchpad.net/keystone/+bug/1166670 CVE-2013-2059] - Keystone tokens not immediately invalidated when user is deleted | ||
− | |||
== Bugs Fixed == | == Bugs Fixed == |
Revision as of 07:19, 13 May 2013
Release Notes, 2013.1.1
The 2013.1.1 release is a Grizzly bugfix update for OpenStack Compute (Nova), OpenStack Block Storage (Cinder), OpenStack Networking, OpenStack Identity (Keystone) and OpenStack Dashboard (Horizon). OpenStack Image Service (Glance) did not have stable backports at this time so it skipped 2013.1.1 release.
The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a relatively risk free update with no intentional regressions or API changes.
Contents
Resolved Security Issues
OpenStack Compute (Nova)
- OSSA-2013-010/CVE-2013-2030 - Nova uses insecure keystone middleware tmpdir by default
OpenStack Identity (Keystone)
- OSSA-2013-011/CVE-2013-2059 - Keystone tokens not immediately invalidated when user is deleted
Bugs Fixed
In total, 85 launchpad bugs are fixed by this update.
- List of OpenStack Compute (Nova) bugs fixed in the 2013.1.1 release
- List of OpenStack Block Storage (Cinder) bugs fixed in the 2013.1.1 release
- List of OpenStack Networking bugs fixed in the 2013.1.1 release
- List of OpenStack Identity (Keystone) bugs fixed in the 2013.1.1 release
- List of OpenStack Dashboard (Horizon) bugs fixed in the 2013.1.1 release
Known Issues and Limitations
- OpenStack Identity (Keystone) - Read-only LDAP deployments using the bundled identity driver still requires a default domain to be created in LDAP (fix in progress for 2013.1.2).