Jump to: navigation, search

Difference between revisions of "ReleaseNotes/2013.1.3"

(Known Issues and Limitations)
m (added to Releases)
 
(2 intermediate revisions by one other user not shown)
Line 11: Line 11:
 
=== OpenStack Compute (Nova) ===
 
=== OpenStack Compute (Nova) ===
  
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000126.html OSSA 2013-019]/[https://bugs.launchpad.net/nova/+bug/1194093 CVE 2013-2256] - Resource limit circumvention in Nova private flavors
+
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000126.html OSSA 2013-019]/[https://bugs.launchpad.net/nova/+bug/1194093 CVE-2013-2256] - Resource limit circumvention in Nova private flavors
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000127.html OSSA 2013-020]/[https://bugs.launchpad.net/nova/+bug/1184041 CVE 2013-4185] - Denial of Service in Nova network source security groups
+
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000127.html OSSA 2013-020]/[https://bugs.launchpad.net/nova/+bug/1184041 CVE-2013-4185] - Denial of Service in Nova network source security groups
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000133.html OSSA 2013-023]/[https://bugs.launchpad.net/nova/+bug/1190229 CVE 2013-4179] - Denial of Service using XML entities in Nova extensions
+
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000133.html OSSA 2013-023]/[https://bugs.launchpad.net/nova/+bug/1190229 CVE-2013-4179] - Denial of Service using XML entities in Nova extensions
  
 
=== OpenStack Block Storage (Cinder) ===
 
=== OpenStack Block Storage (Cinder) ===
  
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000130.html OSSA 2013-021]/[https://bugs.launchpad.net/cinder/+bug/1198185 CVE 2013-4183] - Cinder LVM volume driver does not support secure deletion
+
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000130.html OSSA 2013-021]/[https://bugs.launchpad.net/cinder/+bug/1198185 CVE-2013-4183] - Cinder LVM volume driver does not support secure deletion
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000133.html OSSA 2013-023]/[https://bugs.launchpad.net/cinder/+bug/1190229 CVE 2013-4202] - Denial of Service using XML entities in Cinder extensions
+
* [http://lists.openstack.org/pipermail/openstack-announce/2013-August/000133.html OSSA 2013-023]/[https://bugs.launchpad.net/cinder/+bug/1190229 CVE-2013-4202] - Denial of Service using XML entities in Cinder extensions
  
 
=== OpenStack Identity (Keystone) ===
 
=== OpenStack Identity (Keystone) ===
  
* [http://lists.openstack.org/pipermail/openstack-announce/2013-June/000111.html OSSA 2013-015]/[https://bugs.launchpad.net/keystone/+bug/1187305 CVE 2013-2157] - Authentication bypass when using LDAP backend
+
* [http://lists.openstack.org/pipermail/openstack-announce/2013-June/000111.html OSSA 2013-015]/[https://bugs.launchpad.net/keystone/+bug/1187305 CVE-2013-2157] - Authentication bypass when using LDAP backend
  
 
== Bugs Fixed ==
 
== Bugs Fixed ==
Line 45: Line 45:
 
=== Cinder ===
 
=== Cinder ===
 
* https://bugs.launchpad.net/cinder/+bug/1191812
 
* https://bugs.launchpad.net/cinder/+bug/1191812
 +
 +
 +
[[Category:Releases]]
 +
[[Category:Grizzly]]

Latest revision as of 00:29, 23 September 2014

Release Notes, 2013.1.3

The 2013.1.3 release is a Grizzly bugfix update for OpenStack Compute (Nova), OpenStack Block Storage (Cinder), OpenStack Networking, OpenStack Identity (Keystone), OpenStack Dashboard (Horizon) and OpenStack Image Service (Glance).

The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a relatively risk free update with no intentional regressions or API changes.

Resolved Security Issues

OpenStack Compute (Nova)

OpenStack Block Storage (Cinder)

OpenStack Identity (Keystone)

Bugs Fixed

In total, 116 launchpad bugs are fixed by this update.

Known Issues and Limitations

Nova

Cinder