Difference between revisions of "ReleaseNotes/2013.1.5"
(→OpenStack Compute (Nova)) |
(→OpenStack Compute (Nova)) |
||
| Line 11: | Line 11: | ||
=== OpenStack Compute (Nova) === | === OpenStack Compute (Nova) === | ||
* [http://lists.openstack.org/pipermail/openstack-announce/2013-October/000159.html OSSA 2013-029] / [https://bugs.launchpad.net/nova/+bug/1206081 CVE-2013-4463 CVE-2013-4469] - Potential Nova denial of service through compressed disk images | * [http://lists.openstack.org/pipermail/openstack-announce/2013-October/000159.html OSSA 2013-029] / [https://bugs.launchpad.net/nova/+bug/1206081 CVE-2013-4463 CVE-2013-4469] - Potential Nova denial of service through compressed disk images | ||
| + | * [http://lists.openstack.org/pipermail/openstack-announce/2013-November/000161.html OSSA 2013-030] / [https://bugs.launchpad.net/nova/+bug/1073306 CVE-2013-4497] - XenAPI security groups not kept through migrate or resize | ||
* [http://lists.openstack.org/pipermail/openstack-announce/2013-December/000169.html OSSA 2013-033] / [https://launchpad.net/bugs/1235450 CVE-2013-6419] - Metadata queries from Neutron to Nova are not restricted by tenant | * [http://lists.openstack.org/pipermail/openstack-announce/2013-December/000169.html OSSA 2013-033] / [https://launchpad.net/bugs/1235450 CVE-2013-6419] - Metadata queries from Neutron to Nova are not restricted by tenant | ||
* [http://lists.openstack.org/pipermail/openstack-announce/2013-December/000179.html OSSA 2013-037] / [https://bugs.launchpad.net/nova/+bug/1253980 CVE-2013-6437] - Nova compute DoS through ephemeral disk backing files | * [http://lists.openstack.org/pipermail/openstack-announce/2013-December/000179.html OSSA 2013-037] / [https://bugs.launchpad.net/nova/+bug/1253980 CVE-2013-6437] - Nova compute DoS through ephemeral disk backing files | ||
Revision as of 19:44, 20 March 2014
DRAFT Release Notes, 2013.1.5 DRAFT - release planned Mar 20
The 2013.1.5 release is a Grizzly bugfix update for OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking, OpenStack Block Storage (Cinder) and OpenStack Dashboard (Horizon). No further official Grizzly releases of these projects are planned.
The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a low risk update with no intentional regressions or API changes.
Contents
Resolved Security Issues
OpenStack Compute (Nova)
- OSSA 2013-029 / CVE-2013-4463 CVE-2013-4469 - Potential Nova denial of service through compressed disk images
- OSSA 2013-030 / CVE-2013-4497 - XenAPI security groups not kept through migrate or resize
- OSSA 2013-033 / CVE-2013-6419 - Metadata queries from Neutron to Nova are not restricted by tenant
- OSSA 2013-037 / CVE-2013-6437 - Nova compute DoS through ephemeral disk backing files
- OSSA 2014-001 / CVE-2013-7048 - Nova live snapshots use an insecure local directory
- OSSA 2014-003 / CVE-2013-7130 - Live migration can leak root disk into ephemeral storage
Bugs Fixed
In total, NN launchpad bugs are fixed by this update.
DRAFT remove milestone links before release DRAFT
- https://launchpad.net/nova/+milestone/2013.1.5
- https://launchpad.net/keystone/+milestone/2013.1.5
- https://launchpad.net/glance/+milestone/2013.1.5
- https://launchpad.net/neutron/+milestone/2013.1.5
- https://launchpad.net/cinder/+milestone/2013.1.5
- https://launchpad.net/horizon/+milestone/2013.1.5
DRAFT remove milestone links before release DRAFT
- List of OpenStack Compute (Nova) bugs fixed in the 2013.1.5 release
- List of OpenStack Identity (Keystone) bugs fixed in the 2013.1.5 release
- List of OpenStack Image Registry and Delivery Service (Glance) bugs fixed in the 2013.1.5 release
- List of OpenStack Networking bugs fixed in the 2013.1.5 release
- List of OpenStack Block Storage (Cinder) bugs fixed in the 2013.1.5 release
- List of OpenStack Dashboard (Horizon) bugs fixed in the 2013.1.5 release
