Difference between revisions of "ReleaseNotes/2013.2.2"
(→OpenStack Image Registry and Delivery Service (Glance)) |
(→OpenStack Compute (Nova)) |
||
Line 9: | Line 9: | ||
=== OpenStack Compute (Nova) === | === OpenStack Compute (Nova) === | ||
− | * http://lists.openstack.org/pipermail/openstack-announce/2013-December/000179.html | + | * [http://lists.openstack.org/pipermail/openstack-announce/2013-December/000179.html OSSA 2013-037] / [https://bugs.launchpad.net/nova/+bug/1253980 CVE-2013-6437] - Nova compute DoS through ephemeral disk backing files |
− | * http://lists.openstack.org/pipermail/openstack-announce/2014-January/000184.html | + | * [http://lists.openstack.org/pipermail/openstack-announce/2014-January/000184.html OSSA 2014-001] / [https://bugs.launchpad.net/nova/+bug/1227027 CVE-2013-7048] - Nova live snapshots use an insecure local directory |
− | * http://lists.openstack.org/pipermail/openstack-announce/2014-January/000188.html | + | * [http://lists.openstack.org/pipermail/openstack-announce/2014-January/000188.html OSSA 2014-003] / [https://bugs.launchpad.net/nova/+bug/1251590 CVE-2013-7130] - Live migration can leak root disk into ephemeral storage |
=== OpenStack Image Registry and Delivery Service (Glance) === | === OpenStack Image Registry and Delivery Service (Glance) === |
Revision as of 20:37, 13 February 2014
Release Notes, 2013.2.2 *DRAFT*
The 2013.2.2 release is a Havana bugfix update for OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat) and OpenStack Telemetry (Ceilometer).
The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a relatively risk free update with no intentional regressions or API changes.
Contents
Resolved Security Issues
OpenStack Compute (Nova)
- OSSA 2013-037 / CVE-2013-6437 - Nova compute DoS through ephemeral disk backing files
- OSSA 2014-001 / CVE-2013-7048 - Nova live snapshots use an insecure local directory
- OSSA 2014-003 / CVE-2013-7130 - Live migration can leak root disk into ephemeral storage
OpenStack Image Registry and Delivery Service (Glance)
- OSSA 2014-004 / CVE-2014-1948 - Glance Swift store backend password leak
Bugs Fixed
In total, 98 launchpad bugs are fixed by this update.
- List of OpenStack Compute (Nova) bugs fixed in the 2013.2.2 release
- List of OpenStack Identity (Keystone) bugs fixed in the 2013.2.2 release
- List of OpenStack Image Registry and Delivery Service (Glance) bugs fixed in the 2013.2.2 release
- List of OpenStack Networking (Neutron) bugs fixed in the 2013.2.2 release
- List of OpenStack Block Storage (Cinder) bugs fixed in the 2013.2.2 release
- List of OpenStack Dashboard (Horizon) bugs fixed in the 2013.2.2 release
- List of OpenStack Orchestration (Heat) bugs fixed in the 2013.2.2 release
- List of OpenStack Telemetry (Ceilometer) bugs fixed in the 2013.2.2 release
Known Issues and Limitations
Keystone
A severe performance issue within listing of revoked tokens in Keystone was fixed in this release. In order to fully benefit from the change, a run of "keystone-manage db_sync" is recommended after upgrading. This will add an additional index to the keystone table that significantly improves query performance.