Difference between revisions of "ReleaseNotes/2014.2.1"
(→OpenStack Compute (Nova)) |
|||
Line 12: | Line 12: | ||
=== OpenStack Compute (Nova) === | === OpenStack Compute (Nova) === | ||
− | * [http://lists.openstack.org/pipermail/openstack-announce/2014-October/ | + | * [http://lists.openstack.org/pipermail/openstack-announce/2014-October/000301.html OSSA 2014-038] / [https://launchpad.net/bugs/1358583 CVE-2014-3708] - List instances by IP results in DoS of nova-network |
=== OpenStack Networking (Neutron) === | === OpenStack Networking (Neutron) === |
Revision as of 12:07, 5 December 2014
Release Notes, 2014.2.1
The 2014.2.1 release is a Juno bugfix update for OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat), OpenStack Telemetry (Ceilometer) and OpenStack Data Processing (Sahara).
OpenStack Database Service (Trove) did not have stable/juno fixes at this time and will skip 2014.2.1 release.
The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a low risk update with no intentional regressions or API changes.
Contents
Resolved Security Issues
OpenStack Compute (Nova)
- OSSA 2014-038 / CVE-2014-3708 - List instances by IP results in DoS of nova-network
OpenStack Networking (Neutron)
- OSSA 2014-039 / CVE-2014-7821 - Maliciously crafted dns_nameservers will crash neutron
Bugs Fixed
In total, 123 bugs are fixed by this update.
- List of OpenStack Compute (Nova) bugs fixed in the 2014.2.1 release
- List of OpenStack Identity (Keystone) bugs fixed in the 2014.2.1 release
- List of OpenStack Image Registry and Delivery Service (Glance) bugs fixed in the 2014.2.1 release
- List of OpenStack Networking (Neutron) bugs fixed in the 2014.2.1 release
- List of OpenStack Block Storage (Cinder) bugs fixed in the 2014.2.1 release
- List of OpenStack Dashboard (Horizon) bugs fixed in the 2014.2.1 release
- List of OpenStack Orchestration (Heat) bugs fixed in the 2014.2.1 release
- List of OpenStack Telemetry (Ceilometer) bugs fixed in the 2014.2.1 release
- List of OpenStack Data Processing (Sahara) bugs fixed in the 2014.2.1 release
Known Issues and Limitations
Cinder
- Fix for the Eventlet threads not released back to the pool added wsgi_keep_alive option. In order to maintain the backward compatibility default value is True and recommended is to set it to False.