Jump to: navigation, search

Difference between revisions of "ReleaseNotes/2015.1.2"

(Bugs Fixed)
(Release Notes, 2015.1.2: delete duplicate neutron)
 
(6 intermediate revisions by 4 users not shown)
Line 1: Line 1:
= DRAFT - Release Notes, 2015.1.2 =
+
= Release Notes, 2015.1.2 =
  
(requires updating)
 
  
The 2015.1.2 release is a Kilo bugfix update for OpenStack Networking (Neutron), OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat), OpenStack Telemetry (Ceilometer), OpenStack Data Processing (Sahara), and OpenStack Bare metal service (Ironic).
+
The 2015.1.2 release is a Kilo bugfix update for OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat), OpenStack Telemetry (Ceilometer), OpenStack Data Processing (Sahara), and OpenStack Bare metal service (Ironic).
  
 
OpenStack Database Service (Trove) did not have stable/kilo fixes at this time and will skip 2015.1.2 release.  
 
OpenStack Database Service (Trove) did not have stable/kilo fixes at this time and will skip 2015.1.2 release.  
Line 13: Line 12:
 
== Resolved Security Issues ==
 
== Resolved Security Issues ==
  
TBD
+
* [https://security.openstack.org/ossa/OSSA-2015-015.html OSSA 2015-015] Resize/delete combo allows to overload nova-compute ([http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3241 CVE-2015-3241])
 +
* [https://security.openstack.org/ossa/OSSA-2015-017.html OSSA 2015-017] Deleting instance while resize instance is running leads to unuseable compute nodes ([http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3280 CVE-2015-3280])
  
 
== Bugs Fixed ==
 
== Bugs Fixed ==
  
In total, TBD bugs are fixed by this update.
+
In total, 169 bugs are fixed by this update.
  
 
* [https://launchpad.net/nova/kilo/2015.1.2 List of OpenStack Compute (Nova) bugs fixed in the 2015.1.2 release]
 
* [https://launchpad.net/nova/kilo/2015.1.2 List of OpenStack Compute (Nova) bugs fixed in the 2015.1.2 release]
Line 34: Line 34:
 
=== Neutron ===
 
=== Neutron ===
  
The fix for https://bugs.launchpad.net/neutron/+bug/1493492 adds a command filter for chown to the vpnaas rootwrap filters. The chown command is used by the LibreSwan VPNaaS device driver to modify the ownership of generated ipsec.secrets files to conform with tighter permission restrictions.
+
The fix for https://bugs.launchpad.net/neutron/+bug/1493492 adds a command filter for chown to the vpnaas rootwrap filters. The chown command is used by the LibreSwan VPNaaS device driver to modify the ownership of generated ipsec.secrets files to conform with tighter permission restrictions. Please update your rootwrap filters if you are using LibreSwan driver.
 +
 
 +
[[Category:Releases]]
 +
[[Category:Kilo]]

Latest revision as of 14:38, 15 October 2015

Release Notes, 2015.1.2

The 2015.1.2 release is a Kilo bugfix update for OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat), OpenStack Telemetry (Ceilometer), OpenStack Data Processing (Sahara), and OpenStack Bare metal service (Ironic).

OpenStack Database Service (Trove) did not have stable/kilo fixes at this time and will skip 2015.1.2 release.

The bugfixes contained in this release were backported from the development branches into a stable branch. The release is intended to be a low risk update with no intentional regressions or API changes.

Resolved Security Issues

Bugs Fixed

In total, 169 bugs are fixed by this update.

Known Issues and Limitations

Neutron

The fix for https://bugs.launchpad.net/neutron/+bug/1493492 adds a command filter for chown to the vpnaas rootwrap filters. The chown command is used by the LibreSwan VPNaaS device driver to modify the ownership of generated ipsec.secrets files to conform with tighter permission restrictions. Please update your rootwrap filters if you are using LibreSwan driver.