upper_constraints for oslo.middleware need to be updated for Mitaka, Newton and Ocata

Bug #1687661 reported by Nikhil Gupta
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Global Requirements
Fix Released
Undecided
Unassigned

Bug Description

oslo.middleware fixed a security issue https://security.openstack.org/ossa/OSSA-2017-001.html
The upper_constraints still point to the affected versions of oslo.middleware.

Mitaka -> 3.8.0 correct version should be 3.8.1
Newton -> 3.19.0 correct version should be 3.19.1

CVE References

Revision history for this message
Niraj Patel (nirajdp) wrote :

We would also like to have fix for CVE-2017-2592 as reported in this bug for Newton release.

Changed in openstack-requirements:
status: New → Confirmed
Revision history for this message
Matthew Thode (prometheanfire) wrote :

stable/mitaka is (and has been) dead.
stable/newton has the fix.

Changed in openstack-requirements:
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.