Meta bug for tracking Openstack 2012.2.3 Stable Update
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu Cloud Archive |
Fix Released
|
Undecided
|
Unassigned | ||
cinder (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned | ||
glance (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned | ||
horizon (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned | ||
keystone (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned | ||
nova (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned | ||
quantum (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This is a meta-bug used for tracking progress of the 2012.2.3 Folsom stable update to Nova, Horizon, Keystone, Glance, Cinder and Quantum.
Note: Original proposed SRU was rebased to include relevant security updates applied to packages already released to the Ubuntu Archive.
-------
cinder (2012.2.3-0ubuntu2) quantal-proposed; urgency=low
.
* Re-sync with latest security updates.
* SECURITY UPDATE: fix denial of service
- CVE-2013-
and update external API facing Cinder modules to use it
- CVE-2013-1664
.
cinder (2012.2.3-0ubuntu1) quantal-proposed; urgency=low
.
* Resynchronize with stable/folsom (a8caa79f) (LP: #1116671):
- [cdf6c13] Root wrap tools used by NFS volume driver LP: 1087282
-------
glance (2012.2.3-0ubuntu2) quantal-proposed; urgency=low
.
* Resync with latest security update.
* SECURITY UPDATE: fix information disclosure via Glance v1 API
- debian/
not show image_meta[
- CVE-2013-1840
.
glance (2012.2.3-0ubuntu1) quantal-proposed; urgency=low
.
* Dropped patches, applied upstream:
- debian/
* Resynchronize with stable/folsom (98d9928a) (LP: #1116671):
- [96a470b] glance image-download can display backend Swift password
- [4c96080] install throws errors about SADeprecationWa
- [bca6e26] wsgi.Middleware forward-
- [5e5e722] Supplied image size should be verified against actual size
LP: 1092584
- [514b4b4] silent failure when loading the paste deploy app LP: 1091294
-------
horizon (2012.2.3-0ubuntu1) quantal-proposed; urgency=low
.
* Resynchronize with stable/folsom (f421145b) (LP: #1116671):
- [20fa0fc] EC2 panel shouldn't be visible when the EC2 service isn't
enabled LP: 1102411
- [0b1c553] Server error pages are broken LP: 1067206
- [476072d] login not possible if not service "volume" defined on keystone
LP: 1084137
- [ebc5e6d] Quota tally not handling unlimited values correctly LP: 1084976
- [e19a218] Unable to set unlimited quotas in Horizon LP: 1082489
- [2f959c6] The css class td.actions_column's width is not enough
LP: 1081875
- [817d628] Revert "Temp fix for api/keystone.py"
- [9060885] Can not display usage data for Quota Summary (LP: #1055929)
* debian/
changes applied upstream in stable/folsom.
-------
keystone (2012.2.
.
* Resync with latest security updates.
* SECURITY UPDATE: fix PKI revocation bypass
- debian/
- CVE-2013-1865
* SECURITY UPDATE: fix EC2-style authentication for disabled users
- debian/
to ensure user and tenant are enabled in EC2
- CVE-2013-0282
* SECURITY UPDATE: fix denial of service
- debian/
- CVE-2013-1664
- CVE-2013-1665
.
keystone (2012.2.
.
[ Adam Gandelman ]
* Dropped patches, applied upstream:
- debian/
* Resynchronize with stable/folsom (82c87e56) (LP: #1116671):
- [bb2226f] Add size validations for /tokens.
- [ec7b94d] Non-API specific 404 exposes traceback LP: 1089987
- [70e55f9] SQL backend fails if not all URL are defined in an endpoint
LP: 1061736
- [6c95b73] Unparseable endpoint URL's should raise a user friendly error
LP: 1058494
- [9e300b7] Test 0.2.0 keystoneclient to avoid new deps
- [ec06625] serviceCatalog is dict in the case of no endpoints LP: 1087405
.
[ Chuck Short ]
* debian/
-------
nova (2012.2.3-0ubuntu2) quantal-proposed; urgency=low
.
* Re-sync with latest security updates.
* SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
- debian/
- CVE-2013-1838
* SECURITY UPDATE: fix VNC token validation
- debian/
all tokens associated with an instance when it is deleted
- CVE-2013-0335
* SECURITY UPDATE: fix denial of service
- CVE-2013-
and update external API facing Nova modules to use it
- CVE-2013-1664
.
nova (2012.2.3-0ubuntu1) quantal-proposed; urgency=low
.
* Dropped patches, applied upstream:
- debian/
* Resynchronize with stable/folsom (e5d0f4b9) (LP: #1116671):
- [317cc0a] No authentication on block device used for os-volume_boot
LP: 1069904
- [6241f91] Include error message in instance faults LP: 1013350
- [5a66812] Rapidly removing a floating ip can leave behind nat rules
LP: 1092762
- [133a040] remove session parameter from fixed_ip_get
- [03200fe] init host crashes if instance cannot be resumed LP: 1100430
- [cf67f3b] Unable to assign a specific IP address to a Quantum port
LP: 1094897
- [fcaab43] No handler for NFS volume LP: 1087252
- [796216e] plug_vifs() not called for each instance when nova compute is
started LP: 1083784
- [b3c2f61] resource tracker reporting strange values in AUDIT logs
LP: 1092418
- [1789d26] Libvirt driver misses out some CPU flags on old libvirt
LP: 1099527
- [eff17b4] nova aggregate-create returns unclear error to user LP: 1083353
- [63fd557] os-hosts extension's show method cannot find host which has '.'
in host-name (or host name is dotted quad) LP: 1027788
- [f864a4e] Folsom - Absolute limit parameters totalKeyPairsUsed and
security group created LP: 1062049
- [4bfc8f1] KVM guests networking issues with no virbr0 and with vhost_net
kernel modules loaded (LP: #1029430)
- [f9eacd4] Qemu-img does not handle snapshot list LP: 1070088
-------
quantum (2012.2.3-0ubuntu2) quantal-proposed; urgency=low
.
* debian/
that was backported to stable/folsom (LP: #1116671).
.
quantum (2012.2.3-0ubuntu1) quantal-proposed; urgency=low
.
* Resynchronize with stable/folsom (d2a85e65) (LP: #1116671):
- [a84ba7e] Quantum port update invokes invalid method LP: 1109001
- [b56c2c9] Linuxbridge plugin: when admin status is set to False, port
status is still ACTIVE LP: 1099065
- [fe0ae7a] OVS cleanup utility does not use the correct root_helper
LP: 1105193
- [1a24b68] quantum server does not honor default_
LP: 1089773
- [24244c1] Gateway validation on subnet LP: 1096532
- [2730e47] tenant cannot set his router's gateway port on an external
network owned by other tenant LP: 1087243
- [4c9326a] Invalid output when deleting a subnet with a port attached
LP: 1093754
- [9f1bf8d] quantum-
- [579727a] ipallocationpools remains after subnet deletion LP: 1091946
- [5f8dd88] Printing a list of networks terminates with exception
LP: 1093637
- [9c3812f] Update router gateway successful with existed floatingip
association LP: 1081877
- [5df31af] quantum-dhcp-agent should pass --conf-file with no argument to
dnsmasq when no configure file specified instead not pass --conf-file at
all LP: 1094183
- [88261ce] the local vairable physical_network should be
- [43ece8f] Internal interfaces defined via OVS are not brought up properly
after a reboot LP: 1091605
- [a587abc] no check prevents deletion of router interface needed by a
floating ip LP: 1081325
- [d973a35] Pin pep8 to v1.3.3.
- [19b5904] DHCP agent does not listen on a unique queue LP: 1084621
- [0e05ddd] dhcp.filters needs ovs_vsctl permission LP: 1090072
- [16e128c] Bump next version to 2012.2.3
- [30572ac] Quantum-l3-agent leaves multiple NAT rules for same floating IP
LP: 1083990
- [01ea272] delete router fails with internal sever error when floatingip
association remains LP: 1080638
- [8017d09] Fix rpc control_exchange regression.
* debian/
linuxbridge tests that attempt to setup udev monitors.
-------
Related branches
description: | updated |
Changed in cinder (Ubuntu): | |
status: | New → Invalid |
Changed in glance (Ubuntu): | |
status: | New → Invalid |
Changed in horizon (Ubuntu): | |
status: | New → Invalid |
Changed in keystone (Ubuntu): | |
status: | New → Invalid |
Changed in nova (Ubuntu): | |
status: | New → Invalid |
Changed in quantum (Ubuntu): | |
status: | New → Invalid |
Changed in cinder (Ubuntu Quantal): | |
status: | New → Confirmed |
Changed in glance (Ubuntu Quantal): | |
status: | New → Confirmed |
Changed in horizon (Ubuntu Quantal): | |
status: | New → Confirmed |
Changed in keystone (Ubuntu Quantal): | |
status: | New → Confirmed |
Changed in nova (Ubuntu Quantal): | |
status: | New → Confirmed |
Changed in quantum (Ubuntu Quantal): | |
status: | New → Confirmed |
Changed in cloud-archive: | |
status: | New → Confirmed |
description: | updated |
Changed in cloud-archive: | |
status: | Confirmed → Fix Released |
Hello Adam, or anyone else affected,
Accepted cinder into quantal-proposed. The package will build now and be available at http:// launchpad. net/ubuntu/ +source/ cinder/ 2012.2. 3-0ubuntu1 in a few hours, and then in the -proposed repository.
Please help us by testing this new package. See https:/ /wiki.ubuntu. com/Testing/ EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification- failed. In either case, details of your testing will help us make a better decision.
Further information regarding the verification process can be found at https:/ /wiki.ubuntu. com/QATeam/ PerformingSRUVe rification . Thank you in advance!