[SECURITY] Fedora 16 Update: openstack-nova-2011.3.1-8.fc16

updates at fedoraproject.org updates at fedoraproject.org
Tue May 1 00:48:42 UTC 2012


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-6365
2012-04-22 02:43:43
--------------------------------------------------------------------------------

Name        : openstack-nova
Product     : Fedora 16
Version     : 2011.3.1
Release     : 8.fc16
URL         : http://openstack.org/projects/compute/
Summary     : OpenStack Compute (nova)
Description :
OpenStack Compute (codename Nova) is open source software designed to
provision and manage large networks of virtual machines, creating a
redundant and scalable cloud computing platform. It gives you the
software, control panels, and APIs required to orchestrate a cloud,
including running instances, managing networks, and controlling access
through users and projects. OpenStack Compute strives to be both
hardware and hypervisor agnostic, currently supporting a variety of
standard hardware configurations and seven major hypervisors.

--------------------------------------------------------------------------------
Update Information:

- Fix undefined glance_host in get_glance_client

- Implement quotas for security groups (CVE-2012-2101)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 19 2012 Pádraig Bradu <P at draigBrady.com> - 2011.3.1-8
- Fix undefined glance_host in get_glance_client
- Implement quotas for security groups (#814361, CVE-2012-2101)
* Thu Mar 29 2012 Russell Bryant <rbryant at redhat.com> - 2011.3.1-7
- CVE-2012-1585 - Long server names grow nova-api log files significantly
- Resolves: rhbz#808150
* Mon Mar 26 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3.1-6
- Avoid killing dnsmasq on network service shutdown (#805947)
* Tue Mar  6 2012 Pádraig Brady <P at draigBrady.com> - 2011.3.1-5
- Require bridge-utils
* Mon Feb 13 2012 Pádraig Brady <P at draigBrady.com> - 2011.3.1-4
- Support --force_dhcp_release (#788485)
* Fri Jan 27 2012 Pádraig Brady <P at draigBrady.com> - 2011.3.1-3
- Suppress erroneous output to stdout on package install (#785115)
* Mon Jan 23 2012 Pádraig Brady <P at draigBrady.com> - 2011.3.1-2
- Fix a REST API v1.0 bug causing a regression with deltacloud
* Fri Jan 20 2012 Pádraig Brady <P at draigBrady.com> - 2011.3.1-1
- Update to 2011.3.1 release
- Allow empty mysql root password in mysql setup script
- Enable mysqld at boot in mysql setup script
* Wed Jan 18 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3.1-0.4.10818.fc16
- Update to latest 2011.3.1 release candidate
- Re-add nova-{clear-rabbit-queues,instance-usage-audit}
* Tue Jan 17 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3.1-0.3.10814
- nova-stack isn't missing after all
* Tue Jan 17 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3.1-0.2.10814
- nova-{stack,clear-rabbit-queues,instance-usage-audit} temporarily removed because of lp#917676
* Tue Jan 17 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3.1-0.1.10814
- Update to 2011.3.1 release candidate
- Only adds 4 patches from upstream which we didn't already have
* Wed Jan 11 2012 Pádraig Brady <P at draigBrady.com> - 2011.3-19
- Fix libguestfs support for specified partitions
- Fix tenant bypass by authenticated users using API (#772202, CVE-2012-0030)
* Fri Jan  6 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3-18
- Fix up recent patches which don't apply
* Fri Jan  6 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3-17
- Backport tgtadm off-by-one fix from upstream (#752709)
* Fri Jan  6 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3-16
- Rebase to latest upstream stable/diablo, pulling in ~50 patches
* Fri Jan  6 2012 Mark McLoughlin <markmc at redhat.com> - 2011.3-15
- Move recent patches into git (no functional changes)
* Fri Dec 30 2011 Pádraig Brady <P at draigBrady.com> - 2011.3-14
- Don't require the fuse group (#770927)
- Require the fuse package (to avoid #767852)
* Wed Dec 14 2011 Pádraig Brady <P at draigBrady.com> - 2011.3-13
- Sanitize EC2 manifests and image tarballs (#767236, CVE 2011-4596)
- update libguestfs support
* Tue Dec  6 2011 Russell Bryant <rbryant at redhat.com> - 2011.3-11
- Add --yes, --rootpw, and --novapw options to openstack-nova-db-setup.
* Wed Nov 30 2011 Pádraig Brady <P at draigBrady.com> - 2011.3-10
- Add libguestfs support
* Tue Nov 29 2011 Pádraig Brady <P at draigBrady.com> - 2011.3-9
- Update the libvirt dependency from 0.8.2 to 0.8.7
- Ensure we don't access the net when building docs
* Tue Nov 29 2011 Russell Bryant <rbryant at redhat.com> - 2011.3-8
- Change default database to mysql. (#735012)
* Mon Nov 14 2011 Mark McLoughlin <markmc at redhat.com> - 2011.3-7
- Add ~20 significant fixes from upstream stable branch
* Wed Oct 26 2011 Mark McLoughlin <markmc at redhat.com> - 2011.3-6
- Fix password leak in EC2 API (#749385, CVE 2011-4076)
* Mon Oct 24 2011 Mark McLoughlin <markmc at redhat.com> - 2011.3-5
- Fix block migration (#741690)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #814361 - CVE-2012-2101 openstack-nova: No quota enforced on security group rules [fedora-16]
        https://bugzilla.redhat.com/show_bug.cgi?id=814361
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update openstack-nova' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list