Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: <updates <at> fedoraproject.org>
Subject: [SECURITY] Fedora 16 Update: openstack-nova-2011.3.1-11.fc16
Newsgroups: gmane.linux.redhat.fedora.package.announce
Date: Thursday 19th July 2012 09:07:01 UTC (over 4 years ago)
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-10418
2012-07-10 15:43:30
--------------------------------------------------------------------------------

Name        : openstack-nova
Product     : Fedora 16
Version     : 2011.3.1
Release     : 11.fc16
URL         : http://openstack.org/projects/compute/
Summary     : OpenStack Compute (nova)
Description :
OpenStack Compute (codename Nova) is open source software designed to
provision and manage large networks of virtual machines, creating a
redundant and scalable cloud computing platform. It gives you the
software, control panels, and APIs required to orchestrate a cloud,
including running instances, managing networks, and controlling access
through users and projects. OpenStack Compute strives to be both
hardware and hypervisor agnostic, currently supporting a variety of
standard hardware configurations and seven major hypervisors.

--------------------------------------------------------------------------------
Update Information:

- Prohibit host file corruption through file injection (CVE-2012-3361)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul  5 2012 Pádraig Brady  - 2011.3.1-11
- Prohibit host file corruption through file injection (CVE-2012-3361)
* Wed Jun 13 2012 Pádraig Brady  - 2011.3.1-10
- Fix issue with previous CVE-2012-2654 fix
* Wed Jun  6 2012 Pádraig Brady  - 2011.3.1-9
- Sync up with Diablo stable branch, including...
- Fix for protocol case handling (#829439, CVE-2012-2654)
* Thu Apr 19 2012 Pádraig Brady  - 2011.3.1-8
- Fix undefined glance_host in get_glance_client
- Implement quotas for security groups (#814361, CVE-2012-2101)
* Thu Mar 29 2012 Russell Bryant  - 2011.3.1-7
- CVE-2012-1585 - Long server names grow nova-api log files significantly
- Resolves: rhbz#808150
* Mon Mar 26 2012 Mark McLoughlin  - 2011.3.1-6
- Avoid killing dnsmasq on network service shutdown (#805947)
* Tue Mar  6 2012 Pádraig Brady  - 2011.3.1-5
- Require bridge-utils
* Mon Feb 13 2012 Pádraig Brady  - 2011.3.1-4
- Support --force_dhcp_release (#788485)
* Fri Jan 27 2012 Pádraig Brady  - 2011.3.1-3
- Suppress erroneous output to stdout on package install (#785115)
* Mon Jan 23 2012 Pádraig Brady  - 2011.3.1-2
- Fix a REST API v1.0 bug causing a regression with deltacloud
* Fri Jan 20 2012 Pádraig Brady  - 2011.3.1-1
- Update to 2011.3.1 release
- Allow empty mysql root password in mysql setup script
- Enable mysqld at boot in mysql setup script
* Wed Jan 18 2012 Mark McLoughlin  -
2011.3.1-0.4.10818.fc16
- Update to latest 2011.3.1 release candidate
- Re-add nova-{clear-rabbit-queues,instance-usage-audit}
* Tue Jan 17 2012 Mark McLoughlin  - 2011.3.1-0.3.10814
- nova-stack isn't missing after all
* Tue Jan 17 2012 Mark McLoughlin  - 2011.3.1-0.2.10814
- nova-{stack,clear-rabbit-queues,instance-usage-audit} temporarily removed
because of lp#917676
* Tue Jan 17 2012 Mark McLoughlin  - 2011.3.1-0.1.10814
- Update to 2011.3.1 release candidate
- Only adds 4 patches from upstream which we didn't already have
* Wed Jan 11 2012 Pádraig Brady  - 2011.3-19
- Fix libguestfs support for specified partitions
- Fix tenant bypass by authenticated users using API (#772202,
CVE-2012-0030)
* Fri Jan  6 2012 Mark McLoughlin  - 2011.3-18
- Fix up recent patches which don't apply
* Fri Jan  6 2012 Mark McLoughlin  - 2011.3-17
- Backport tgtadm off-by-one fix from upstream (#752709)
* Fri Jan  6 2012 Mark McLoughlin  - 2011.3-16
- Rebase to latest upstream stable/diablo, pulling in ~50 patches
* Fri Jan  6 2012 Mark McLoughlin  - 2011.3-15
- Move recent patches into git (no functional changes)
* Fri Dec 30 2011 Pádraig Brady  - 2011.3-14
- Don't require the fuse group (#770927)
- Require the fuse package (to avoid #767852)
* Wed Dec 14 2011 Pádraig Brady  - 2011.3-13
- Sanitize EC2 manifests and image tarballs (#767236, CVE 2011-4596)
- update libguestfs support
* Tue Dec  6 2011 Russell Bryant  - 2011.3-11
- Add --yes, --rootpw, and --novapw options to openstack-nova-db-setup.
* Wed Nov 30 2011 Pádraig Brady  - 2011.3-10
- Add libguestfs support
* Tue Nov 29 2011 Pádraig Brady  - 2011.3-9
- Update the libvirt dependency from 0.8.2 to 0.8.7
- Ensure we don't access the net when building docs
* Tue Nov 29 2011 Russell Bryant  - 2011.3-8
- Change default database to mysql. (#735012)
* Mon Nov 14 2011 Mark McLoughlin  - 2011.3-7
- Add ~20 significant fixes from upstream stable branch
* Wed Oct 26 2011 Mark McLoughlin  - 2011.3-6
- Fix password leak in EC2 API (#749385, CVE 2011-4076)
* Mon Oct 24 2011 Mark McLoughlin  - 2011.3-5
- Fix block migration (#741690)
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update openstack-nova' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on
the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/package-announce
 
CD: 4ms