UbuntuUpdates.org

Package "nova-console"

Name: nova-console

Description:

OpenStack Compute - Console

Latest version: 2012.1.3+stable-20130423-e52e6912-0ubuntu1.4
Release: precise (12.04)
Level: updates
Repository: universe
Head package: nova
Homepage: http://launchpad.net/nova

Links


Download "nova-console"


Other versions of "nova-console" in Precise

Repository Area Version
base universe 2012.1-0ubuntu2
security universe 2012.1.3+stable-20130423-e52e6912-0ubuntu1.4

Changelog

Version: 2012.1.3+stable-20130423-e52e6912-0ubuntu1.4 2014-06-17 23:06:50 UTC

  nova (2012.1.3+stable-20130423-e52e6912-0ubuntu1.4) precise-security; urgency=medium

  * SECURITY UPDATE: ssl not enforced when qpid_protocol is set to ssl
    - debian/patches/CVE-2013-6491.patch: set the right parameter in
      nova/rpc/impl_qpid.py
    - LP: #1158807
    - CVE-2013-6491
  * SECURITY UPDATE: information disclosure via incorrect KVM live block
    migration
    - debian/patches/CVE-2013-7130.patch: fix root disk leak in
      nova/virt/libvirt/connection.py, add upstream test and additional test
      (test_create_images_and_backing_full()) to nova/tests/test_libvirt.py
    - CVE-2013-7130
  * SECURITY UPDATE: denial of service via disk consumption
    - debian/patches/CVE-2013-446x.patch: don't boot oversized images in
      nova/virt/images.py, and nova/virt/libvirt/connection.py. Update tests
      in nova/tests/test_libvirt.py
    - CVE-2013-4463
    - CVE-2013-4469
 -- Jamie Strandboge <email address hidden> Wed, 14 May 2014 15:14:36 -0500

Source diff to previous version
1158807 Qpid SSL protocol
CVE-2013-6491 The python-qpid client (common/rpc/impl_qpid.py) in OpenStack Oslo ...
CVE-2013-7130 The i_create_images_and_backing (aka create_images_and_backing) method ...
CVE-2013-4463 OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly ...
CVE-2013-4469 OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when ...

Version: 2012.1.3+stable-20130423-e52e6912-0ubuntu1.2 2013-10-23 21:06:59 UTC

  nova (2012.1.3+stable-20130423-e52e6912-0ubuntu1.2) precise-security; urgency=low

  * SECURITY UPDATE: denial of service with network security group policy
    updates
    - debian/patches/CVE-2013-4185.patch: use cached nwinfo for secgroup rules
      (LP: #1184041)
    - CVE-2013-4185
 -- Jamie Strandboge <email address hidden> Mon, 21 Oct 2013 17:52:13 -0500

Source diff to previous version
1184041 [OSSA 2013-020] Denial of Service in Nova network source security groups (CVE-2013-4185)
CVE-2013-4185 Denial of Service in Nova network source security groups

Version: 2012.1.3+stable-20130423-e52e6912-0ubuntu1.1 2013-05-17 00:07:21 UTC

  nova (2012.1.3+stable-20130423-e52e6912-0ubuntu1.1) precise-security; urgency=low

  * SECURITY UPDATE: verify virtual size of QCOW2 images
    - CVE-2013-2096.patch: update nova/virt/libvirt/connection.py to check
      QCOW2 image size during root disk creation
    - CVE-2013-2096
 -- Jamie Strandboge <email address hidden> Wed, 15 May 2013 16:37:20 -0500

Source diff to previous version
CVE-2013-2096 fails to verify image virtual size

Version: 2012.1.3+stable-20130423-e52e6912-0ubuntu1 2013-05-16 18:06:42 UTC

  nova (2012.1.3+stable-20130423-e52e6912-0ubuntu1) precise-proposed; urgency=low

  * Resynchronize with stable/essex (e52e6912) (LP: #1089488):
    - [48e81f1] VNC proxy can be made to connect to wrong VM LP: 1125378
    - [3bf5a58] snat rule too broad for some network configurations LP: 1048765
    - [efaacda] DOS by allocating all fixed ips LP: 1125468
    - [b683ced] Add nosehtmloutput as a test dependency.
    - [45274c8] Nova unit tests not running, but still passing for stable/essex
      LP: 1132835
    - [e02b459] vnc unit-test fixes
    - [87361d3] Jenkins jobs fail because of incompatibility between sqlalchemy-
      migrate and the newest sqlalchemy-0.8.0b1 (LP: #1073569)
    - [e98928c] VNC proxy can be made to connect to wrong VM LP: 1125378
    - [c0a10db] DoS through XML entity expansion (CVE-2013-1664) LP: 1100282
    - [243d516] No authentication on block device used for os-volume_boot
      LP: 1069904
    - [80fefe5] use_single_default_gateway does not function correctly
      (LP: #1075859)
    - [bd10241] Essex 2012.1.3 : Error deleting instance with 2 Nova Volumes
      attached (LP: #1079745)
    - [86a5937] do_refresh_security_group_rules in nova.virt.firewall is very
      slow (LP: #1062314)
    - [ae9c5f4] deallocate_fixed_ip attempts to update an already deleted
      fixed_ip (LP: #1017633)
    - [20f98c5] failed to allocate fixed ip because old deleted one exists
      (LP: #996482)
    - [75f6922] snapshot stays in saving state if the vm base image is deleted
      (LP: #921774)
    - [1076699] lock files may be removed in error dues to permissions issues
      (LP: #1051924)
    - [40c5e94] ensure_default_security_group() does not call sgh (LP: #1050982)
    - [4eebe76] At termination, LXC rootfs is not always unmounted before
      rmtree() is called (LP: #1046313)
    - [47dabb3] Heavily loaded nova-compute instances don't sent reports
      frequently enough (LP: #1045152)
    - [b375b4f] When attach volume lost attach when node restart (LP: #1004791)
    - [4ac2dcc] nova usage-list returns wrong usage (LP: #1043999)
    - [014fcbc] Bridge port's hairpin mode not set after resuming a machine
      (LP: #1040537)
    - [2f35f8e] Nova flavor ephemeral space size reported incorrectly
      (LP: #1026210)
  * Dropped, superseeded by new snapshot:
    - debian/patches/CVE-2013-0335.patch: [48e81f1]
    - debian/patches/CVE-2013-1838.patch: [efaacda]
    - debian/patches/CVE-2013-1664.patch: [c0a10db]
    - debian/patches/CVE-2013-0208.patch: [243d516]
 -- Yolanda <email address hidden> Mon, 22 Apr 2013 12:37:08 +0200

Source diff to previous version
1089488 Meta bug for tracking Openstack Stable Updates
1075859 use_single_default_gateway does not function correctly
1079745 Essex 2012.1.3 : Error deleting instance with 2 Nova Volumes attached
1062314 do_refresh_security_group_rules in nova.virt.firewall is very slow
1017633 deallocate_fixed_ip attempts to update an already deleted fixed_ip
996482 failed to allocate fixed ip because old deleted one exists
921774 snapshot stays in saving state if the vm base image is deleted
1051924 lock files may be removed in error dues to permissions issues
1050982 ensure_default_security_group() does not call sgh
1046313 At termination, LXC rootfs is not always unmounted before rmtree() is called
1045152 Heavily loaded nova-compute instances don't sent reports frequently enough
1004791 When attach volume lost attach when node restart
1043999 nova usage-list returns wrong usage
1040537 Bridge port's hairpin mode not set after resuming a machine
1026210 Nova flavor ephemeral space size reported incorrectly
CVE-2013-1664 Denial of service via xml entity parsing
CVE-2013-0335 VNC proxy can connect to the wrong VM
CVE-2013-1838 Nova DoS by allocating all Fixed IPs
CVE-2013-0208 Boot from volume allows access to random volumes

Version: 2012.1.3+stable-20120827-4d2a4afe-0ubuntu1.4 2013-03-20 22:07:05 UTC

  nova (2012.1.3+stable-20120827-4d2a4afe-0ubuntu1.4) precise-security; urgency=low

  * SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
    - debian/patches/CVE-2013-1838.patch: add explicit quota for fixed IP
    - CVE-2013-1838
    - LP: #1125468
  * SECURITY UPDATE: fix VNC token validation
    - debian/patches/CVE-2013-0335*.patch: force console auth service to flush
      all tokens associated with an instance when it is deleted
    - CVE-2013-0335
    - LP: #1125378
 -- Jamie Strandboge <email address hidden> Wed, 20 Mar 2013 10:07:08 -0500

1125468 DOS by allocating all fixed ips
1125378 VNC proxy can be made to connect to wrong VM
CVE-2013-1838 Nova DoS by allocating all Fixed IPs
CVE-2013-0335 VNC proxy can connect to the wrong VM



About   -   Send Feedback to @ubuntu_updates