[ubuntu/quantal-proposed] nova 2012.2.3-0ubuntu2 (Accepted)

James Page james.page at ubuntu.com
Wed Apr 10 10:26:17 UTC 2013 

nova (2012.2.3-0ubuntu2) quantal-proposed; urgency=low

  * Re-sync with latest security updates.
  * SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
    - debian/patches/CVE-2013-1838.patch: add explicit quota for fixed IP
    - CVE-2013-1838
  * SECURITY UPDATE: fix VNC token validation
    - debian/patches/CVE-2013-0335.patch: force console auth service to flush
      all tokens associated with an instance when it is deleted
    - CVE-2013-0335
  * SECURITY UPDATE: fix denial of service
    - CVE-2013-1664.patch: Add a new utils.safe_minidom_parse_string function
      and update external API facing Nova modules to use it
    - CVE-2013-1664

Date: Fri, 22 Mar 2013 12:40:07 +0000
Changed-By: James Page <james.page at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/quantal/+source/nova/2012.2.3-0ubuntu2
-------------- next part --------------
Format: 1.8
Date: Fri, 22 Mar 2013 12:40:07 +0000
Source: nova
Binary: python-nova nova-common nova-compute nova-compute-lxc nova-compute-uml nova-compute-xen nova-compute-qemu nova-compute-kvm nova-compute-xcp nova-xcp-plugins nova-xcp-network nova-cert nova-scheduler nova-volume nova-ajax-console-proxy nova-novncproxy nova-xvpvncproxy nova-api nova-network nova-objectstore nova-console nova-consoleauth nova-doc nova-api-metadata nova-api-os-compute nova-api-os-volume nova-api-ec2
Architecture: source
Version: 2012.2.3-0ubuntu2
Distribution: quantal-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: James Page <james.page at ubuntu.com>
Description: 
 nova-ajax-console-proxy - OpenStack Compute - AJAX console proxy - transitional package
 nova-api   - OpenStack Compute - API frontend
 nova-api-ec2 - OpenStack Compute - EC2 API frontend
 nova-api-metadata - OpenStack Compute - metadata API frontend
 nova-api-os-compute - OpenStack Compute - OpenStack Compute API frontend
 nova-api-os-volume - OpenStack Compute - OpenStack Volume API frontend
 nova-cert  - OpenStack Compute - certificate management
 nova-common - OpenStack Compute - common files
 nova-compute - OpenStack Compute - compute node
 nova-compute-kvm - OpenStack Compute - compute node (KVM)
 nova-compute-lxc - OpenStack Compute - compute node (LXC)
 nova-compute-qemu - OpenStack Compute - compute node (QEmu)
 nova-compute-uml - OpenStack Compute - compute node (UserModeLinux)
 nova-compute-xcp - OpenStack Compute - compute node (XCP)
 nova-compute-xen - OpenStack Compute - compute node (Xen)
 nova-console - OpenStack Compute - Console
 nova-consoleauth - OpenStack Compute - Console Authenticator
 nova-doc   - OpenStack Compute - documentation
 nova-network - OpenStack Compute - Network manager
 nova-novncproxy - OpenStack Compute - NoVNC proxy
 nova-objectstore - OpenStack Compute - object store
 nova-scheduler - OpenStack Compute - virtual machine scheduler
 nova-volume - OpenStack Compute - storage
 nova-xcp-network - OpenStack Compute network plugin for the Xen Cloud Platform
 nova-xcp-plugins - OpenStack Compute plugin for the Xen Cloud Platform
 nova-xvpvncproxy - OpenStack Compute - XVP VNC proxy
 python-nova - OpenStack Compute Python libraries
Changes: 
 nova (2012.2.3-0ubuntu2) quantal-proposed; urgency=low
 .
   * Re-sync with latest security updates.
   * SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
     - debian/patches/CVE-2013-1838.patch: add explicit quota for fixed IP
     - CVE-2013-1838
   * SECURITY UPDATE: fix VNC token validation
     - debian/patches/CVE-2013-0335.patch: force console auth service to flush
       all tokens associated with an instance when it is deleted
     - CVE-2013-0335
   * SECURITY UPDATE: fix denial of service
     - CVE-2013-1664.patch: Add a new utils.safe_minidom_parse_string function
       and update external API facing Nova modules to use it
     - CVE-2013-1664
Checksums-Sha1: 
 4ca44ee81b062c123b5a17dcc37c97cd69fd82d9 4125 nova_2012.2.3-0ubuntu2.dsc
 d5efbcfd527617b0f25edeacdaf6a34f217219e1 57303 nova_2012.2.3-0ubuntu2.debian.tar.gz
Checksums-Sha256: 
 e2addb4fa7217c0eac796ef19ce24b4733f226b611e5fc4be16f5ae4b7355da5 4125 nova_2012.2.3-0ubuntu2.dsc
 dd0157254dfd366ebc9994c58cd211c15d3b0800a7fe501fb89909a603374cb8 57303 nova_2012.2.3-0ubuntu2.debian.tar.gz
Files: 
 d2910fe2d63769efd65c563bfb76c6f1 4125 net extra nova_2012.2.3-0ubuntu2.dsc
 b899962201d7527c617f3e740cc7c1fc 57303 net extra nova_2012.2.3-0ubuntu2.debian.tar.gz
Original-Maintainer: Openstack Maintainers <openstack at lists.launchpad.net>

More information about the Quantal-changes mailing list