[Bug 2020111] Re: CVE-2023-2088 regressions
Vladimir Grujic
2020111 at bugs.launchpad.net
Tue Sep 19 08:56:53 UTC 2023
I've updated the packages to the required version manually (unattended-
upgrades was stuck in configuration prompt and did not update the
packages itself) and restarted the services. The problem still remains
that when instance is deleted volume is not deleted and stuck in
attached state. Error in nova-compute states:
ERROR nova.volume.cinder [req-73a404fd-92dd-4458-a951-b784fccb6515
c23a1dcf89be43aea4102a4a225ee45e b2f401016d434d3e82636ea595703be4 -
31b5b42eb1a6430da321f73f400f5b5b 31b5b42eb1a6430da321f73f400f5b5b]
Delete attachment failed for attachment
2c680876-e37a-4249-966a-6039296e73d2. Error:
ConflictNovaUsingAttachment: Detach volume from instance
2cef6a3d-61ea-4851-a1ff-b968171de874 using the Compute API (HTTP 409)
(Request-ID: req-43d628f7-5ee1-43dc-9b1e-12004362df14) Code: 409:
cinderclient.exceptions.ClientException: ConflictNovaUsingAttachment:
Detach volume from instance 2cef6a3d-61ea-4851-a1ff-b968171de874 using
the Compute API (HTTP 409) (Request-ID:
req-43d628f7-5ee1-43dc-9b1e-12004362df14)
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to Ubuntu Cloud Archive.
https://bugs.launchpad.net/bugs/2020111
Title:
CVE-2023-2088 regressions
Status in Ubuntu Cloud Archive:
Fix Released
Status in Ubuntu Cloud Archive antelope series:
Fix Released
Status in Ubuntu Cloud Archive bobcat series:
Fix Released
Status in Ubuntu Cloud Archive victoria series:
Fix Released
Status in Ubuntu Cloud Archive wallaby series:
Fix Released
Status in Ubuntu Cloud Archive xena series:
Fix Released
Status in Ubuntu Cloud Archive yoga series:
Fix Released
Status in Ubuntu Cloud Archive zed series:
Fix Released
Status in cinder package in Ubuntu:
Fix Released
Status in nova package in Ubuntu:
Fix Released
Status in python-glance-store package in Ubuntu:
Fix Released
Status in python-os-brick package in Ubuntu:
Fix Released
Status in cinder source package in Focal:
Fix Released
Status in nova source package in Focal:
Fix Released
Status in python-glance-store source package in Focal:
Fix Released
Status in python-os-brick source package in Focal:
Fix Released
Status in cinder source package in Jammy:
Fix Released
Status in nova source package in Jammy:
Fix Released
Status in python-glance-store source package in Jammy:
Fix Released
Status in python-os-brick source package in Jammy:
Fix Released
Status in cinder source package in Kinetic:
Fix Released
Status in nova source package in Kinetic:
Fix Released
Status in python-glance-store source package in Kinetic:
Fix Released
Status in python-os-brick source package in Kinetic:
Fix Released
Status in cinder source package in Lunar:
Fix Released
Status in nova source package in Lunar:
Fix Released
Status in python-glance-store source package in Lunar:
Fix Released
Status in python-os-brick source package in Lunar:
Fix Released
Status in cinder source package in Mantic:
Fix Released
Status in nova source package in Mantic:
Fix Released
Status in python-glance-store source package in Mantic:
Fix Released
Status in python-os-brick source package in Mantic:
Fix Released
Bug description:
There has been a regression found in at least one project due to the fixes for CVE-2023-2088:
https://bugs.launchpad.net/ironic/+bug/2019892
This may also affect other projects that are yet to be known.
We will be reverting the CVE-2023-2088 patches that have been released
to nova, cinder, python-os-brick, and python-glance-store until
everything is settled upstream in order to prevent regressing our
users.
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/2020111/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list