Comment 119 for bug 2059809
Revision history for this message
| Jeremy Stanley (fungi) wrote Re: Arbitrary file access through QCOW2 external data file (CVE-2024-32498) | #119 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Last minute revisiting of the affected versions in comment #39 indicates it needs to be adjusted for new releases as follows due to end of maintenance for stable/zed and additional point releases in some projects:
affected-products:
- product: Cinder
version: '<22.1.3, >=23.0.0 <23.1.1, ==24.0.0'
- product: Glance
version: '<26.0.1, ==27.0.0, >=28.0.0 <28.0.2'
- product: Nova
version: '<27.3.1, >=28.0.0 <28.1.1, >=29.0.0 <29.0.3'
Please let me know if you spot any errors with the above. I'll also add a note about there being no new point releases for unmaintained/yoga and unmaintained/zed branches if patches for them are included.