OpenStack-Ansible

Incorporate glance CVE-2015-5163 fix

Series trunk
Bug #1484766

Bug #1484766 reported by Nolan Brubaker on 2015-08-14

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
OpenStack-Ansible	Fix Released	High	Nolan Brubaker
Kilo	Fix Released	High	Jesse Pretorius	OpenStack-Ansible 11.1.1
Trunk	Fix Released	High	Nolan Brubaker

Bug Description

A recent CVE fix merged into glance, and we should update our SHA to reflect that for master and kilo.

The CVE details for reference: http://www.openwall.com/lists/oss-security/2015/08/13/10

See original description

CVE References

2015-5163

Nolan Brubaker (nolan-brubaker) on 2015-08-14

Changed in openstack-ansible:
status:	New → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-14: Fix proposed to os-ansible-deployment (master)

Fix proposed to branch: master
Review: https://review.openstack.org/212919

Jesse Pretorius (jesse-pretorius) on 2015-08-14

description:

updated

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-14: Fix proposed to os-ansible-deployment (kilo)

Fix proposed to branch: kilo
Review: https://review.openstack.org/213030

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-14: Fix merged to os-ansible-deployment (kilo)

Reviewed: https://review.openstack.org/213030
Committed: https://git.openstack.org/cgit/stackforge/os-ansible-deployment/commit/?id=86960c1708a9a231de80c1bcc3067f01c48a0ee9
Submitter: Jenkins
Branch: kilo

commit 86960c1708a9a231de80c1bcc3067f01c48a0ee9
Author: Jesse Pretorius <email address hidden>
Date: Fri Aug 14 09:21:32 2015 +0100

Update glance for CVE-2015-5163

This patch includes the upstream backport:
- https://review.openstack.org/212568

Change-Id: Iaab3a9d1007ccae6d51942fe045e274b7a518e9f
Closes-Bug: #1484766

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-08-18: Fix merged to os-ansible-deployment (master)

Reviewed: https://review.openstack.org/212919
Committed: https://git.openstack.org/cgit/stackforge/os-ansible-deployment/commit/?id=317566857e8dd3e974a7cb4e7649fea2cd4f5572
Submitter: Jenkins
Branch: master

commit 317566857e8dd3e974a7cb4e7649fea2cd4f5572
Author: Nolan Brubaker <email address hidden>
Date: Thu Aug 13 22:44:10 2015 -0400

Updated master for new dev work - 15 Aug 2015

This patch updates all git SHA's to the current head of
the appropriate branches.

This patch includes the upstream fix for CVE-2015-5163:
- https://review.openstack.org/212567

    This patch removes the configuration for the cryptography
    repository as they have now released tag 1.0 which contains
    the SHA we required for fernet tokens to work.

Change-Id: Iaab3a9d1007ccae6d51942fe045e274b7a518e9f
Closes-Bug: #1484766

Changed in openstack-ansible:
status:	In Progress → Fix Committed

Revision history for this message

Davanum Srinivas (DIMS) (dims-v) wrote on 2016-03-18: Fix included in openstack/openstack-ansible 11.2.11

This issue was fixed in the openstack/openstack-ansible 11.2.11 release.

Revision history for this message

Doug Hellmann (doug-hellmann) wrote on 2016-03-25: Fix included in openstack/openstack-ansible 11.2.12

This issue was fixed in the openstack/openstack-ansible 11.2.12 release.

Revision history for this message

Davanum Srinivas (DIMS) (dims-v) wrote on 2016-05-03: Fix included in openstack/openstack-ansible 11.2.14

This issue was fixed in the openstack/openstack-ansible 11.2.14 release.

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.