[SRU] newton stable releases
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu Cloud Archive |
Invalid
|
Undecided
|
Unassigned | ||
Newton |
Fix Released
|
Undecided
|
Unassigned | ||
aodh (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
ceilometer (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
cinder (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
designate (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
heat (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
horizon (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
neutron (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
neutron-fwaas (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
neutron-lbaas (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned | ||
nova (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Description]
Stable release updates for the following packages for OpenStack Newton:
aodh 3.0.2
ceilometer 7.0.3
cinder 9.1.4
designate 3.0.1
heat 7.0.3
horizon 10.0.3
neutron 9.3.1
neutron-fwaas 9.0.1
neutron-lbaas 9.2.0
nova 14.0.5
[Test Case]
Upstream QA process for stable releases is documented here:
https:/
For all stable point releases, we perform regression testing by juju deploying two openstack clouds, one against -proposed and one against -updates, and we then run tempest integration smoke tests[1] to verify those deployed clouds, and evaluate any differences in results.
[1] https:/
[Regression Potential]
Regression potential is low as as these are stable point releases that are released and tested by upstream openstack and tested in distro.
CVE References
description: | updated |
description: | updated |
Changed in aodh (Ubuntu): | |
status: | New → Invalid |
Changed in ceilometer (Ubuntu): | |
status: | New → Invalid |
Changed in cinder (Ubuntu): | |
status: | New → Invalid |
Changed in designate (Ubuntu): | |
status: | New → Invalid |
Changed in heat (Ubuntu): | |
status: | New → Invalid |
Changed in horizon (Ubuntu): | |
status: | New → Invalid |
Changed in neutron (Ubuntu): | |
status: | New → Invalid |
Changed in neutron-fwaas (Ubuntu): | |
status: | New → Invalid |
Changed in neutron-lbaas (Ubuntu): | |
status: | New → Invalid |
Changed in nova (Ubuntu): | |
status: | New → Invalid |
Changed in sahara (Ubuntu): | |
status: | New → Invalid |
description: | updated |
no longer affects: | sahara (Ubuntu) |
no longer affects: | sahara (Ubuntu Yakkety) |
Changed in cloud-archive: | |
status: | New → Invalid |
I feel like the CVE referenced in the nova upload, [CVE-2017- 7214] Failed notification payload is dumped in logs with auth secrets, should be called out in the changelog and the Launchpad bug should have an Ubuntu yakkety task.
I'm not sure I've seen an SRU with a CVE fix in it though, is this normally done?