2018-05-18 10:02:47 |
James Page |
bug |
|
|
added bug |
2018-05-30 10:03:14 |
Frode Nordahl |
bug task added |
|
cloud-archive |
|
2018-07-26 10:40:38 |
James Page |
nominated for series |
|
Ubuntu Xenial |
|
2018-07-26 10:40:38 |
James Page |
bug task added |
|
python-urllib3 (Ubuntu Xenial) |
|
2018-07-26 10:40:43 |
James Page |
python-urllib3 (Ubuntu): status |
New |
Fix Released |
|
2018-07-26 10:40:45 |
James Page |
python-urllib3 (Ubuntu): importance |
Undecided |
High |
|
2018-07-26 10:40:47 |
James Page |
python-urllib3 (Ubuntu Xenial): importance |
Undecided |
High |
|
2018-07-26 10:40:49 |
James Page |
python-urllib3 (Ubuntu Xenial): status |
New |
Triaged |
|
2018-07-26 10:41:25 |
James Page |
nominated for series |
|
cloud-archive/mitaka |
|
2018-07-26 10:41:25 |
James Page |
bug task added |
|
cloud-archive/mitaka |
|
2018-07-26 10:41:25 |
James Page |
nominated for series |
|
cloud-archive/newton |
|
2018-07-26 10:41:25 |
James Page |
bug task added |
|
cloud-archive/newton |
|
2018-07-26 10:41:32 |
James Page |
cloud-archive: status |
New |
Fix Released |
|
2018-07-26 10:41:35 |
James Page |
cloud-archive/mitaka: status |
New |
Triaged |
|
2018-07-26 10:41:38 |
James Page |
cloud-archive/newton: status |
New |
Triaged |
|
2018-07-26 10:41:40 |
James Page |
cloud-archive/newton: importance |
Undecided |
High |
|
2018-07-26 10:41:41 |
James Page |
cloud-archive/mitaka: importance |
Undecided |
High |
|
2018-08-20 14:55:03 |
James Page |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2018-08-20 14:56:56 |
James Page |
description |
urllib3 fails to validate certificates with IP address based SAN's.
Fixed upstream: https://github.com/urllib3/urllib3/commit/c74bd70c3a97e30f0560bee9b7fa1bfc767ebf0b |
[Impact]
Users of urllib3 are unable to securely access websites who's certificates use IP based subject alternative names; this includes openstack client tooling which uses urllib3 via requests.
[Test Case]
TBD
[Regression Potential]
Cherry picked fix comes from a later urllib3 release which has tested fine for IP SAN usage in later OpenStack release deployments.
[Original Bug Report]
urllib3 fails to validate certificates with IP address based SAN's.
Fixed upstream: https://github.com/urllib3/urllib3/commit/c74bd70c3a97e30f0560bee9b7fa1bfc767ebf0b |
|
2018-08-20 14:57:27 |
James Page |
python-urllib3 (Ubuntu Xenial): assignee |
|
James Page (james-page) |
|
2018-08-20 14:57:30 |
James Page |
python-urllib3 (Ubuntu Xenial): status |
Triaged |
Fix Released |
|
2018-08-20 15:15:29 |
James Page |
description |
[Impact]
Users of urllib3 are unable to securely access websites who's certificates use IP based subject alternative names; this includes openstack client tooling which uses urllib3 via requests.
[Test Case]
TBD
[Regression Potential]
Cherry picked fix comes from a later urllib3 release which has tested fine for IP SAN usage in later OpenStack release deployments.
[Original Bug Report]
urllib3 fails to validate certificates with IP address based SAN's.
Fixed upstream: https://github.com/urllib3/urllib3/commit/c74bd70c3a97e30f0560bee9b7fa1bfc767ebf0b |
[Impact]
Users of urllib3 are unable to securely access websites who's certificates use IP based subject alternative names; this includes openstack client tooling which uses urllib3 via requests.
[Test Case]
Deploy and configure a server with TLS and an IP based SAN cert with a locally trusted CA.
import urllib3
http = urllib3.PoolManager()
r = http.request('GET', 'https://192.168.1.2')
will fail
[Regression Potential]
Cherry picked fix comes from a later urllib3 release which has tested fine for IP SAN usage in later OpenStack release deployments.
[Original Bug Report]
urllib3 fails to validate certificates with IP address based SAN's.
Fixed upstream: https://github.com/urllib3/urllib3/commit/c74bd70c3a97e30f0560bee9b7fa1bfc767ebf0b |
|
2018-08-20 15:31:28 |
James Page |
python-urllib3 (Ubuntu Xenial): status |
Fix Released |
In Progress |
|
2018-08-21 05:58:43 |
James Page |
cloud-archive/mitaka: status |
Triaged |
In Progress |
|
2018-08-21 05:58:46 |
James Page |
cloud-archive/mitaka: assignee |
|
James Page (james-page) |
|
2018-08-21 05:58:56 |
James Page |
description |
[Impact]
Users of urllib3 are unable to securely access websites who's certificates use IP based subject alternative names; this includes openstack client tooling which uses urllib3 via requests.
[Test Case]
Deploy and configure a server with TLS and an IP based SAN cert with a locally trusted CA.
import urllib3
http = urllib3.PoolManager()
r = http.request('GET', 'https://192.168.1.2')
will fail
[Regression Potential]
Cherry picked fix comes from a later urllib3 release which has tested fine for IP SAN usage in later OpenStack release deployments.
[Original Bug Report]
urllib3 fails to validate certificates with IP address based SAN's.
Fixed upstream: https://github.com/urllib3/urllib3/commit/c74bd70c3a97e30f0560bee9b7fa1bfc767ebf0b |
[Impact]
Users of urllib3 are unable to securely access websites who's certificates use IP based subject alternative names; this includes openstack client tooling which uses urllib3 via requests.
[Test Case]
Deploy and configure a server with TLS and an IP based SAN cert with a locally trusted CA.
import urllib3
http = urllib3.PoolManager()
r = http.request('GET', 'https://192.168.1.2')
will fail
[Regression Potential]
Cherry picked fix comes from a later urllib3 release which has tested fine for IP SAN usage in later OpenStack release deployments.
[Original Bug Report]
urllib3 fails to validate certificates with IP address based SAN's.
Fixed upstream: https://github.com/urllib3/urllib3/commit/c74bd70c3a97e30f0560bee9b7fa1bfc767ebf0b |
|
2018-08-21 05:59:40 |
James Page |
cloud-archive/newton: status |
Triaged |
Invalid |
|
2018-08-21 06:00:21 |
James Page |
bug task deleted |
cloud-archive/newton |
|
|
2018-08-22 11:38:31 |
Eric Desrochers |
tags |
|
sts |
|
2018-08-22 11:59:38 |
Eric Desrochers |
bug |
|
|
added subscriber Eric Desrochers |
2018-08-22 13:22:51 |
Robie Basak |
python-urllib3 (Ubuntu Xenial): status |
In Progress |
Fix Committed |
|
2018-08-22 13:22:53 |
Robie Basak |
bug |
|
|
added subscriber SRU Verification |
2018-08-22 13:22:55 |
Robie Basak |
tags |
sts |
sts verification-needed verification-needed-xenial |
|
2018-08-28 17:06:07 |
Eric Desrochers |
tags |
sts verification-needed verification-needed-xenial |
sts verification-done-xenial verification-needed |
|
2018-08-30 12:01:58 |
Ćukasz Zemczak |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
2018-08-30 12:12:02 |
Launchpad Janitor |
python-urllib3 (Ubuntu Xenial): status |
Fix Committed |
Fix Released |
|
2018-09-04 08:54:49 |
James Page |
cloud-archive/mitaka: status |
In Progress |
Fix Committed |
|
2018-09-04 08:54:51 |
James Page |
tags |
sts verification-done-xenial verification-needed |
sts verification-done-xenial verification-mitaka-needed verification-needed |
|
2018-09-07 14:56:37 |
Corey Bryant |
cloud-archive/mitaka: status |
Fix Committed |
Fix Released |
|