[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#719632: Prepared a new Wheezy update for Nova



> Here's the new changelog, with the remarks of J.Cristau taken into account:
>
> [ Thomas Goirand ]
> * CVE-2013-4261: [OSSA 2013-026] Fix problem with long messages in Qpid.
> * CVE-2013-2096: [OSSA 2013-012] Check QCOW2 image size during root disk
>   creation (Closes: #710157).

The security tracker lists more issues potentially affecting stable:

CVE-2013-0326
CVE-2013-2255 Inconsistent and non-validating HTTPS client
CVE-2013-4179 The security group extension in OpenStack Compute (Nova) Grizzly ...
CVE-2013-4185 Algorithmic complexity vulnerability in OpenStack Compute (Nova) ...
CVE-2013-4463 Compressed disk image DoS
CVE-2013-4469 OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when ...
CVE-2013-4497 The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly, and ...

Do these affect stable and can they be fixed along?

Cheers,
        Moritz


Reply to: