nova (1:2014.1.5-0ubuntu1.7) trusty-security; urgency=medium
* SECURITY UPDATE: DoS via instance deletion during migration
- debian/patches/CVE-2015-3241-1.patch: check for resize path on
libvirt instance delete in nova/tests/virt/libvirt/test_libvirt.py,
nova/virt/libvirt/driver.py.
- debian/patches/CVE-2015-3241-1.patch: sync process utils from oslo in
nova/openstack/common/processutils.py.
- debian/patches/CVE-2015-3241-1.patch: kill rsync/scp processes before
deleting instance in nova/tests/virt/libvirt/test_libvirt.py,
nova/tests/virt/libvirt/test_libvirt_utils.py,
nova/virt/libvirt/driver.py, nova/virt/libvirt/instancejobtracker.py,
nova/virt/libvirt/utils.py.
- CVE-2015-3241
* SECURITY UPDATE: DoS via instance deletion during resize
- debian/patches/CVE-2015-3280.patch: delete orphaned instance files
from compute nodes in nova/compute/manager.py,
nova/tests/compute/test_compute_mgr.py.
- CVE-2015-3280
* SECURITY UPDATE: DoS via crafted disk image
- debian/patches/CVE-2015-5162-1.patch: add prlimit parameter to
execute() in nova/openstack/common/prlimit.py,
nova/openstack/common/processutils.py,
nova/tests/openstack_common/test_processutils.py.
- debian/patches/CVE-2015-5162-2.patch: add support for missing process
limits in nova/openstack/common/prlimit.py,
nova/openstack/common/processutils.py,
nova/tests/openstack_common/test_processutils.py.
- debian/patches/CVE-2015-5162-3.patch: set address space & CPU time
limits when running qemu-img in nova/virt/images.py,
nova/tests/virt/libvirt/test_libvirt.py,
nova/tests/virt/libvirt/test_image_utils.py,
nova/tests/virt/libvirt/test_libvirt_utils.py.
- CVE-2015-5162
* SECURITY UPDATE: arbitrary file read via snapshot
- debian/patches/CVE-2015-7548-1.patch: fix format detection in libvirt
snapshot in nova/tests/virt/libvirt/fake_libvirt_utils.py,
nova/tests/virt/libvirt/test_image_utils.py,
nova/tests/virt/libvirt/test_libvirt_utils.py,
nova/virt/libvirt/driver.py, nova/virt/libvirt/utils.py.
- debian/patches/CVE-2015-7548-2.patch: fix format conversion in
libvirt snapshot in nova/tests/virt/libvirt/test_libvirt.py,
nova/virt/images.py, nova/virt/libvirt/imagebackend.py.
- debian/patches/CVE-2015-7548-3.patch: fix backing file detection in
libvirt live snapshot in nova/tests/virt/libvirt/test_libvirt.py,
nova/tests/virt/libvirt/fake_libvirt_utils.py, nova/virt/images.py,
nova/virt/libvirt/driver.py, nova/virt/libvirt/utils.py.
- debian/patches/CVE-2015-7548-4.patch: disable live snapshot for
rbd-backed instances in nova/virt/libvirt/driver.py.
- CVE-2015-7548
* SECURITY UPDATE: restriction bypass via security group changes
- debian/patches/CVE-2015-7713.patch: don't expect meta attributes in
object_compat that aren't in the db obj in nova/compute/manager.py,
nova/tests/compute/test_compute.py.
- CVE-2015-7713
* SECURITY UPDATE: password disclosure via xen log files
- debian/patches/CVE-2015-8749.patch: mask passwords in volume
connection_data dict in nova/virt/xenapi/volume_utils.py.
- CVE-2015-8749
* SECURITY UPDATE: arbitrary file read via crafted qcow2 header
- debian/patches/CVE-2016-2140-1.patch: always copy or recreate
disk.info during a migration in nova/virt/libvirt/driver.py,
nova/tests/virt/libvirt/test_libvirt.py.
- debian/patches/CVE-2016-2140-2.patch: fix processing of libvirt
disk.info in non-disk-image cases in nova/virt/libvirt/driver.py,
nova/tests/virt/libvirt/test_libvirt.py.
- debian/patches/CVE-2016-2140-3.patch: decode disk_info before use in
nova/tests/virt/libvirt/test_libvirt.py, nova/virt/libvirt/driver.py.
- CVE-2016-2140
* Thanks to Red Hat for the backports many of these patches are based on.
-- Marc Deslauriers <email address hidden> Wed, 13 Sep 2017 14:30:17 -0400
|
CVE-2015-3241 |
OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allow |
CVE-2015-3280 |
OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allo |
CVE-2015-5162 |
The image parser in OpenStack Cinder 7.0.2 and 8.0.0 through 8.1.1; Glance before 11.0.1 and 12.0.0; and Nova before 12.0.4 and 13.0.0 does not prope |
CVE-2015-7548 |
OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty), when using libvirt to spawn instances and use_cow_images is set t |
CVE-2015-7713 |
OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote |
CVE-2015-8749 |
The volume_utils._parse_volume_info function in OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty) includes the conne |
CVE-2016-2140 |
The libvirt driver in OpenStack Compute (Nova) before 2015.1.4 (kilo) and 12.0.x before 12.0.3 (liberty), when using raw storage and use_cow_images i |
|