lp:~gandelman-a/ubuntu/quantal/glance/2012.2.1

Created by Adam Gandelman on 2012-11-30 and last modified on 2012-11-30
Get this branch:
bzr branch lp:~gandelman-a/ubuntu/quantal/glance/2012.2.1
Only Adam Gandelman can upload to this branch. If you are Adam Gandelman please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Adam Gandelman
Status:
Development

Recent revisions

217. By Adam Gandelman on 2012-11-30

* Dropped patches, applied upstream:
  - debian/patches/CVE-2012-4573.patch
  - debian/patches/CVE-2012-4573b.patch
* Resynchronize with stable/folsom (199783ce) (LP: #1085255):
  - [49408e9] Glance image-delete HTTPInternalServerError HTTP 500
    (LP: #1075580)
  - [91aaa48] Image fails to upload to swift: TypeError: object of type
    'CooperativeReader' has no len( (LP: #1057322)
  - [a296a5b] Return 403 when admin deletes a deleted image (LP: #1060944)
  - [3e58a6a] Disallow updating deleted images. (LP: #1060930)
  - [26c8085] admins can see deleted images in v2 api (LP: #1071446)
  - [8321ca6] No exclude option to skip tests in run_tests.sh (LP: #1065758)
  - [c3bea11] Badly named stable/folsom Glance tarballs (LP: #1059634)
  - [fc0ee76] Non-admin users can cause public glance images to be deleted
    from the backend storage repository in the v2 api (LP: #1076506)
  - [90bcdc5] Non-admin users can cause public glance images to be deleted
    from the backend storage repository (LP: #1065187)
  - [7841cc9] FakeAuth not always admin
  - [ddad275] Jenkins jobs fail because of incompatibility between sqlalchemy-
    migrate and the newest sqlalchemy-0.8.0b1 (LP: #1073569)
  - [1d5c651] nosetest options cause no such option errors (LP: #1056420)
  - [ac223e2] Set defaultbranch in .gitreview to stable/folsom
* SECURITY UPDATE: deletion of arbitrary public and shared images via
  authenticated user
  - debian/patches/CVE-2012-4573b.patch: previous patch was incomplete.
    Make corresponding change to glance/api/v2/images.py
  - CVE-2012-4573
* debian/control: add Build-Depends-Indep on python-chardet. This is needed
  by python-requests to do encoding detection which otherwise fails in the
  new tests introduced in CVE-2012-4573b.patch.
* SECURITY UPDATE: deletion of arbitrary public and shared images via
  authenticated user
  - debian/patches/CVE-2012-4573.patch: adjust glance/api/v1/images.py to
    ensure image is owned by user before delayed_deletion
  - CVE-2012-4573
* debian/patches/fakeauth-not-always-admin.patch: add required testsuite
  patch in support of the testsuite changes in CVE-2012-4573.patch

216. By James Page on 2012-10-12

Re-merged parent branch

215. By James Page on 2012-10-12

Re-target to -proposed as requested by release team

214. By James Page on 2012-10-12

* Glance should suggest python-ceph, not ceph-common (LP: #1065903):
  - debian/control: glance Suggests: ceph-common -> python-ceph.

213. By Chuck Short on 2012-09-27

releasing version 2012.2-0ubuntu1

212. By Chuck Short on 2012-09-27

New upstream release.

211. By Chuck Short on 2012-09-27

*
* debian/control: Clean-up python depends. Thanks to Sam Morrison.
  (LP: #1053790)

210. By Chuck Short on 2012-09-26

releasing version 2012.2~rc3-0ubuntu1

209. By Chuck Short on 2012-09-26

releasing version 2012.2~rc2-0ubuntu1

208. By Chuck Short on 2012-09-26

Disable tests again

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/raring/glance
This branch contains Public information 
Everyone can see this information.

Subscribers