lp:~gandelman-a/ubuntu/quantal/nova/missing_cve_patch

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

485. By Adam Gandelman on 2013-05-17

Include CVE-2013-2096.patch.

484. By James Page on 2013-05-17

Resync changelog with latest security fixes

483. By Adam Gandelman on 2013-05-13

Add meta-bug ref.

482. By Adam Gandelman on 2013-05-13

Drop patch as per changelog history.

481. By Adam Gandelman on 2013-05-13

Fix distro release name.

480. By Adam Gandelman on 2013-05-13

Releasing 2012.2.4-0ubuntu1.

479. By James Page on 2013-03-22

* Re-sync with latest security updates.
* SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
  - debian/patches/CVE-2013-1838.patch: add explicit quota for fixed IP
  - CVE-2013-1838
* SECURITY UPDATE: fix VNC token validation
  - debian/patches/CVE-2013-0335.patch: force console auth service to flush
    all tokens associated with an instance when it is deleted
  - CVE-2013-0335
* SECURITY UPDATE: fix denial of service
  - CVE-2013-1664.patch: Add a new utils.safe_minidom_parse_string function
    and update external API facing Nova modules to use it
  - CVE-2013-1664
* SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
  - debian/patches/CVE-2013-1838.patch: add explicit quota for fixed IP
  - CVE-2013-1838
  - LP: #1125468
* SECURITY UPDATE: fix VNC token validation
  - debian/patches/CVE-2013-0335.patch: force console auth service to flush
    all tokens associated with an instance when it is deleted
  - CVE-2013-0335
  - LP: #1125378

478. By Adam Gandelman on 2013-02-21

2012.2.3+stable-20130221-d5e7f551-0ubuntu1

477. By Adam Gandelman on 2013-02-06

2012.2.3-0ubuntu1

476. By Adam Gandelman on 2012-12-13

Releasing 2012.2.1+stable-20121212-a99a802e-0ubuntu1