Debian Bug report logs -
#676465
CVE-2012-2654
Reported by: Moritz Muehlenhoff <muehlenhoff@univention.de>
Date: Thu, 7 Jun 2012 07:24:02 UTC
Severity: grave
Tags: security
Fixed in version nova/2012.1-6
Done: Loic Dachary (OuoU) <loic@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, PKG OpenStack <openstack-devel@lists.alioth.debian.org>:
Bug#676465; Package nova.
(Thu, 07 Jun 2012 07:24:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Moritz Muehlenhoff <muehlenhoff@univention.de>:
New Bug report received and forwarded. Copy sent to team@security.debian.org, PKG OpenStack <openstack-devel@lists.alioth.debian.org>.
(Thu, 07 Jun 2012 07:24:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: nova
Severity: grave
Tags: security
Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2654 for
details.
Cheers,
Moritz
Added tag(s) pending.
Request was from "ghe. rivero" <ghe.rivero@gmail.com>
to control@bugs.debian.org.
(Thu, 07 Jun 2012 07:51:03 GMT) (full text, mbox, link).
Reply sent
to Loic Dachary (OuoU) <loic@debian.org>:
You have taken responsibility.
(Tue, 12 Jun 2012 21:24:06 GMT) (full text, mbox, link).
Notification sent
to Moritz Muehlenhoff <muehlenhoff@univention.de>:
Bug acknowledged by developer.
(Tue, 12 Jun 2012 21:24:07 GMT) (full text, mbox, link).
Message #12 received at 676465-close@bugs.debian.org (full text, mbox, reply):
Source: nova
Source-Version: 2012.1-6
We believe that the bug you reported is fixed in the latest version of
nova, which is due to be installed in the Debian FTP archive:
nova-api-ec2_2012.1-6_all.deb
to main/n/nova/nova-api-ec2_2012.1-6_all.deb
nova-api-metadata_2012.1-6_all.deb
to main/n/nova/nova-api-metadata_2012.1-6_all.deb
nova-api-os-compute_2012.1-6_all.deb
to main/n/nova/nova-api-os-compute_2012.1-6_all.deb
nova-api-os-volume_2012.1-6_all.deb
to main/n/nova/nova-api-os-volume_2012.1-6_all.deb
nova-api_2012.1-6_all.deb
to main/n/nova/nova-api_2012.1-6_all.deb
nova-cert_2012.1-6_all.deb
to main/n/nova/nova-cert_2012.1-6_all.deb
nova-common_2012.1-6_all.deb
to main/n/nova/nova-common_2012.1-6_all.deb
nova-compute-kvm_2012.1-6_all.deb
to main/n/nova/nova-compute-kvm_2012.1-6_all.deb
nova-compute-lxc_2012.1-6_all.deb
to main/n/nova/nova-compute-lxc_2012.1-6_all.deb
nova-compute-qemu_2012.1-6_all.deb
to main/n/nova/nova-compute-qemu_2012.1-6_all.deb
nova-compute-uml_2012.1-6_all.deb
to main/n/nova/nova-compute-uml_2012.1-6_all.deb
nova-compute-xen_2012.1-6_all.deb
to main/n/nova/nova-compute-xen_2012.1-6_all.deb
nova-compute_2012.1-6_all.deb
to main/n/nova/nova-compute_2012.1-6_all.deb
nova-console_2012.1-6_all.deb
to main/n/nova/nova-console_2012.1-6_all.deb
nova-doc_2012.1-6_all.deb
to main/n/nova/nova-doc_2012.1-6_all.deb
nova-network_2012.1-6_all.deb
to main/n/nova/nova-network_2012.1-6_all.deb
nova-objectstore_2012.1-6_all.deb
to main/n/nova/nova-objectstore_2012.1-6_all.deb
nova-scheduler_2012.1-6_all.deb
to main/n/nova/nova-scheduler_2012.1-6_all.deb
nova-volume_2012.1-6_all.deb
to main/n/nova/nova-volume_2012.1-6_all.deb
nova-xcp-network_2012.1-6_all.deb
to main/n/nova/nova-xcp-network_2012.1-6_all.deb
nova-xcp-plugins_2012.1-6_all.deb
to main/n/nova/nova-xcp-plugins_2012.1-6_all.deb
nova-xvpvncproxy_2012.1-6_all.deb
to main/n/nova/nova-xvpvncproxy_2012.1-6_all.deb
nova_2012.1-6.debian.tar.gz
to main/n/nova/nova_2012.1-6.debian.tar.gz
nova_2012.1-6.dsc
to main/n/nova/nova_2012.1-6.dsc
python-nova_2012.1-6_all.deb
to main/n/nova/python-nova_2012.1-6_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 676465@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Loic Dachary (OuoU) <loic@debian.org> (supplier of updated nova package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 12 Jun 2012 17:51:01 +0200
Source: nova
Binary: python-nova nova-common nova-compute nova-compute-lxc nova-compute-uml nova-compute-xen nova-compute-qemu nova-compute-kvm nova-scheduler nova-volume nova-api nova-network nova-objectstore nova-console nova-cert nova-xcp-plugins nova-xcp-network nova-doc nova-xvpvncproxy nova-api-metadata nova-api-os-compute nova-api-os-volume nova-api-ec2
Architecture: source all
Version: 2012.1-6
Distribution: unstable
Urgency: low
Maintainer: PKG OpenStack <openstack-devel@lists.alioth.debian.org>
Changed-By: Loic Dachary (OuoU) <loic@debian.org>
Description:
nova-api - OpenStack Compute - API frontend
nova-api-ec2 - OpenStack Compute - EC2 API frontend
nova-api-metadata - OpenStack Compute - metadata API frontend
nova-api-os-compute - OpenStack Compute - OpenStack Compute API frontend
nova-api-os-volume - OpenStack Compute - OpenStack Volume API frontend
nova-cert - OpenStack Compute - Certificate manager
nova-common - OpenStack Compute - common files
nova-compute - OpenStack Compute - compute node
nova-compute-kvm - OpenStack Compute - compute node (KVM)
nova-compute-lxc - OpenStack Compute - compute node (LXC)
nova-compute-qemu - OpenStack Compute - compute node (QEmu)
nova-compute-uml - OpenStack Compute - compute node (UserModeLinux)
nova-compute-xen - OpenStack Compute - compute node (Xen)
nova-console - OpenStack Compute - Console
nova-doc - OpenStack Compute - documentation
nova-network - OpenStack Compute - Network manager
nova-objectstore - OpenStack Compute - object store
nova-scheduler - OpenStack Compute - virtual machine scheduler
nova-volume - OpenStack Compute - storage
nova-xcp-network - OpenStack Compute network plugin for the Xen Cloud Platform
nova-xcp-plugins - OpenStack Compute plugin for the Xen Cloud Platform
nova-xvpvncproxy - OpenStack Compute - XVP VNC proxy
python-nova - OpenStack Compute - libraries
Closes: 674510 675271 676465 676638
Changes:
nova (2012.1-6) unstable; urgency=low
.
[ Thomas Goirand ]
* Now depends on sqlite3 (Closes: #674510).
* nova-compute-{hypervisor} are now conflicting each others.
* Fixed URL to the format 1.0 for the debian/copyright file.
* nova-api is now split into multiple nova-api-* packages.
.
[ Mehdi Abaakouk ]
* Add nodocs support in DEB_BUILD_OPTIONS.
* Do not use dbconfig if configure_db is false. Closes: #675271
* Fixed CVE-2012-2654. (Closes: #676465)
.
[ Loic Dachary (OuoU) ]
* Fix broken init file for nova-bojectstore (Closes: #676638)
* Add Loic Dachary in uploaders
Checksums-Sha1:
b902c320286184051ae7f6980ba80ffb17cbb353 3033 nova_2012.1-6.dsc
a927682e9b039a9036a1d6a268d0f32da3db9a6e 35642 nova_2012.1-6.debian.tar.gz
524fc3ef58d9e9c1be28ef9238647aa3c043ada9 1768756 python-nova_2012.1-6_all.deb
337a91502afaeb2e413040200d8e8b47a89e1cb7 33860 nova-common_2012.1-6_all.deb
e1be8a7cccf709a3f95e0b5bb4d3ef3d0359c9ba 15284 nova-compute_2012.1-6_all.deb
ee9df10964f196800e74f39625d627c3199049ba 10564 nova-compute-lxc_2012.1-6_all.deb
693cf68bd09943636cdd3be09af4095067243338 10590 nova-compute-uml_2012.1-6_all.deb
be4365124ffa69a78f1d5b1b4cd0d698273f511b 10584 nova-compute-xen_2012.1-6_all.deb
b2f1e1ee9ef491fc2f22c0233b2ac884168832be 10484 nova-compute-qemu_2012.1-6_all.deb
83140750d4533cffd5a56797b6b8719645dd70c1 10572 nova-compute-kvm_2012.1-6_all.deb
7077cb60b159526ef75408a062be34b55c54b3af 13034 nova-scheduler_2012.1-6_all.deb
55a2ab5f8e223587beb14b9a3ec428b0b4cf35c4 13944 nova-volume_2012.1-6_all.deb
9cc344f7eed86624666a1c961890411744133c2c 12920 nova-api_2012.1-6_all.deb
3cbe77110333dc6a53fcb4040de3d05326cb3cd9 15786 nova-network_2012.1-6_all.deb
c644609334596436cb9c2ad8b6792dcfffc6baf9 13140 nova-objectstore_2012.1-6_all.deb
bdc12b5ed67da9a5f0782a6250e0fe52ec7230f1 13624 nova-console_2012.1-6_all.deb
c9cb9d186e3437d59fd0c4275fdb7f888e46723a 13002 nova-cert_2012.1-6_all.deb
f99091ca3dde3685d4f642faf3b535d1bf20c46e 33198 nova-xcp-plugins_2012.1-6_all.deb
b73a70abf6b2dbc70f439db60a4a6ac8ea06598f 17618 nova-xcp-network_2012.1-6_all.deb
fd79b9bf500a5b15bf7cbec5f1ddd7db069c7028 1572956 nova-doc_2012.1-6_all.deb
fd3bfe3d462c1e086a0bcbbab7c06244a4474751 12920 nova-xvpvncproxy_2012.1-6_all.deb
3c1f0be1cdc20fc567e8846f0e8f40dd649f2390 12682 nova-api-metadata_2012.1-6_all.deb
bf0df506b104e39dc3f364d128032ea144f393a2 12680 nova-api-os-compute_2012.1-6_all.deb
b18ba81d7a25010165d055366e22c0348aeb0a95 12696 nova-api-os-volume_2012.1-6_all.deb
05d2c0cf268fdbd7aaeefa28d8b1d57b411763b1 12800 nova-api-ec2_2012.1-6_all.deb
Checksums-Sha256:
e29d4e2034511f98505cb9db3d4a6d8855f26a145a7f77ef5bd69852c45809df 3033 nova_2012.1-6.dsc
93ed21abc143c584015a0cb82f73c63fc29556042feb9ce7c0acc14b721bee42 35642 nova_2012.1-6.debian.tar.gz
6f46ba097b0223276cf1842232052fa3f38d40988eb55e97e718a7d641db9000 1768756 python-nova_2012.1-6_all.deb
4269aa8553bea0ff3693606bfd92319268565caaac0056caf6084779e35dfdc0 33860 nova-common_2012.1-6_all.deb
16c2e5ae3972b6579f48de198a033c7827d16ef77139d9d52a9318d0a1198b7b 15284 nova-compute_2012.1-6_all.deb
557e719b1984c96489292f72a62a7493f3e3dd66d0580f48ab9b997d0dfaf9b1 10564 nova-compute-lxc_2012.1-6_all.deb
f4b57a67f29fa434b2d7c80918502eaa8dbd57d14abf7436251a25e7dcdc03e4 10590 nova-compute-uml_2012.1-6_all.deb
79580573828143bba889790d5a9a7aeb079b7b58f85c93d854bc9aa43d56f9ff 10584 nova-compute-xen_2012.1-6_all.deb
80fd9f1ca6003365c34392d0e0f93ed30855dfc2989012efff07f682056be78d 10484 nova-compute-qemu_2012.1-6_all.deb
c0c2dcd9007a98e20ee15f31a8769e222067431747725c092b10631065b9a490 10572 nova-compute-kvm_2012.1-6_all.deb
a873ff573e96f05cb7fdfa4f7e911a1340bc788b1cca751ba32378139be50f9d 13034 nova-scheduler_2012.1-6_all.deb
83539a967e0cc13a5ff63199940558f9ab22684ffe3e6b0d85eef306fe0c9a7d 13944 nova-volume_2012.1-6_all.deb
9a7d3493b103b4b5580f1621fade7e3588ba71cadbd75189aa57f1b7e5670ce3 12920 nova-api_2012.1-6_all.deb
2451f62e2ffb4b67554dcc8553c786bdde82abad6e252ba76439a874eb8a5ef7 15786 nova-network_2012.1-6_all.deb
beb71bde771c7a41b86881fe4ba2620877be5036630959862c5c1806a17b4909 13140 nova-objectstore_2012.1-6_all.deb
f79db574d2ce9467276dd1024e553c5a5d40e180cfdca9c4487916d20d5e559d 13624 nova-console_2012.1-6_all.deb
95998072cb094801c0b8eb00b0ba559d0430f6f63448aae2d29ae02d44fdddf2 13002 nova-cert_2012.1-6_all.deb
ede7ff356f82e28f2044688ff19d99ce131c9c911deccb459334422701691e4c 33198 nova-xcp-plugins_2012.1-6_all.deb
74bc7586fecfa53649e580fd4aee005d659bf139fe1feb298fc292e79b4f6a0c 17618 nova-xcp-network_2012.1-6_all.deb
caf70e87e4e97379c779770174dde71da0aa363fbf9dcdf27036fe78818c8b0c 1572956 nova-doc_2012.1-6_all.deb
436ec5ceb0a8416ef1ee3c0badcc4e5060a6a11d6199a67c750bd340e258e292 12920 nova-xvpvncproxy_2012.1-6_all.deb
8ea4e709b0895437af9ec0a5ed68d392d4663b591c3a3c76060837cbc2df0e82 12682 nova-api-metadata_2012.1-6_all.deb
6ae633588f54324d97bea50212b7304d987481ed1921bdbb72e237475366cb42 12680 nova-api-os-compute_2012.1-6_all.deb
2c4c721e3725322378ba9f6a1c045b085f61358c5c6436adbf0f957928bfeee6 12696 nova-api-os-volume_2012.1-6_all.deb
64e6e7209a6cc752274cee8da495e58e03f45d6c50e45d73c6d0e0759ccc054e 12800 nova-api-ec2_2012.1-6_all.deb
Files:
dae114a5ad38e25101d767f2cfbd24c4 3033 net extra nova_2012.1-6.dsc
67ad3218cd2c0f26658d1d1b40922a84 35642 net extra nova_2012.1-6.debian.tar.gz
5bed45bd13fd577b9aef4107a41cdbfe 1768756 python extra python-nova_2012.1-6_all.deb
9897d80d9ae77511544544bd87b1fb2c 33860 net extra nova-common_2012.1-6_all.deb
0feda3470f53fd6414f76a310463b35e 15284 net extra nova-compute_2012.1-6_all.deb
753d3e6cdcf45b7cddbbb2c105a6d4e5 10564 net extra nova-compute-lxc_2012.1-6_all.deb
b6bf22e27d1c9ca42370535aadb8a9d5 10590 net extra nova-compute-uml_2012.1-6_all.deb
7c582f5be24162d0a93435bf591a25a5 10584 net extra nova-compute-xen_2012.1-6_all.deb
698049a7600ca3549b185823d4d603cd 10484 net extra nova-compute-qemu_2012.1-6_all.deb
0b95b3caebbf2b9b9f5a0bda6f900aa8 10572 net extra nova-compute-kvm_2012.1-6_all.deb
9c5a4e0eea2a403af57773c116b88c07 13034 net extra nova-scheduler_2012.1-6_all.deb
697e684df0d3c88f478f60528f909547 13944 net extra nova-volume_2012.1-6_all.deb
325c9854ceff2caa2363f0528d5c4307 12920 net extra nova-api_2012.1-6_all.deb
7150439fda3c7920d543f1e6e8adf129 15786 net extra nova-network_2012.1-6_all.deb
53576c29566d6810b7488549eedca385 13140 net extra nova-objectstore_2012.1-6_all.deb
bdcab226c58c4c2dd8fcf63906daeb1a 13624 net extra nova-console_2012.1-6_all.deb
4c9907b851c89127bd31c0643dcdc0ad 13002 net extra nova-cert_2012.1-6_all.deb
1d9319161d56ad9858be1f69b5af1c10 33198 net extra nova-xcp-plugins_2012.1-6_all.deb
09b5355506d8533dd0cc4281aa00de23 17618 net extra nova-xcp-network_2012.1-6_all.deb
99687f854cb8e20f1d946c6ef4c949dc 1572956 doc extra nova-doc_2012.1-6_all.deb
52c68350a95784bcb0275a658e082db5 12920 net extra nova-xvpvncproxy_2012.1-6_all.deb
bebd994dc28fa11902000538e31759a9 12682 net extra nova-api-metadata_2012.1-6_all.deb
5aa36e663385f6bd85721eafe5519168 12680 net extra nova-api-os-compute_2012.1-6_all.deb
6139d6c85babe5d02025e7319fbf60ab 12696 net extra nova-api-os-volume_2012.1-6_all.deb
679f4ed3c2b5b72a2d1e8754c568c9bd 12800 net extra nova-api-ec2_2012.1-6_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAk/Xo+AACgkQ8dLMyEl6F21VYgCeOh42zItnixoGFNfl4tkKk0HD
qegAn2N+lWUF07spHR/4AXKaVSr/8UD9
=7tPq
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Fri, 26 Oct 2012 07:27:54 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 18:20:08 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon