Debian Bug report logs -
#681301
CVE-2012-3371
Reported by: Moritz Muehlenhoff <muehlenhoff@univention.de>
Date: Thu, 12 Jul 2012 08:21:02 UTC
Severity: grave
Tags: security
Fixed in version nova/2012.1.1-5
Done: Ghe Rivero <ghe@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, PKG OpenStack <openstack-devel@lists.alioth.debian.org>:
Bug#681301; Package nova.
(Thu, 12 Jul 2012 08:21:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Moritz Muehlenhoff <muehlenhoff@univention.de>:
New Bug report received and forwarded. Copy sent to team@security.debian.org, PKG OpenStack <openstack-devel@lists.alioth.debian.org>.
(Thu, 12 Jul 2012 08:21:08 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: nova
Severity: grave
Tags: security
Please see here for details and links to upstream patches:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3371
Cheers,
Moritz
Reply sent
to Ghe Rivero <ghe@debian.org>:
You have taken responsibility.
(Thu, 12 Jul 2012 08:53:06 GMT) (full text, mbox, link).
Notification sent
to Moritz Muehlenhoff <muehlenhoff@univention.de>:
Bug acknowledged by developer.
(Thu, 12 Jul 2012 08:53:28 GMT) (full text, mbox, link).
Message #10 received at 681301-close@bugs.debian.org (full text, mbox, reply):
Source: nova
Source-Version: 2012.1.1-5
We believe that the bug you reported is fixed in the latest version of
nova, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 681301@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ghe Rivero <ghe@debian.org> (supplier of updated nova package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 12 Jul 2012 10:14:32 +0200
Source: nova
Binary: python-nova nova-common nova-compute nova-compute-lxc nova-compute-uml nova-compute-xen nova-compute-qemu nova-compute-kvm nova-scheduler nova-volume nova-api nova-network nova-objectstore nova-console nova-cert nova-xcp-plugins nova-xcp-network nova-doc nova-xvpvncproxy nova-api-metadata nova-api-os-compute nova-api-os-volume nova-api-ec2
Architecture: source all
Version: 2012.1.1-5
Distribution: unstable
Urgency: high
Maintainer: PKG OpenStack <openstack-devel@lists.alioth.debian.org>
Changed-By: Ghe Rivero <ghe@debian.org>
Description:
nova-api - OpenStack Compute - compute API frontend
nova-api-ec2 - OpenStack Compute - EC2 API frontend
nova-api-metadata - OpenStack Compute - metadata API frontend
nova-api-os-compute - OpenStack Compute - compute API frontend
nova-api-os-volume - OpenStack Compute - Volume API frontend
nova-cert - OpenStack Compute - certificate manager
nova-common - OpenStack Compute - common files
nova-compute - OpenStack Compute - compute node
nova-compute-kvm - OpenStack Compute - compute node (KVM)
nova-compute-lxc - OpenStack Compute - compute node (LXC)
nova-compute-qemu - OpenStack Compute - compute node (QEmu)
nova-compute-uml - OpenStack Compute - compute node (UserModeLinux)
nova-compute-xen - OpenStack Compute - compute node (Xen)
nova-console - OpenStack Compute - console
nova-doc - OpenStack Compute - documentation
nova-network - OpenStack Compute - network manager
nova-objectstore - OpenStack Compute - object store
nova-scheduler - OpenStack Compute - virtual machine scheduler
nova-volume - OpenStack Compute - storage
nova-xcp-network - OpenStack Compute network plugin for the Xen Cloud Platform
nova-xcp-plugins - OpenStack Compute plugin for the Xen Cloud Platform
nova-xvpvncproxy - OpenStack Compute - XVP VNC proxy
python-nova - OpenStack Compute - libraries
Closes: 681301
Changes:
nova (2012.1.1-5) unstable; urgency=high
.
* Fix CVE-2012-3371. Closes: #681301
Checksums-Sha1:
60afb1ea5b53e555b15a5fa0aec22b4a22ad3743 3069 nova_2012.1.1-5.dsc
f6bb0dce7ad7ac560f1380e908aa41880d40b3e8 55125 nova_2012.1.1-5.debian.tar.gz
f3ef8cbf1ae74b5c86793e25e46f2379dff63cf2 1779248 python-nova_2012.1.1-5_all.deb
01feedf8fb6994c6ecc14246fe35c733ee0dab54 39714 nova-common_2012.1.1-5_all.deb
2fe40e585d29cbd80764fceb84f779af04b3dd90 16436 nova-compute_2012.1.1-5_all.deb
c73856634ecf1347ae3dfac45a57219d17b97ff8 11632 nova-compute-lxc_2012.1.1-5_all.deb
0be6c4ceebda237c07bcd6a3f8c53f3f91447a26 11650 nova-compute-uml_2012.1.1-5_all.deb
e15a93ff6c8b8d9b60babbc48cefce0e3b82923b 15390 nova-compute-xen_2012.1.1-5_all.deb
c8026e37d3558dbecca6aaac93ddc1e006c10acf 11558 nova-compute-qemu_2012.1.1-5_all.deb
81756120b276efd265771a8dd11e4eda0665ee45 11638 nova-compute-kvm_2012.1.1-5_all.deb
dde0fce853a7dee8062d9cbf47823658720dcbc5 14150 nova-scheduler_2012.1.1-5_all.deb
b783fec0c46868c4ba48ba084340d8ac77a60deb 15060 nova-volume_2012.1.1-5_all.deb
d8ac30adf7b908e62a07fd1b682c73f825839db3 14036 nova-api_2012.1.1-5_all.deb
2c234705eaa8e60e89f6a0acb99e12ae35800d00 16940 nova-network_2012.1.1-5_all.deb
54d4736205654821f14e54683a8bc954134879aa 14244 nova-objectstore_2012.1.1-5_all.deb
8588b10b986f73de34a767834adcebbc102083e9 14764 nova-console_2012.1.1-5_all.deb
ea6b3a340dcdcd36a8f1b0df60d5d0fcbafed701 14112 nova-cert_2012.1.1-5_all.deb
404ecfb60bc53cfecd1ab056459456b0e2213848 34058 nova-xcp-plugins_2012.1.1-5_all.deb
e4932633b11ecc9f59eb8447ff669e9de04a9337 18778 nova-xcp-network_2012.1.1-5_all.deb
86797b3e5af3da0f2e201b4f48caecb77dde9748 1716984 nova-doc_2012.1.1-5_all.deb
250cf4d63960f9308d0d4e9d9fe01e99a3e2c99f 14034 nova-xvpvncproxy_2012.1.1-5_all.deb
c8d5f3c80241eee46ede0c767d682efbd96a49e9 13942 nova-api-metadata_2012.1.1-5_all.deb
f464c2c174271b6dd0a877d4adb9a62b12cb7c4a 13956 nova-api-os-compute_2012.1.1-5_all.deb
8f6eff89873048d0cd6a7c97c64e420653d80252 13960 nova-api-os-volume_2012.1.1-5_all.deb
dc473f4914d0a9ddb1b6745491a8ec5acf4d6c08 13926 nova-api-ec2_2012.1.1-5_all.deb
Checksums-Sha256:
27334a93cc6d81b045f9190fc390c4bc0a9ab17e33cc4baab067436cc80cc1c7 3069 nova_2012.1.1-5.dsc
a1055eab328f0467ca5609a2a568e2ebe67ec3d09edcdad34c51d12c5af35140 55125 nova_2012.1.1-5.debian.tar.gz
4a72b8d4079eee2fb92a7aa632826e412c4e1947d2b38d98c819fd4e95c22fad 1779248 python-nova_2012.1.1-5_all.deb
6c25f28c1b20cb2469f2069accb6257326d97886d08e48a64bff2c187d4d4f03 39714 nova-common_2012.1.1-5_all.deb
3e5cfbc45018667d3711020295e13d7643ae8772c1631f7b7b69edb2321d557a 16436 nova-compute_2012.1.1-5_all.deb
99ef22234179425d684e9d692309d54d79fb461f3138630b13b852cdc2d660d3 11632 nova-compute-lxc_2012.1.1-5_all.deb
daa9869fae76edb57739bfa417b0903e62daeed5c5e89088c0c91498195e71bb 11650 nova-compute-uml_2012.1.1-5_all.deb
31fd711f0dadb6f40c1072912ee72f7a7043e424689dd30dd7efb7676f7466d3 15390 nova-compute-xen_2012.1.1-5_all.deb
ead87088fcc36141a42ec024938b853c92ec3c1e38545dbfb1256560a89af2ef 11558 nova-compute-qemu_2012.1.1-5_all.deb
5c9d1790b7927738c4a9d45ca372b751917898c81b99deecf879672519d5d7ac 11638 nova-compute-kvm_2012.1.1-5_all.deb
a37b926cdc5ea2379eb2b6fc12b88fdf269d0aa27ec4b984d54853199fb673fc 14150 nova-scheduler_2012.1.1-5_all.deb
7dd08b86420ba3dcb1cc39435ef92a87924066ebf5cd023cc70ea9e84932a95b 15060 nova-volume_2012.1.1-5_all.deb
076e2dc87d386dfb2686f78efc130dd7cfde9c0ce898b7961163dace6d516fb3 14036 nova-api_2012.1.1-5_all.deb
81ab00f969c936202bc4794310f16cab6a5c29bafc39f94557a0ddcd7ec1c7ff 16940 nova-network_2012.1.1-5_all.deb
70ab62be43c65522819c017b42af6fb57f018fe2c509da93af2424ea58ef26bf 14244 nova-objectstore_2012.1.1-5_all.deb
7a2fd9b2da9e1593740a81ac50d908793b011412f76ea3c2df80275cdd61f6dd 14764 nova-console_2012.1.1-5_all.deb
1ac080e8e6c6a91c36c99758bf638a07280deaf700617800897848c1102ca1c9 14112 nova-cert_2012.1.1-5_all.deb
86b60cf681b581632de9ded2f55710425ac307df385714044d280d6df221b0de 34058 nova-xcp-plugins_2012.1.1-5_all.deb
a663a5141151ebe95e932b4862885c9902c4f7baaab00ca9f8ba9601578c9576 18778 nova-xcp-network_2012.1.1-5_all.deb
649a9927227545cb63ae6dba9088094d9e6628260a5f2a2f618df18d322683bc 1716984 nova-doc_2012.1.1-5_all.deb
83e087c9b1fde6ac536a50810b5cc4f042df6c5778b65fc9a983e1b8df5571f5 14034 nova-xvpvncproxy_2012.1.1-5_all.deb
20cb364c4b9729e51ef04585610282ff310359e52d26ff996c5705b8f3230d7e 13942 nova-api-metadata_2012.1.1-5_all.deb
ec5a76010ca4cfe1bf292bef16662fcfa429ff6d4f8a559b486d701af9322ac0 13956 nova-api-os-compute_2012.1.1-5_all.deb
eec459c22cab08411f468e7aef16a36f99cc1969c50ddfad48aa6714970c6c04 13960 nova-api-os-volume_2012.1.1-5_all.deb
54d51d51eed06dd0eec6b5e2cc267c47e44aabbd657e9a751af4e547df964c4d 13926 nova-api-ec2_2012.1.1-5_all.deb
Files:
a69610baf0fa237f4f990e2518bc6399 3069 net extra nova_2012.1.1-5.dsc
36c602cfcc18a94d9b55e7b49ed3a82b 55125 net extra nova_2012.1.1-5.debian.tar.gz
b3867b6b16a939a1bb7cd470eef32bfc 1779248 python extra python-nova_2012.1.1-5_all.deb
32a20ef09a4a7806c5ea0721bcf07fb6 39714 net extra nova-common_2012.1.1-5_all.deb
18519dae5f4488668d92af6fd4941d91 16436 net extra nova-compute_2012.1.1-5_all.deb
4b967e476d6c20e32bf35905e4d3bf26 11632 net extra nova-compute-lxc_2012.1.1-5_all.deb
bd72e17423bcae86594cc718c24372bd 11650 net extra nova-compute-uml_2012.1.1-5_all.deb
5fc44f3e485f16afa34f5057347e88ed 15390 net extra nova-compute-xen_2012.1.1-5_all.deb
d9b992c1879f40155e1f2158e5734131 11558 net extra nova-compute-qemu_2012.1.1-5_all.deb
76705edadb4db991589084a02d87fffe 11638 net extra nova-compute-kvm_2012.1.1-5_all.deb
7578e064e7a17d36c9503d2fd5877be8 14150 net extra nova-scheduler_2012.1.1-5_all.deb
d78d11d422586b709cbe57bfcee5afbd 15060 net extra nova-volume_2012.1.1-5_all.deb
494ccf16d6a4b448622be31bc7fb4329 14036 net extra nova-api_2012.1.1-5_all.deb
dacad18b15b1c7c5ec8f583382fc1119 16940 net extra nova-network_2012.1.1-5_all.deb
335ae1f53314a49b0fcbb1a30f5f0b17 14244 net extra nova-objectstore_2012.1.1-5_all.deb
19928bbbdc135991a926bee18449f22f 14764 net extra nova-console_2012.1.1-5_all.deb
fb8950c3f96c8d70aa48effa9dd8a67a 14112 net extra nova-cert_2012.1.1-5_all.deb
aec514923f8a97f8eefa9f50daf0c366 34058 net extra nova-xcp-plugins_2012.1.1-5_all.deb
00b75e1a6775d1aa3cd33d8584888ffe 18778 net extra nova-xcp-network_2012.1.1-5_all.deb
f3b8e7a68b460229368de08c89ca31e6 1716984 doc extra nova-doc_2012.1.1-5_all.deb
68070a362b6d87336973344d75692db2 14034 net extra nova-xvpvncproxy_2012.1.1-5_all.deb
1a7d73c820b8f885b567434eb0af38d5 13942 net extra nova-api-metadata_2012.1.1-5_all.deb
258729577e910f1ba29ba6c43ed12816 13956 net extra nova-api-os-compute_2012.1.1-5_all.deb
6c6392330ffe0bf791ae4f94e6f6ccfa 13960 net extra nova-api-os-volume_2012.1.1-5_all.deb
fa83b4e064a750b69abd253fe6d5a327 13926 net extra nova-api-ec2_2012.1.1-5_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAk/+ivkACgkQZttaNibwIPcvrQCfdV06bRrJIkHqPa3Z/IrXEax8
5oQAoJkuhfiuVl4TM3oTEbmfqy5twULG
=wy0b
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Fri, 26 Oct 2012 07:25:28 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 14:17:12 2019;
Machine Name:
beach
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon