{"affected":[],"aliases":[],"details":"\nThis update for openstack-nova provides stability fixes from the upstream \nOpenStack project:\n\n * Add @retry_on_deadlock to _instance_update()\n * Fix nova-compute start issue after evacuate\n * Fix nova evacuate issues for RBD\n * Add _wrap_db_error() support to SessionTransaction.commit()\n * Fixes DoS issue in instance list ip filter (bnc#903013,\n CVE-2014-3708)\n * Make the block device mapping retries configurable\n * Retry on closing of luks encrypted volume in case device is busy\n * Nova api service doesn't handle SIGHUP properly\n * Fix XML UnicodeEncode serialization error\n * share neutron admin auth tokens\n * Fix CellStateManagerFile init to failure\n * postgresql: use postgres db instead of template1\n * Fix instance cross AZ check when attaching volumes\n * Fixes missing ec2 api address disassociate error on failure\n * Ignore errors when deleting non-existing vifs\n * VMware: validate that VM exists on backend prior to deletion\n * VMWare: Fix VM leak when deletion of VM during resizing\n * Sync process utils from oslo\n * VMware: prevent race condition with VNC port allocation (bnc#901087,\n CVE-2014-8750)\n * Fixes Hyper-V volume mapping issue on reboot\n * Raise descriptive error for over volume quota\n * libvirt: Handle unsupported host capabilities\n * libvirt: Make fakelibvirt.libvirtError match\n * Adds tests for Hyper-V VM Utils\n * Removes unnecessary instructions in test_hypervapi\n * Fixes a Hyper-V list_instances localization issue\n * Adds list_instance_uuids to the Hyper-V driver\n * Add _wrap_db_error() support to Session.commit()\n * Sync process and str utils from oslo (bnc#899190 CVE-2014-7230\n CVE-2014-7231)\n * Fixes Hyper-V agent force_hyperv_utils_v1 flag issue\n * Fix live-migration failure in FC multipath case\n * libvirt: Save device_path in connection_info when booting from volume\n * Fixes Hyper-V boot from volume root device issue\n * Catch missing Glance image attrs with None\n * Adds get_instance_disk_info to compute drivers\n * Include next link when default limit is reached\n * VM in rescue state must have a restricted set of actions to avoid\n leaking rescued images (bnc#899199, CVE-2014-3608)\n * libvirt: return the correct instance path while cleanup_resize\n * Fix nova image-show with queued image\n * _translate_from_glance() can cause an unnecessary HTTP request\n * Neutron: Atomic update of instance info cache\n * Ensure info cache updates don't overwhelm cells\n * remove test_multiprocess_api\n * Fixes Hyper-V resize down exception\n * libvirt: Use VIR_DOMAIN_AFFECT_LIVE for paused instances\n * Fix _parse_datetime in simple tenant usage extension\n * Avoid traceback logs from simple tenant usage extension\n * Made unassigned networks visible in flat networking\n * VMware: validate that VM exists on backend prior to deletion\n (bnc#898371)\n * Fix attaching config drive issue on Hyper-V when migrate instances\n * Do not fail cell's instance deletion, if it's missing info_cache\n * Fixes Hyper-V vm state issue\n * Update block_device_info to contain swap and ephemeral disks\n * Loosen import_exceptions to cover all of gettextutils\n * Fix instance boot when Ceph is used for ephemeral storage\n * VMware: do not cache image when root_gb is 0\n * Delete image when backup operation failed on snapshot step\n * db: Add @_retry_on_deadlock to service_update()\n * Fix rootwrap for non openstack.org iqn's\n * Add Hyper-V driver in the 'compute_driver' option description\n * Block sqlalchemy migrate 0.9.2 as it breaks all of nova\n * Move the error check for 'brctl addif'\n * Add a retry_on_deadlock to reservations_expire\n * Add expire reservations in backport position\n * Make floatingip-ip-delete atomic with neutron\n * add repr for event objects\n * make lifecycle event logs more clear\n * Fix race condition with vif plugging in finish migrate\n * Delay STOPPED lifecycle event for Xen domains (bnc#867922)\n * Fix FloatingIP.save() passing FixedIP object to sqlalchemy\n * fix filelist\n * use %_rundir if available, otherwise /var/run\n * Fix expected error details from jsonschema\n * replace NovaException with VirtualInterfaceCreate when neutron fails\n * Fixes Hyper-V SCSI slot selection\n * libvirt: convert cpu features attribute from list to a set\n * Read deleted instances during lifecycle events\n * shelve doesn't work on nova-cells environment\n * Mask block_device_info auth_password in virt driver debug logs\n * only emit deprecation warnings once\n\nSecurity Issues:\n\n * CVE-2014-3708\n \n * CVE-2014-3608\n \n * CVE-2014-7230\n \n * CVE-2014-7231\n \n * CVE-2014-8750\n \n\n","id":"SUSE-SU-2015:0324-1","modified":"2015-01-19T16:34:28Z","published":"2015-01-19T16:34:28Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20150324-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/867922"},{"type":"REPORT","url":"https://bugzilla.suse.com/897815"},{"type":"REPORT","url":"https://bugzilla.suse.com/898371"},{"type":"REPORT","url":"https://bugzilla.suse.com/899190"},{"type":"REPORT","url":"https://bugzilla.suse.com/899199"},{"type":"REPORT","url":"https://bugzilla.suse.com/901087"},{"type":"REPORT","url":"https://bugzilla.suse.com/903013"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-3608"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-3708"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-7230"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-7231"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2014-8750"}],"related":["CVE-2014-3608","CVE-2014-3708","CVE-2014-7230","CVE-2014-7231","CVE-2014-8750"],"summary":"Security update for openstack-nova","upstream":["CVE-2014-3608","CVE-2014-3708","CVE-2014-7230","CVE-2014-7231","CVE-2014-8750"]}