U radu programskog paketa openstack-nova uočena su dva sigurnosna nedostatka koje zlonamjerni napadači mogu iskoristiti za zaobilaženje postavljenih ograničenja i napad uskraćivanja usluga.
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-5026
2012-03-31 02:14:32
--------------------------------------------------------------------------------
Name : openstack-nova
Product : Fedora 16
Version : 2011.3.1
Release : 7.fc16
URL : http://openstack.org/projects/compute/
Summary : OpenStack Compute (nova)
Description :
OpenStack Compute (codename Nova) is open source software designed to
provision and manage large networks of virtual machines, creating a
redundant and scalable cloud computing platform. It gives you the
software, control panels, and APIs required to orchestrate a cloud,
including running instances, managing networks, and controlling access
through users and projects. OpenStack Compute strives to be both
hardware and hypervisor agnostic, currently supporting a variety of
standard hardware configurations and seven major hypervisors.
--------------------------------------------------------------------------------
Update Information:
CVE-2012-1585: Long server names grow nova-api log files significantly
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 29 2012 Russell Bryant <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 2011.3.1-7
- CVE-2012-1585 - Long server names grow nova-api log files significantly
- Resolves: rhbz#808150
* Mon Mar 26 2012 Mark McLoughlin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 2011.3.1-6
- Avoid killing dnsmasq on network service shutdown (#805947)
* Tue Mar 6 2012 PÄ
Posljednje sigurnosne preporuke