We're happy to announce Ironic 4.2.2! This release contains a single bugfix for CVE-2015-7514, a critical issue where Ironic transparently does not run clean steps when tearing down an instance. To prevent user data leak, Ironic is expected to "clean" a server after use, however that is transparently not happening. Previous tenant's data may be left behind on the disk and may be available to new users. All Ironic setups are affected.
For more info, see https://bugs.launchpad.net/bugs/1517277. Full release notes: http://docs.openstack.org/releasenotes/ironic/liberty.html#id1 Tarball: https://tarballs.openstack.org/ironic/ironic-4.2.2.tar.gz Source: http://git.openstack.org/cgit/openstack/ironic Report bugs at: https://bugs.launchpad.net/ironic // jim _______________________________________________ OpenStack-announce mailing list [email protected] http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-announce
