subject:"\[openstack\-dev\] \[nova\]\[stable\] Freeze exception for kilo CVE\-2015\-7548 backports"

Re: [openstack-dev] [nova][stable] Freeze exception for kilo CVE-2015-7548 backports

2016-01-15 Thread Thierry Carrez

Matthew Booth wrote: The following 3 patches fix CVE-2015-7548 Unprivileged api user can access host data using instance snapshot: https://review.openstack.org/#/c/264819/ https://review.openstack.org/#/c/264820/ https://review.openstack.org/#/c/264821/ The OSSA is rated critical. The patches

[openstack-dev] [nova][stable] Freeze exception for kilo CVE-2015-7548 backports

2016-01-15 Thread Matthew Booth

The following 3 patches fix CVE-2015-7548 Unprivileged api user can access host data using instance snapshot: https://review.openstack.org/#/c/264819/ https://review.openstack.org/#/c/264820/ https://review.openstack.org/#/c/264821/ The OSSA is rated critical. The patches have now landed on