This bug was fixed in the package nova - 2012.2.3-0ubuntu2
---------------
nova (2012.2.3-0ubuntu2) quantal-proposed; urgency=low
* Re-sync with latest security updates.
* SECURITY UPDATE: fix denial of service via fixed IPs when using extensions
- debian/patches/CVE-2013-1838.patch: add explicit quota for fixed IP
- CVE-2013-1838
* SECURITY UPDATE: fix VNC token validation
- debian/patches/CVE-2013-0335.patch: force console auth service to flush
all tokens associated with an instance when it is deleted
- CVE-2013-0335
* SECURITY UPDATE: fix denial of service
- CVE-2013-1664.patch: Add a new utils.safe_minidom_parse_string function
and update external API facing Nova modules to use it
- CVE-2013-1664
-- James Page <james.p...@ubuntu.com> Fri, 22 Mar 2013 12:40:07 +0000
** Changed in: keystone (Ubuntu Quantal)
Status: Fix Committed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2013-0282
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2013-1665
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2013-1865
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nova in Ubuntu.
https://bugs.launchpad.net/bugs/1116671
Title:
Meta bug for tracking Openstack 2012.2.3 Stable Update
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/1116671/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
