원본: Release Notes, 2014.2.4
2014.2.4 릴리즈는 OpenStack Compute (Nova), OpenStack Identity (Keystone), OpenStack Image Registry and Delivery Service (Glance), OpenStack Networking (Neutron), OpenStack Block Storage (Cinder), OpenStack Dashboard (Horizon), OpenStack Orchestration (Heat), OpenStack Telemetry (Ceilometer), OpenStack Data Processing (Sahara) and OpenStack Database Service (Trove)에 대한 Juno 버그픽스 업데이트입니다.
이번 릴리즈에 포함된 버그 픽스는 stable 브런치에서 개발 브런치로 백포트했습니다. 이번 릴리즈는 의도한 되돌리기 또는 API 변경에 있어 낮은 위험성으로 업데이트를 하기위한 것입니다.
해결된 보안 이슈
Cinder
OSSA-2015-011: Cinder host file disclosure through qcow2 backing file
Glance
OSSA-2015-019: Glance image status manipulation
OSSA-2015-020: Glance storage overrun
Horizon
OSSA-2015-009: Persistent XSS in Horizon metadata dashboard
OSSA-2015-010: XSS in Horizon Heat stack creation
Keystone
OSSA-2015-009: Potential Keystone cache backend password leak in log
Neutron
OSSA-2015-012: Neutron L2 agent DoS through incorrect allowed address pairs
OSSA-2015-018: Neutron firewall rules bypass through port update
Nova
OSSA-2015-017: Nova may fail to delete images in resize state
OSSA-2015-021: Nova network security group changes are not applied to running instances
버그 픽스
총 180개.
OpenStack Compute (Nova) 2014.2.4 버그 픽스
OpenStack Identity (Keystone) 2014.2.4 버그 픽스
OpenStack Image Registry and Delivery Service (Glance) 2014.2.4 버그 픽스
OpenStack Networking (Neutron) 2014.2.4 버그 픽스
OpenStack Block Storage (Cinder) 2014.2.4 버그 픽스
OpenStack Dashboard (Horizon) 2014.2.4 버그 픽스
OpenStack Orchestration (Heat) 2014.2.4 버그 픽스
OpenStack Telemetry (Ceilometer) 2014.2.4 버그 픽스
OpenStack Data Processing (Sahara) 2014.2.4 버그 픽스
OpenStack Database service (Trove) 2014.2.4 버그 픽스
알려진 이슈나 제한 사항
Neutron
Zero prefixed address pairs are no longer accepted by the Juno API, users need to use 0.0.0.0/1 and 128.0.0.1/1 or /1 and 8000/1 instead. The fix_zero_length_ip_prefix.py tool is provided to clean ports previously configured with a zero prefixed address pair.
from OpenStack 한국 커뮤니티 http://ift.tt/1jemWsD