[Openstack] [OSSA 2015-011] Cinder host file disclosure through qcow2 backing file (CVE-2015-1850)

Tristan Cacqueray tdecacqu at redhat.com
Tue Jun 16 19:34:53 UTC 2015


[dropped openstack-announces]

On 06/16/2015 12:14 PM, Haïkel wrote:
>> Notes
>> > ~~~~~
>> > - This fix will be included in future 2014.1.5 (icehouse), 2014.2.4
>> >   (juno) and 2015.1.1 (kilo) releases.
>> >
> There were discussions about not issueing stable point releases anymore.
> Will there be new releases or not ?
> 
> Regards,
> H.
> 
> 

This is more of a question for stable maintainers, afaik the stable
point release model is still under discussion and the plan seems to stop
them after the one scheduled.

If version number change or whatever, we may go back and provides errata
to update these OSSAs notes.

Regards,
Tristan

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20150616/2bc75e84/attachment.sig>


More information about the Openstack mailing list