Mirantis OpenStack

Mirantis OpenStack 5.1.1-mu-2

Milestone information

Project:: Mirantis OpenStack

Series:: 5.1.x

Version:: 5.1.1-mu-2

Released:: 2015-11-30

Registrant:: Vitaly Sedelnik

Release registered:: 2015-11-30

Active:: No. Drivers cannot target bugs and blueprints to this milestone.

Download RDF metadata

Activities

Assigned to you:: No blueprints or bugs assigned to you.

Assignees:: 1 Alexander Nevenchannyy, 4 Alexey Khivin, 1 Denis Meltsaykin, 6 Denis Puchkin, 2 Sergii Rizvan

Blueprints:: No blueprints are targeted to this milestone.

Bugs:: 14 Fix Released

Download files for this release

Release notes

This release does not have release notes.

Changelog

This release does not have a changelog.

0 blueprints and 14 bugs targeted

Bug report				Importance	Assignee	Status
1398893	#1398893	Backport upstream security fix for login page DOS-attack vulnerability (CVE-2014-8124)		2 Critical	Alexey Khivin	10 Fix Released
1399271	#1399271	Finalize fix for CVE-2014-8124		2 Critical	Alexey Khivin	10 Fix Released
1403102	#1403102	Glance allows users to download and delete any file in glance-api server		2 Critical	Denis Puchkin	10 Fix Released
1414685	#1414685	[Glance] Glance user storage quota bypass #1		2 Critical	Denis Puchkin	10 Fix Released
1465333	#1465333	Format-guessing and file disclosure in image convert (CVE-2015-1850)		2 Critical	Denis Puchkin	10 Fix Released
1496798	#1496798	User can change image status directly with v1 API		2 Critical	Sergii Rizvan	10 Fix Released
1497984	#1497984	[Glance] Glance user storage quota bypass #2		2 Critical	Alexey Khivin	10 Fix Released
1514467	#1514467	[OSSA-2015-002] Glance still allows users to download and delete any file in glance-api server (CVE-2015-1195)		2 Critical	Denis Puchkin	10 Fix Released
1444546	#1444546	Cinder RBD driver blocks service on long-running tasks		3 High	Alexey Khivin	10 Fix Released
1466101	#1466101	Swift upstart mechanism is broken on controllers		3 High	Alexander Nevenchannyy	10 Fix Released
1469149	#1469149	[CVE-2015-3646][OSSA 2015-008] backend_argument containing a password leaked in logs		3 High	Denis Puchkin	10 Fix Released
1487450	#1487450	Information leak via Swift tempurls (CVE-2015-5223)		3 High	Denis Meltsaykin	10 Fix Released
1489958	#1489958	(CVE-2015-5240) Neutron firewall rules bypass through port update		3 High	Denis Puchkin	10 Fix Released
1510957	#1510957	Volume stays in 'in-use' state after detach		3 High	Sergii Rizvan	10 Fix Released

Related milestones and releases

This milestone contains Public information

Everyone can see this information.