SUSE-SU-2015:1602-1: Security update for python modules

sle-updates at lists.suse.com sle-updates at lists.suse.com
Tue Sep 22 08:09:41 MDT 2015


   SUSE Security Update: Security update for python modules
______________________________________________________________________________

Announcement ID:    SUSE-SU-2015:1602-1
Rating:             low
References:         #914910 #928205 #933758 
Affected Products:
                    SUSE OpenStack Cloud Compute 5
______________________________________________________________________________

   An update that contains security fixes can now be installed.

Description:

   This update for several python modules provides the following security fix
   and improvements.

   - python-keystonemiddleware:
     + Fix s3_token middleware parsing insecure option (bsc#928205,
       CVE-2015-1852)

   - python-novaclient:
     + Update novaclient shell to use shared arguments from Session
       (bnc#933758)
     + Support using the Keystone V3 API from the Nova CLI (bnc#933758)

   - python-swiftclient:
     + Add dependency to python-setuptools (bnc#914910)

   - python-glanceclient:
     + Remove deprecation warning


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE OpenStack Cloud Compute 5:

      zypper in -t patch SUSE-SLE12-CLOUD-5-2015-570=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE OpenStack Cloud Compute 5 (noarch):

      python-glanceclient-0.15.0-3.1
      python-keystoneclient-1.0.0-19.1
      python-keystoneclient-doc-1.0.0-19.1
      python-keystonemiddleware-1.2.0-4.1
      python-novaclient-2.20.0-6.1
      python-novaclient-doc-2.20.0-6.1
      python-swiftclient-2.3.1-3.1
      python-swiftclient-doc-2.3.1-3.1


References:

   https://bugzilla.suse.com/914910
   https://bugzilla.suse.com/928205
   https://bugzilla.suse.com/933758



More information about the sle-updates mailing list