SUSE-RU-2021:0351-1: important: Recommended update for ardana-horizon, ardana-logging, ardana-monasca, ardana-mq, ardana-osconfig, crowbar-ha, crowbar-openstack, kibana, openstack-neutron, openstack-nova, python-Django, release-notes-suse-openstack-cloud, sleshammer, spark
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Tue Feb 9 17:16:14 UTC 2021
SUSE Recommended Update: Recommended update for ardana-horizon, ardana-logging, ardana-monasca, ardana-mq, ardana-osconfig, crowbar-ha, crowbar-openstack, kibana, openstack-neutron, openstack-nova, python-Django, release-notes-suse-openstack-cloud, sleshammer, spark
______________________________________________________________________________
Announcement ID: SUSE-RU-2021:0351-1
Rating: important
References: #1048688 #1164838 #1177611 #1179189 #1179955
#1180916 #1181379 SCRD-7737 SCRD-8255 SCRD-8294
SCRD-8462 SCRD-8705 SOC-10001 SOC-10010 SOC-10133
SOC-10150 SOC-10173 SOC-10191 SOC-10233 SOC-10288
SOC-10339 SOC-10348 SOC-10373 SOC-10378 SOC-10440
SOC-10453 SOC-10456 SOC-10549 SOC-10550 SOC-10623
SOC-10633 SOC-10636 SOC-10658 SOC-10660 SOC-10717
SOC-10740 SOC-10835 SOC-10844 SOC-10874 SOC-10877
SOC-10883 SOC-10887 SOC-10899 SOC-10952 SOC-11000
SOC-11006 SOC-11023 SOC-11028 SOC-11039 SOC-11052
SOC-11077 SOC-11079 SOC-11103 SOC-11117 SOC-11118
SOC-11119 SOC-11141 SOC-11176 SOC-11179 SOC-11190
SOC-11238 SOC-11240 SOC-11243 SOC-11248 SOC-11274
SOC-11286 SOC-11333 SOC-11429 SOC-5270 SOC-6354
SOC-7364 SOC-9288 SOC-9297 SOC-9298 SOC-9631
SOC-9632 SOC-9633 SOC-9636 SOC-9683 SOC-9695
SOC-9766 SOC-9767 SOC-9799 SOC-9849
Affected Products:
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud 8
HPE Helion Openstack 8
______________________________________________________________________________
An update that solves three vulnerabilities, contains 77
features and has four fixes is now available.
Description:
This update for ardana-horizon, ardana-logging, ardana-monasca, ardana-mq,
ardana-osconfig, crowbar-ha, crowbar-openstack, kibana, openstack-neutron,
openstack-nova, python-Django, release-notes-suse-openstack-cloud,
sleshammer, spark fixes the following issues:
Security fix from this update: python-Django1
- CVE-2021-3281: Fixed a potential directory traversal when extracting
archives (bsc#1181379).
Changes in ardana-horizon_Update:
- Update to version 8.0+git.1610733160.0f577f4:
* Add Fix for logfile permissions (bsc#1179189)
Changes in ardana-logging_Update:
- Update to version 8.0+git.1610573640.452aed1:
* Remove some files from upgrade.yml (bsc#1179189)
Changes in ardana-monasca_Update:
- Update to version 8.0+git.1610740501.5dca121:
* Add Fix for logfile permissions (bsc#1179189)
Changes in ardana-mq_Update:
- Update to version 8.0+git.1605176800.52cccfa:
* Re-enable mirroring of fanout and reply queues (bsc#1177611)
Changes in ardana-osconfig_Update:
- Update to version 8.0+git.1610643571.91b88d6:
* Remove SLES-12-SP3-LTSS repos (bsc#1180916)
Changes in crowbar-ha:
- Update to version 5.0+git.1610564036.b75ee1b:
* [5.0] crowbar-pacemaker: Cluster member SSH key improvements
Changes in crowbar-openstack:
- Update to version 5.0+git.1610402513.08dca931e:
* neutron: Fix handling of networks with non-ascii names (SOC-11429)
- Update to version 5.0+git.1610372799.621afb999:
* keystone: fix keystone node lookup (SOC-11333, bsc#1164838)
Changes in kibana:
- Add 0001-Configurable-custom-response-headers-for-server.patch
(bsc#1171909, CVE-2020-10743)
- Added kibana.yml symlink (bsc#1048688, FATE#323204)
Changes in openstack-nova_Update:
- Update to version nova-16.1.9.dev78:
* [stable-only] Cap bandit to 1.6.2
Changes in python-Django_Update:
- Add CVE-2021-3281.patch (bsc#1181379, CVE-2021-3281)
* Fixes a potential directory traversal when extracting archives
Changes in release-notes-suse-openstack-cloud:
- Fix incorrect issue number for bsc#1179955
- Update to version 8.20201214:
* Add workaround for secure boot issue when shim package is updated.
(bsc#1179955)
Changes in spark_Update:
- Add _constraints to prevent build from running out of disk space.
Changes in sleshammer:
- Really drop etc/udev/rules.d/70-persistent-net.rules from the overlay it
was still present in the tarball. (SOC-9288)
- added ruby2.1-rubygem-crowbar-client providing crowbarctl
Patch Instructions:
To install this SUSE Recommended Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE OpenStack Cloud Crowbar 8:
zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2021-351=1
- SUSE OpenStack Cloud 8:
zypper in -t patch SUSE-OpenStack-Cloud-8-2021-351=1
- HPE Helion Openstack 8:
zypper in -t patch HPE-Helion-OpenStack-8-2021-351=1
Package List:
- SUSE OpenStack Cloud Crowbar 8 (x86_64):
kibana-4.6.3-3.6.1
kibana-debuginfo-4.6.3-3.6.1
- SUSE OpenStack Cloud Crowbar 8 (noarch):
crowbar-ha-5.0+git.1610564036.b75ee1b-3.35.1
crowbar-openstack-5.0+git.1610402513.08dca931e-4.49.1
openstack-neutron-11.0.9~dev69-3.40.1
openstack-neutron-dhcp-agent-11.0.9~dev69-3.40.1
openstack-neutron-doc-11.0.9~dev69-3.40.1
openstack-neutron-ha-tool-11.0.9~dev69-3.40.1
openstack-neutron-l3-agent-11.0.9~dev69-3.40.1
openstack-neutron-linuxbridge-agent-11.0.9~dev69-3.40.1
openstack-neutron-macvtap-agent-11.0.9~dev69-3.40.1
openstack-neutron-metadata-agent-11.0.9~dev69-3.40.1
openstack-neutron-metering-agent-11.0.9~dev69-3.40.1
openstack-neutron-openvswitch-agent-11.0.9~dev69-3.40.1
openstack-neutron-server-11.0.9~dev69-3.40.1
openstack-nova-16.1.9~dev78-3.45.1
openstack-nova-api-16.1.9~dev78-3.45.1
openstack-nova-cells-16.1.9~dev78-3.45.1
openstack-nova-compute-16.1.9~dev78-3.45.1
openstack-nova-conductor-16.1.9~dev78-3.45.1
openstack-nova-console-16.1.9~dev78-3.45.1
openstack-nova-consoleauth-16.1.9~dev78-3.45.1
openstack-nova-doc-16.1.9~dev78-3.45.1
openstack-nova-novncproxy-16.1.9~dev78-3.45.1
openstack-nova-placement-api-16.1.9~dev78-3.45.1
openstack-nova-scheduler-16.1.9~dev78-3.45.1
openstack-nova-serialproxy-16.1.9~dev78-3.45.1
openstack-nova-vncproxy-16.1.9~dev78-3.45.1
python-Django-1.11.29-3.22.1
python-neutron-11.0.9~dev69-3.40.1
python-nova-16.1.9~dev78-3.45.1
release-notes-suse-openstack-cloud-8.20201214-3.29.1
sleshammer-aarch64-0.8.0-0.20.2
sleshammer-debugsource-0.8.0-0.20.2
sleshammer-ppc64le-0.8.0-0.20.2
sleshammer-s390x-0.8.0-0.20.2
sleshammer-x86_64-0.8.0-0.20.2
spark-1.6.3-8.6.1
- SUSE OpenStack Cloud 8 (x86_64):
kibana-4.6.3-3.6.1
kibana-debuginfo-4.6.3-3.6.1
- SUSE OpenStack Cloud 8 (noarch):
ardana-horizon-8.0+git.1610733160.0f577f4-3.21.1
ardana-logging-8.0+git.1610573640.452aed1-3.27.1
ardana-monasca-8.0+git.1610740501.5dca121-3.27.1
ardana-mq-8.0+git.1605176800.52cccfa-3.29.1
ardana-osconfig-8.0+git.1610643571.91b88d6-3.52.1
openstack-neutron-11.0.9~dev69-3.40.1
openstack-neutron-dhcp-agent-11.0.9~dev69-3.40.1
openstack-neutron-doc-11.0.9~dev69-3.40.1
openstack-neutron-ha-tool-11.0.9~dev69-3.40.1
openstack-neutron-l3-agent-11.0.9~dev69-3.40.1
openstack-neutron-linuxbridge-agent-11.0.9~dev69-3.40.1
openstack-neutron-macvtap-agent-11.0.9~dev69-3.40.1
openstack-neutron-metadata-agent-11.0.9~dev69-3.40.1
openstack-neutron-metering-agent-11.0.9~dev69-3.40.1
openstack-neutron-openvswitch-agent-11.0.9~dev69-3.40.1
openstack-neutron-server-11.0.9~dev69-3.40.1
openstack-nova-16.1.9~dev78-3.45.1
openstack-nova-api-16.1.9~dev78-3.45.1
openstack-nova-cells-16.1.9~dev78-3.45.1
openstack-nova-compute-16.1.9~dev78-3.45.1
openstack-nova-conductor-16.1.9~dev78-3.45.1
openstack-nova-console-16.1.9~dev78-3.45.1
openstack-nova-consoleauth-16.1.9~dev78-3.45.1
openstack-nova-doc-16.1.9~dev78-3.45.1
openstack-nova-novncproxy-16.1.9~dev78-3.45.1
openstack-nova-placement-api-16.1.9~dev78-3.45.1
openstack-nova-scheduler-16.1.9~dev78-3.45.1
openstack-nova-serialproxy-16.1.9~dev78-3.45.1
openstack-nova-vncproxy-16.1.9~dev78-3.45.1
python-Django-1.11.29-3.22.1
python-neutron-11.0.9~dev69-3.40.1
python-nova-16.1.9~dev78-3.45.1
release-notes-suse-openstack-cloud-8.20201214-3.29.1
spark-1.6.3-8.6.1
venv-openstack-horizon-x86_64-12.0.5~dev6-14.34.3
venv-openstack-neutron-x86_64-11.0.9~dev69-13.36.1
venv-openstack-nova-x86_64-16.1.9~dev78-11.34.1
- HPE Helion Openstack 8 (x86_64):
kibana-4.6.3-3.6.1
kibana-debuginfo-4.6.3-3.6.1
- HPE Helion Openstack 8 (noarch):
ardana-horizon-8.0+git.1610733160.0f577f4-3.21.1
ardana-logging-8.0+git.1610573640.452aed1-3.27.1
ardana-monasca-8.0+git.1610740501.5dca121-3.27.1
ardana-mq-8.0+git.1605176800.52cccfa-3.29.1
ardana-osconfig-8.0+git.1610643571.91b88d6-3.52.1
openstack-neutron-11.0.9~dev69-3.40.1
openstack-neutron-dhcp-agent-11.0.9~dev69-3.40.1
openstack-neutron-doc-11.0.9~dev69-3.40.1
openstack-neutron-ha-tool-11.0.9~dev69-3.40.1
openstack-neutron-l3-agent-11.0.9~dev69-3.40.1
openstack-neutron-linuxbridge-agent-11.0.9~dev69-3.40.1
openstack-neutron-macvtap-agent-11.0.9~dev69-3.40.1
openstack-neutron-metadata-agent-11.0.9~dev69-3.40.1
openstack-neutron-metering-agent-11.0.9~dev69-3.40.1
openstack-neutron-openvswitch-agent-11.0.9~dev69-3.40.1
openstack-neutron-server-11.0.9~dev69-3.40.1
openstack-nova-16.1.9~dev78-3.45.1
openstack-nova-api-16.1.9~dev78-3.45.1
openstack-nova-cells-16.1.9~dev78-3.45.1
openstack-nova-compute-16.1.9~dev78-3.45.1
openstack-nova-conductor-16.1.9~dev78-3.45.1
openstack-nova-console-16.1.9~dev78-3.45.1
openstack-nova-consoleauth-16.1.9~dev78-3.45.1
openstack-nova-doc-16.1.9~dev78-3.45.1
openstack-nova-novncproxy-16.1.9~dev78-3.45.1
openstack-nova-placement-api-16.1.9~dev78-3.45.1
openstack-nova-scheduler-16.1.9~dev78-3.45.1
openstack-nova-serialproxy-16.1.9~dev78-3.45.1
openstack-nova-vncproxy-16.1.9~dev78-3.45.1
python-Django-1.11.29-3.22.1
python-neutron-11.0.9~dev69-3.40.1
python-nova-16.1.9~dev78-3.45.1
release-notes-hpe-helion-openstack-8.20201214-3.29.1
spark-1.6.3-8.6.1
venv-openstack-horizon-hpe-x86_64-12.0.5~dev6-14.34.1
venv-openstack-neutron-x86_64-11.0.9~dev69-13.36.1
venv-openstack-nova-x86_64-16.1.9~dev78-11.34.1
References:
https://www.suse.com/security/cve/CVE-2016-8611.html
https://www.suse.com/security/cve/CVE-2020-10743.html
https://www.suse.com/security/cve/CVE-2021-3281.html
https://bugzilla.suse.com/1048688
https://bugzilla.suse.com/1164838
https://bugzilla.suse.com/1177611
https://bugzilla.suse.com/1179189
https://bugzilla.suse.com/1179955
https://bugzilla.suse.com/1180916
https://bugzilla.suse.com/1181379
More information about the sle-updates
mailing list