- Issued:
- 2016-11-14
- Updated:
- 2016-11-14
RHBA-2016:2712 - Red Hat OpenStack Platform 8 Bug Fix and Enhancement Advisory
Synopsis
Red Hat OpenStack Platform 8 Bug Fix and Enhancement Advisory
Type/Severity
Bug Fix Advisory None
Topic
Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 8.0 (Liberty) for RHEL 7.
Description
Red Hat OpenStack Platform provides the facilities for building a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware.
Changes to the python-oslo-concurrency component:
- qemu-img calls were unrestricted by ulimit. This caused a security vulnerability (CVE-2015-5162) in Nova. The new minor version of oslo.concurrency adds support for process limits ('prlimit'), which patches the security vulnerability. (BZ#1349515)
Changes to the python-oslo-messaging component:
- A race condition prevented 'neutron-server' from stopping on the Overcloud. This caused a slow restart of the 'haproxy' resource. This bug fix corrects the race condition and provides resources with quicker and safer restarts. (BZ#1295692)
Solution
Before applying this update, ensure all previously released errata relevant to your system have been applied.
Red Hat OpenStack Platform 8 runs on Red Hat Enterprise Linux 7.2.
The Red Hat OpenStack Platform 8 Release Notes contain the following:
- An explanation of the way in which the provided components interact to form a working cloud computing environment.
- Technology Previews, Recommended Practices, and Known Issues.
- The channels required for Red Hat OpenStack Platform 8, including which channels need to be enabled and disabled.
The Release Notes are available at: This content is not included.https://access.redhat.com/documentation/en/red-hat-openstack-platform/version-8/release-notes/
This update is available through 'yum update' on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see:
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat OpenStack | 8 | x86_64 |
Updated Packages
- python-oslo-messaging-2.5.0-10.el7ost.src.rpm
- python-jsonpath-rw-ext-0.1.7-1.3.el7ost.src.rpm
- python-aodh-1.1.3-1.el7ost.noarch.rpm
- python-os-brick-0.5.0-3.el7ost.noarch.rpm
- python-oslo-concurrency-2.6.1-1.el7ost.noarch.rpm
- python-websockify-0.8.0-1.el7.src.rpm
- openstack-aodh-common-1.1.3-1.el7ost.noarch.rpm
- sahara-image-elements-3.0.0-6.el7ost.noarch.rpm
- python-jsonpath-rw-ext-0.1.7-1.3.el7ost.noarch.rpm
- python-websockify-0.8.0-1.el7.noarch.rpm
- openstack-aodh-evaluator-1.1.3-1.el7ost.noarch.rpm
- openstack-aodh-listener-1.1.3-1.el7ost.noarch.rpm
- openstack-aodh-compat-1.1.3-1.el7ost.noarch.rpm
- python-os-brick-0.5.0-3.el7ost.src.rpm
- openstack-aodh-1.1.3-1.el7ost.src.rpm
- openstack-aodh-notifier-1.1.3-1.el7ost.noarch.rpm
- rabbitmq-server-3.3.5-27.el7ost.src.rpm
- sahara-image-elements-3.0.0-6.el7ost.src.rpm
- openstack-aodh-api-1.1.3-1.el7ost.noarch.rpm
- python-oslo-concurrency-2.6.1-1.el7ost.src.rpm
- python-oslo-messaging-2.5.0-10.el7ost.noarch.rpm
- openstack-aodh-expirer-1.1.3-1.el7ost.noarch.rpm
- rabbitmq-server-3.3.5-27.el7ost.noarch.rpm
Fixes
- This content is not included.BZ - 1295692
- This content is not included.BZ - 1331669
- This content is not included.BZ - 1339224
- This content is not included.BZ - 1347331
- This content is not included.BZ - 1349515
- This content is not included.BZ - 1357918
- This content is not included.BZ - 1358099
- This content is not included.BZ - 1359887
- This content is not included.BZ - 1371521
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.