Skip to content

Commit

Permalink
Update verbatim version info for OSSA-2013*
Browse files Browse the repository at this point in the history 
Add release information to review tags.
  • Loading branch information
Grant Murphy committed Nov 5, 2014
1 parent 99bc67b commit 777e7b7
Show file tree
Hide file tree
Showing 37 changed files with 190 additions and 91 deletions.
8 changes: 6 additions & 2 deletions OSSA-2013-001.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-January/
affected-products:

- product: nova
version: TODO
version: Essex, Folsom

vulnerabilities:

Expand Down Expand Up @@ -48,9 +48,13 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/20698

folsom:
- https://review.openstack.org/#/c/20699

essex:
- https://review.openstack.org/#/c/20700

type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-002.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-January/
affected-products:

- product: glance
version: TODO
version: All versions

This comment has been minimized.

Sign in to view

Copy link
@pombredanne

pombredanne May 24, 2021

@ttx
I think this is misleading and no longer applies, correct? Newer versions have been patched?

This comment has been minimized.

Sign in to view

Copy link
@cboylan

cboylan May 24, 2021

As noted at https://github.com/openstack/ossa this repo is a mirror of the canonical repo location. That means it is unlikely that many will see your question. A better venue for queries like this one would be the mailing list at openstack-discuss@lists.openstack.org (this is listed at https://github.com/openstack).

That said it is my understanding that "All versions" in this case means "All versions at the time this advisory was published" which was 2013. The review listed below for Grizzly, https://review.openstack.org/#/c/20695, was actually applied to the master branch and not stable/grizzly. This means that all future stable branches (including Grizzly) would include the listed change.

This comment has been minimized.

Sign in to view

Copy link
@ttx

ttx May 25, 2021

Contributor

Yes as Clark said, newer versions have been patched.

This comment has been minimized.

Sign in to view

Copy link
@pombredanne

pombredanne May 25, 2021

@cboylan @ttx Thanks! For reference, this came up as we are collecting these advisories as part of this project https://github.com/nexB/vulnerablecode/ and the topic came up as there are a few unbounded version ranges which are problematic to handle. This was discussed aboutcode-org/vulnerablecode#140 (comment)

vulnerabilities:

Expand Down Expand Up @@ -49,9 +49,13 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/20695

folsom:
- https://review.openstack.org/#/c/20696

essex:
- https://review.openstack.org/#/c/20697

type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-003.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-February
affected-products:

- product: keystone
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -47,9 +47,13 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/21213

folsom:
- https://review.openstack.org/#/c/21215

essex:
- https://review.openstack.org/#/c/21216

type: gerrit
12 changes: 8 additions & 4 deletions OSSA-2013-004.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,13 +18,13 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-February
affected-products:

- product: keystone
version: TODO
version: All versions

- product: nova
version: TODO
version: All versions

- product: cinder
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -84,13 +84,17 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/22309
- https://review.openstack.org/#/c/22310
- https://review.openstack.org/#/c/22315

folsom:
- https://review.openstack.org/#/c/22312
- https://review.openstack.org/#/c/22311
- https://review.openstack.org/#/c/22314

essex:
- https://review.openstack.org/#/c/22313
- https://review.openstack.org/#/c/22316

Expand Down
8 changes: 6 additions & 2 deletions OSSA-2013-005.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-February
affected-products:

- product: keystone
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -51,9 +51,13 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/22319

folsom:
- https://review.openstack.org/#/c/22320

essex:
- https://review.openstack.org/#/c/22321

type: gerrit
13 changes: 8 additions & 5 deletions OSSA-2013-006.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-February
affected-products:

- product: nova
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -53,11 +53,14 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/22086
- https://review.openstack.org/#/c/22616
- https://review.openstack.org/#/c/22872
- https://review.openstack.org/#/c/23768

folsom:
- https://review.openstack.org/#/c/22758

essex:
- https://review.openstack.org/#/c/22872


type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-007.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-March/00
affected-products:

- product: glance
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -49,9 +49,13 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/24437

folsom:
- https://review.openstack.org/#/c/24438

essex:
- https://review.openstack.org/#/c/24439

type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-008.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-March/00
affected-products:

- product: nova
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -48,9 +48,13 @@ issues:

reviews:

links:
grizzly:
- https://review.openstack.org/#/c/24451

folsom:
- https://review.openstack.org/#/c/24452

essex:
- https://review.openstack.org/#/c/24453

type: gerrit
4 changes: 2 additions & 2 deletions OSSA-2013-009.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-March/00
affected-products:

- product: keystone
version: TODO
version: Folsom

vulnerabilities:

Expand Down Expand Up @@ -49,7 +49,7 @@ issues:

reviews:

links:
folsom:
- https://review.openstack.org/#/c/24906

type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-010.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-May/0000
affected-products:

- product: nova
version: TODO
version: Folsom, Grizzly

vulnerabilities:

Expand Down Expand Up @@ -55,9 +55,13 @@ issues:

reviews:

links:
havana:
- https://review.openstack.org/#/c/28568

grizzly:
- https://review.openstack.org/#/c/28569

folsom:
- https://review.openstack.org/#/c/28570

type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-011.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-May/0000
affected-products:

- product: keystone
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -51,9 +51,13 @@ issues:

reviews:

links:
havana:
- https://review.openstack.org/#/c/28677

grizzly:
- https://review.openstack.org/#/c/28678

folsom:
- https://review.openstack.org/#/c/28679

type: gerrit
11 changes: 6 additions & 5 deletions OSSA-2013-012.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-May/0001
affected-products:

- product: nova
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -49,12 +49,13 @@ issues:

reviews:

links:
havana:
- https://review.openstack.org/#/c/28717

grizzly:
- https://review.openstack.org/#/c/28901

folsom:
- https://review.openstack.org/#/c/29192
- https://review.openstack.org/#/c/54765
- https://review.openstack.org/#/c/54767
- https://review.openstack.org/#/c/54768

type: gerrit
2 changes: 1 addition & 1 deletion OSSA-2013-013.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ reference: https://lists.launchpad.net/openstack/msg23923.html
affected-products:

- product: python-keystoneclient
version: TODO
version: All versions

vulnerabilities:

Expand Down
8 changes: 5 additions & 3 deletions OSSA-2013-014.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,10 +16,10 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-May/0001
affected-products:

- product: keystone
version: TODO
version: Folsom

- product: python-keystoneclient
version: TODO
version: Versions after 0.2.0

vulnerabilities:

Expand Down Expand Up @@ -57,8 +57,10 @@ issues:

reviews:

links:
python-keystone-0.2.4:
- https://review.openstack.org/#/c/30742

folsom:
- https://review.openstack.org/#/c/30743

type: gerrit
8 changes: 6 additions & 2 deletions OSSA-2013-015.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ reference: http://lists.openstack.org/pipermail/openstack-announce/2013-June/000
affected-products:

- product: keystone
version: TODO
version: Folsom, Grizzly

vulnerabilities:

Expand Down Expand Up @@ -48,9 +48,13 @@ issues:

reviews:

links:
havana:
- https://review.openstack.org/#/c/32896

grizzly:
- https://review.openstack.org/#/c/32895

folsom:
- https://review.openstack.org/#/c/32894

type: gerrit
10 changes: 7 additions & 3 deletions OSSA-2013-016.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ reference: https://lists.launchpad.net/openstack/msg24373.html
affected-products:

- product: swift
version: TODO
version: All versions

vulnerabilities:

Expand Down Expand Up @@ -47,10 +47,14 @@ issues:

reviews:

links:
havana:
- https://review.openstack.org/#/c/32905
- https://review.openstack.org/#/c/32982

grizzly:
- https://review.openstack.org/#/c/32909

folsom:
- https://review.openstack.org/#/c/32911
- https://review.openstack.org/#/c/32982

type: gerrit
Loading

0 comments on commit 777e7b7

Please sign in to comment.