Merge pull request #1114 from stackhpc/2023.1-bumps

2023.1: Fix CVE-2024-32498
stackhpc · Jul 2, 2024 · 2e40537 · 2e40537
2 parents 84e7994 + dd68ebe
commit 2e40537
Show file tree

Hide file tree

Showing 2 changed files with 16 additions and 0 deletions.
diff --git a/etc/kayobe/kolla-image-tags.yml b/etc/kayobe/kolla-image-tags.yml
@@ -6,9 +6,15 @@ kolla_image_tags:
   openstack:
     rocky-9: 2023.1-rocky-9-20240423T125905
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240423T125905
+  cinder:
+    rocky-9: 2023.1-rocky-9-20240701T123544
+    ubuntu-jammy: 2023.1-ubuntu-jammy-20240701T123544
   cloudkitty:
     rocky-9: 2023.1-rocky-9-20240509T111619
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240509T111619
+  glance:
+    rocky-9: 2023.1-rocky-9-20240701T123544
+    ubuntu-jammy: 2023.1-ubuntu-jammy-20240701T123544
   haproxy_ssh:
     rocky-9: 2023.1-rocky-9-20240509T102329
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240509T102329
@@ -18,5 +24,8 @@ kolla_image_tags:
   magnum:
     rocky-9: 2023.1-rocky-9-20240607T082105
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240607T082105
+  nova:
+    rocky-9: 2023.1-rocky-9-20240702T082319
+    ubuntu-jammy: 2023.1-ubuntu-jammy-20240702T082319
   opensearch:
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240509T094444
diff --git a/releasenotes/notes/cve-2024-32498-2cbd205129351766.yaml b/releasenotes/notes/cve-2024-32498-2cbd205129351766.yaml
@@ -0,0 +1,7 @@
+---
+critical:
+  - |
+    Fixes `CVE-2024-32498
+    <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32498>`_ with
+    updated container images for Cinder, Glance and Nova services.
+