Changelog
nova (2013.2.1-1) unstable; urgency=high
* New upstream release (Closes: #732022). This fixes: CVE-2013-7048: Nova
live snapshots use an insecure local directory and CVE-2013-6419:
Metadata queries from Neutron to Nova are not restricted by tenant.
* Added | cut -d" " -f1 when searching for the default gateway interface,
in the nova-common.config script that tries to guess the "my_ip" address,
just in case there's more than one interface in use (in which case it may
fail in non-interactive mode).
* Updates the French debconf translation which was broken, thanks to our
cheesemaster for the update (Closes: #732267).
* Updates the Spanish debconf translation, thanks to jathan
<email address hidden> for this update (Closes: #732206).
* Fixes requirement.txt patch (upstream now includes the python-six fix).
* Removes patch applied upstream:
CVE-2013-4463_CVE-2013-4469_ensure_we_dont_boot_oversized_image.patch
* Fix typoe in libvirt_vif_driver (had Hybird instead of Hybrid).
* Updates (build-)depends version of python-six (>= 1.4.1) and
python-iso8601 (>= 0.1.8).
* Removed python-argparse from python-nova depends.
-- Thomas Goirand <email address hidden> Mon, 16 Dec 2013 16:33:25 +0800
