← Back to branch summary

~ubuntu-branches/ubuntu/utopic/heat/utopic

~ubuntu-branches/ubuntu/utopic/heat/utopic

« back to all changes in this revision

Viewing changes to debian/changelog

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2014-05-23 09:38:25 UTC
Revision ID: package-import@ubuntu.com-20140523093825-pjgg1z4sh0naco28

Tags: 2014.1-0ubuntu3

* SECURITY UPDATE: template URL information leakage
  - debian/patches/CVE-2014-3801.patch: Don't dynamically create provider
    types in the global env in heat/engine/environment.py, added test to
    heat/tests/test_provider_template.py.
  - CVE-2014-3801

files added:
.pc/CVE-2014-3801.patch

.pc/CVE-2014-3801.patch/heat

.pc/CVE-2014-3801.patch/heat/engine

.pc/CVE-2014-3801.patch/heat/engine/environment.py

.pc/CVE-2014-3801.patch/heat/tests

.pc/CVE-2014-3801.patch/heat/tests/test_provider_template.py

debian/patches/CVE-2014-3801.patch

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

heat/engine/environment.py

heat/tests/test_provider_template.py

Show diffs side-by-side

added added

removed removed

debian/changelog

1

heat (2014.1-0ubuntu3) utopic; urgency=medium

2

3

* SECURITY UPDATE: template URL information leakage

4

- debian/patches/CVE-2014-3801.patch: Don't dynamically create provider

5

types in the global env in heat/engine/environment.py, added test to

6

heat/tests/test_provider_template.py.

7

- CVE-2014-3801

8

9

-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Fri, 23 May 2014 09:38:25 -0400

10

1

11

heat (2014.1-0ubuntu2) utopic; urgency=medium

2

12

3

13

* Rebuild for sqlalchemy 0.9.

Older »