Red Hat Product Errata RHSA-2020:3702 - Security Advisory
Issued:
2020-09-10
Updated:
2020-09-10

RHSA-2020:3702 - Security Advisory

Synopsis

Important: openstack-nova security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openstack-nova is now available for Red Hat OpenStack
Platform 16.1 (Train).

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

Description

OpenStack Compute (nova) launches and schedules large networks of virtual
machines, creating a redundant and scalable cloud computing platform.
Compute provides the software, control panels, and APIs required to
orchestrate a cloud, including running virtual machine instances and
controlling access through users and projects.

Security Fix(es):

  • Soft reboot after live-migration reverts instance to original source

domain XML (CVE-2020-17376)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.

Solution

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat OpenStack for IBM Power 16.1 ppc64le
  • Red Hat OpenStack 16.1 x86_64

Fixes

  • BZ - 1869426 - CVE-2020-17376 openstack-nova: Soft reboot after live-migration reverts instance to original source domain XML

Red Hat OpenStack for IBM Power 16.1

SRPM
openstack-nova-20.3.1-0.20200626213436.38ee1f3.el8ost.src.rpm SHA-256: 5cdd1179bf2cff6f1845b1753f2bcce35a3226cc5a0db81c995ae75203cfe915
ppc64le
openstack-nova-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 9f56e54ba94338ea8137a5e73f0e108b399529afcde064ae33ca82927bc141c4
openstack-nova-api-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 11a35cef4ba0c1ccc6333da1fe699d4c1b681105648c501723941523848d5817
openstack-nova-common-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: dfb53e29d6aa84fa50e724f9d0ef0957e75113dd25e7f71a14bef16ef0815790
openstack-nova-compute-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 8225ad5ae2986143c91df2c0659351dba185457ffc6c1073077718dd8784029e
openstack-nova-conductor-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 875e8bb25dede136e16da3af5eab3b3212946d40673d06c7099ddaec49ba7cf1
openstack-nova-console-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: b79ed097778b282dddb1bbf5eb34c61e904ebfd70f7d21dc840f82c1257555f7
openstack-nova-migration-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 75177567f52efa3adef00281d76eb6593b9068b2cf5b8767ea8e5f6a8b1ca3f8
openstack-nova-novncproxy-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: b6b59b5983a5158c42306565100da21335ee194b6c1b1f823e8b6995921344e9
openstack-nova-scheduler-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: fed3dc7d787a0cccfcb468026d1b80d2a11b86eef84d175d32fe1cc6c6f70119
openstack-nova-serialproxy-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 0d7b3fce277e4dc638cb7b12cb53d5e61304e72205bdb8e01408bcaa46eb73dc
openstack-nova-spicehtml5proxy-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 5117b21cfa07e029305df9526c19aa086d935470e3c03379e547747016706e00
python3-nova-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: f084973c0eab69c01f791c531d3e6348bd66a4008f6845a51bf3ddf1f5c0e798

Red Hat OpenStack 16.1

SRPM
openstack-nova-20.3.1-0.20200626213436.38ee1f3.el8ost.src.rpm SHA-256: 5cdd1179bf2cff6f1845b1753f2bcce35a3226cc5a0db81c995ae75203cfe915
x86_64
openstack-nova-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 9f56e54ba94338ea8137a5e73f0e108b399529afcde064ae33ca82927bc141c4
openstack-nova-api-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 11a35cef4ba0c1ccc6333da1fe699d4c1b681105648c501723941523848d5817
openstack-nova-common-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: dfb53e29d6aa84fa50e724f9d0ef0957e75113dd25e7f71a14bef16ef0815790
openstack-nova-compute-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 8225ad5ae2986143c91df2c0659351dba185457ffc6c1073077718dd8784029e
openstack-nova-conductor-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 875e8bb25dede136e16da3af5eab3b3212946d40673d06c7099ddaec49ba7cf1
openstack-nova-console-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: b79ed097778b282dddb1bbf5eb34c61e904ebfd70f7d21dc840f82c1257555f7
openstack-nova-migration-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 75177567f52efa3adef00281d76eb6593b9068b2cf5b8767ea8e5f6a8b1ca3f8
openstack-nova-novncproxy-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: b6b59b5983a5158c42306565100da21335ee194b6c1b1f823e8b6995921344e9
openstack-nova-scheduler-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: fed3dc7d787a0cccfcb468026d1b80d2a11b86eef84d175d32fe1cc6c6f70119
openstack-nova-serialproxy-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 0d7b3fce277e4dc638cb7b12cb53d5e61304e72205bdb8e01408bcaa46eb73dc
openstack-nova-spicehtml5proxy-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: 5117b21cfa07e029305df9526c19aa086d935470e3c03379e547747016706e00
python3-nova-20.3.1-0.20200626213436.38ee1f3.el8ost.noarch.rpm SHA-256: f084973c0eab69c01f791c531d3e6348bd66a4008f6845a51bf3ddf1f5c0e798

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.