CVE 2023-2088 patch causes unable to detach volumes issues
Issue
- The patch from CVE-2023-2088 that includes some patches from: CVE-2023-2088 causes cinder issues like:
Error: Error detaching openstack_compute_volume_attach_v2 f4e9ae49-143c-40cd-a998-26bf23d7dfee/61ea7415-ca9b-4d79-bb6f-f339ac200b0d: couldn't find resource (21 retries)
and it looks like this fix was not merged:
" Bug #2019460: nova-compute 23.2.2-0ubuntu1~cloud2 unable to detach volumes "
https://bugs.launchpad.net/bugs/2019460
* SECURITY REGRESSION: Regression with volume drivers (LP: #2019460)
- debian/patches/CVE-2023-2088.patch: Updated to add missing force
parameter to various volume drivers.
in the OSP 16.2 rpms from May 16.
Environment
- Red Hat OpenStack Platform 16.2 (RHOSP)
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.