Fix CVE-2024-40767

seunghun1ee · seunghun1ee · commit 450fd35eb3b6 · 2024-07-23T16:06:19.000+01:00
Fixes CVE-2024-40767 [1] with updated container images for Nova services. [1] https://security.openstack.org/ossa/OSSA-2024-002.html
diff --git a/etc/kayobe/kolla-image-tags.yml b/etc/kayobe/kolla-image-tags.yml
@@ -17,6 +17,7 @@ kolla_image_tags:
   letsencrypt:
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240509T102329
   nova:
-    ubuntu-jammy: 2023.1-ubuntu-jammy-20240702T082319
+    rocky-9: 2023.1-rocky-9-20240723T140948
+    ubuntu-jammy: 2023.1-ubuntu-jammy-20240723T140948
   opensearch:
     ubuntu-jammy: 2023.1-ubuntu-jammy-20240509T094444
diff --git a/releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml b/releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml
@@ -0,0 +1,6 @@
+---
+critical:
+  - |
+    Fixes `CVE-2024-40767
+    <https://security.openstack.org/ossa/OSSA-2024-002.html>`_ with updated
+    container images for Nova services.
