tag:github.com,2008:https://github.com/shapeblue/cloudstack/releases 2024-11-19T11:54:07Z tag:github.com,2008:Repository/35481491/4.20.0.0 2024-11-19T11:54:07Z <p>Signed-off-by: João Jandre <a href="mailto:48719461+JoaoJandre@users.noreply.github.com">48719461+JoaoJandre@users.noreply.github.com</a></p> JoaoJandre tag:github.com,2008:Repository/35481491/4.19.1.2 2024-10-04T09:18:01Z <p>Signed-off-by: Daan Hoogland <a href="mailto:daan@onecht.net">daan@onecht.net</a></p> DaanHoogland tag:github.com,2008:Repository/35481491/4.18.2.4 2024-10-03T15:36:32Z <p>Signed-off-by: Daan Hoogland <a href="mailto:daan@onecht.net">daan@onecht.net</a></p> DaanHoogland tag:github.com,2008:Repository/35481491/4.19.1.0 2024-07-15T11:49:29Z <p>Signed-off-by: Suresh Kumar Anaparti <a href="mailto:suresh.anaparti@shapeblue.com">suresh.anaparti@shapeblue.com</a></p> sureshanaparti tag:github.com,2008:Repository/35481491/4.18.2.2 2024-07-15T12:07:17Z <p>Tagging release 4.18.2.2 on branch 4.18.2.1-base.</p> shwstppr tag:github.com,2008:Repository/35481491/4.19.0.2 2024-07-04T10:55:21Z <p>Tagging release 4.19.0.2 on branch 4.19.0.1-base.</p> shwstppr tag:github.com,2008:Repository/35481491/4.18.2.1 2024-07-04T10:47:10Z <p>Tagging release 4.18.2.1 on branch 4.18.2.0-base.</p> shwstppr tag:github.com,2008:Repository/35481491/4.18.2.0 2024-04-12T11:25:04Z <p>Signed-off-by: João Jandre <a href="mailto:48719461+JoaoJandre@users.noreply.github.com">48719461+JoaoJandre@users.noreply.github.com</a></p> JoaoJandre tag:github.com,2008:Repository/35481491/4.18.1.1 2024-04-02T14:55:22Z <p>Tagging release 4.18.1.1 on branch 4.18.1.1-release.</p> yadvr tag:github.com,2008:Repository/35481491/4.18.1.1-shapeblue1 2024-04-09T11:13:43Z <p>Advisories:</p> <ul> <li><a href="https://cloudstack.apache.org/blog/security-release-advisory-4.19.0.1-4.18.1.1" rel="nofollow">https://cloudstack.apache.org/blog/security-release-advisory-4.19.0.1-4.18.1.1</a></li> <li><a href="https://www.shapeblue.com/apache-cloudstack-security-releases-4-18-1-1-and-4-19-0-1/" rel="nofollow">https://www.shapeblue.com/apache-cloudstack-security-releases-4-18-1-1-and-4-19-0-1/</a></li> </ul> <p>This is a ShapeBlue customer patch release that includes the following changes on top of upstream security <a href="https://github.com/apache/cloudstack/releases/tag/4.18.1.1">4.18.1.1</a> release:</p> <ul> <li><a title="CVE-2024-29006" data-hovercard-type="advisory" data-hovercard-url="/advisories/GHSA-w59w-35q3-vcg7/hovercard" href="https://github.com/advisories/GHSA-w59w-35q3-vcg7">CVE-2024-29006</a> x-forwarded-for parsed by default</li> <li><a title="CVE-2024-29007" data-hovercard-type="advisory" data-hovercard-url="/advisories/GHSA-29xc-2rhm-5f2q/hovercard" href="https://github.com/advisories/GHSA-29xc-2rhm-5f2q">CVE-2024-29007</a> When downloading templates or ISOs, the UI/SSVM follow http redirects with potentially dangerous consequences</li> <li><a title="CVE-2024-29008" data-hovercard-type="advisory" data-hovercard-url="/advisories/GHSA-3fpg-5xv7-pq63/hovercard" href="https://github.com/advisories/GHSA-3fpg-5xv7-pq63">CVE-2024-29008</a> The extraconfig feature can be abused to load hypervisor resources on a VM instance</li> </ul> <p>Additional changes:</p> <ul> <li>KVM volume snapshot backing file fix <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1926212286" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8041" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8041/hovercard" href="https://github.com/apache/cloudstack/pull/8041">apache#8041</a></li> <li>KVM VM snapshot support for NFS and local storage <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1934739858" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8062" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8062/hovercard" href="https://github.com/apache/cloudstack/pull/8062">apache#8062</a></li> <li>Fix non-admin logouts <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1934833319" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8065" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8065/hovercard" href="https://github.com/apache/cloudstack/pull/8065">apache#8065</a></li> <li>Linstor disk offering fix <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1886997890" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/7952" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/7952/hovercard" href="https://github.com/apache/cloudstack/pull/7952">apache#7952</a></li> <li>Linstor template volume fix <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1939632451" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8082" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8082/hovercard" href="https://github.com/apache/cloudstack/pull/8082">apache#8082</a></li> <li>Linstor: fix template copy on non hyperconverged setups <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1949251458" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8114" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8114/hovercard" href="https://github.com/apache/cloudstack/pull/8114">apache#8114</a></li> <li>2FA setup fix <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1901640285" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/7972" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/7972/hovercard" href="https://github.com/apache/cloudstack/pull/7972">apache#7972</a></li> <li>Fix VM snapshot size during storage capacity check <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1944480381" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8101" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8101/hovercard" href="https://github.com/apache/cloudstack/pull/8101">apache#8101</a></li> <li>Create snapshot from VM snapshot for NFS/Local storage <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1949789996" data-permission-text="Title is private" data-url="https://github.com/apache/cloudstack/issues/8117" data-hovercard-type="pull_request" data-hovercard-url="/apache/cloudstack/pull/8117/hovercard" href="https://github.com/apache/cloudstack/pull/8117">apache#8117</a></li> </ul> <h2>4.18.1.0-shapeblue1 packages repository</h2> <p>EL7: <a href="http://packages.shapeblue.com/cloudstack/upstream/el7/4.18/" rel="nofollow">http://packages.shapeblue.com/cloudstack/upstream/el7/4.18/</a><br> EL8: <a href="http://packages.shapeblue.com/cloudstack/upstream/el8/4.18/" rel="nofollow">http://packages.shapeblue.com/cloudstack/upstream/el8/4.18/</a><br> EL9: <a href="http://packages.shapeblue.com/cloudstack/upstream/el9/4.18/" rel="nofollow">http://packages.shapeblue.com/cloudstack/upstream/el9/4.18/</a><br> Ubuntu/Debian: <a href="http://packages.shapeblue.com/cloudstack/upstream/debian/4.18/" rel="nofollow">http://packages.shapeblue.com/cloudstack/upstream/debian/4.18/</a></p> <h2>Upgrade instructions</h2> <ul> <li>Recommended: Test the patch in your test/validation environment before upgrading to production</li> <li>Backup your production DB dump before upgrading to this patch release</li> <li>Check and upgrade any installed cloudstack packages (such as cloudstack-management, cloudstack-common, cloudstack-agent) using the above EL7, EL8, EL9 or Debian repositories. On some enviroments, you may also upgrade using downloaded rpms directly using rpm or yum localinstall.</li> <li>Post upgrade, restart the upgraded services such as cloudstack-management and cloudstack-agent</li> <li>Full Changelog: <a href="https://github.com/shapeblue/cloudstack/commits/4.18.1.1-shapeblue1">https://github.com/shapeblue/cloudstack/commits/4.18.1.1-shapeblue1</a></li> </ul> yadvr