60f705d722
The Cinder project team does not intend to backport a fix for CVE-2023-2088 to stable/ussuri, so add a warning to the README so that consumers are aware of the vulnerability of this branch of the cinder code. Change-Id: I5c55ab7ca6c85d23c5ab7d2d383a18226735aaf2 Related-bug: #2004555 |
||
---|---|---|
api-ref/source | ||
cinder | ||
contrib/block-box | ||
doc | ||
etc/cinder | ||
playbooks | ||
rally-jobs | ||
releasenotes | ||
tools | ||
.coveragerc | ||
.gitignore | ||
.gitreview | ||
.pylintrc | ||
.stestr.conf | ||
.zuul.yaml | ||
CONTRIBUTING.rst | ||
HACKING.rst | ||
LICENSE | ||
README.rst | ||
babel.cfg | ||
bindep.txt | ||
driver-requirements.txt | ||
lower-constraints.txt | ||
reno.yaml | ||
requirements.txt | ||
setup.cfg | ||
setup.py | ||
test-requirements.txt | ||
tox.ini |
README.rst
OpenStack Cinder
Warning
The stable/ussuri branch of cinder does not contain a fix for CVE-2023-2088. Be aware that such a fix must span cinder, os-brick, nova, and, depending on your deployment configuration, glance_store and ironic. The Cinder project team advises against using the code in this branch unless a mitigation against CVE-2023-2088 is applied.
References:
OpenStack Cinder is a storage service for an open cloud computing service.
You can learn more about Cinder at:
Getting Started
If you'd like to run from the master branch, you can clone the git repo:
git clone https://opendev.org/openstack/cinder
If you'd like to contribute, please see the information in CONTRIBUTING.rst
You can raise bugs on Launchpad