Bug 2150181

Summary: [OSP17.1] osp-rpm-py39 job unit test broken after upstream cpython vulnerability fix backport
Product: Red Hat OpenStack Reporter: melanie witt <mwitt>
Component: openstack-novaAssignee: melanie witt <mwitt>
Status: CLOSED ERRATA QA Contact: OSP DFG:Compute <osp-dfg-compute>
Severity: medium Docs Contact:
Priority: medium    
Version: 17.1 (Wallaby)CC: dasmith, eglynn, jhakimra, kchamart, sbauza, sgordon, smooney, vromanso
Target Milestone: ---Keywords: Patch, Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: openstack-nova-23.2.3-1.20221209191244.bbf626c.el9ost Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of:
: 2150182 (view as bug list) Environment:
Last Closed: 2023-08-16 01:12:55 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2150182    

Description melanie witt 2022-12-02 01:43:43 UTC 
This was reported and fixed upstream [1] and at the time, only python >= 3.10.6 was affected and fixed.

The fix has since been backported to older versions of python, so we need to backport the fix for [1].

[1] https://bugs.launchpad.net/nova/+bug/1986545
[2] https://python-security.readthedocs.io/vuln/http-server-redirection.html
Comment 12 errata-xmlrpc 2023-08-16 01:12:55 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Release of components for Red Hat OpenStack Platform 17.1 (Wallaby)), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:4577