zed: Fix CVE-2024-32498

etc/kayobe/kolla-image-tags.yml

@@ -6,9 +6,15 @@ kolla_image_tags:
   openstack:
     rocky-9: zed-rocky-9-20240202T105829
     ubuntu-jammy: zed-ubuntu-jammy-20240129T151534
+  cinder:
+    rocky-9: zed-rocky-9-20240711T104152
+    ubuntu-jammy: zed-ubuntu-jammy-20240711T101422
   cloudkitty:
     rocky-9: zed-rocky-9-20240503T150113
     ubuntu-jammy: zed-ubuntu-jammy-20240503T150113
+  glance:
+    rocky-9: zed-rocky-9-20240711T130523
+    ubuntu-jammy: zed-ubuntu-jammy-20240711T130523
   grafana:
     rocky-9: zed-rocky-9-20240514T095142
     ubuntu-jammy: zed-ubuntu-jammy-20240514T092357
@@ -24,6 +30,12 @@ kolla_image_tags:
   neutron:
     rocky-9: zed-rocky-9-20240202T141530
     ubuntu-jammy: zed-ubuntu-jammy-20240202T143208
+  nova:
+    rocky-9: zed-rocky-9-20240711T104152
+    ubuntu-jammy: zed-ubuntu-jammy-20240711T101422
+  nova_libvirt:
+    rocky-9: zed-rocky-9-20240202T105829
+    ubuntu-jammy: zed-ubuntu-jammy-20240129T151534
   prometheus:
     rocky-9: zed-rocky-9-20240514T095142
     ubuntu-jammy: zed-ubuntu-jammy-20240514T092357

etc/kayobe/kolla.yml

@@ -126,6 +126,10 @@ kolla_sources:
     type: git
     location: https://github.com/stackhpc/cloudkitty.git
     reference: stackhpc/{{ openstack_release }}
+  glance-base:
+    type: git
+    location: https://github.com/stackhpc/glance.git
+    reference: stackhpc/{{ openstack_release }}
   horizon-plugin-cloudkitty-dashboard:
     type: git
     location: https://github.com/stackhpc/cloudkitty-dashboard.git

releasenotes/notes/cve-2024-32498-2cbd205129351766.yaml

@@ -0,0 +1,7 @@
+---
+critical:
+  - |
+    Fixes `CVE-2024-32498
+    <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32498>`_ with
+    updated container images for Cinder, Glance and Nova services.
+