[PKG-Openstack-devel] Bug#780689: Missing dependency on conntrack

Gaudenz Steinlin gaudenz at debian.org
Tue Mar 17 20:28:00 UTC 2015

Package: neutron-l3-agent
Version: 2014.1.3-11
Severity: normal

The L3 agent uses conntrack to purge entries from removed floating IPs.
This was backported to 2014.1.3 but then again removed in 2014.1.4. See
the links below for the details.

As this fixes a (low priority) security issue, I suggest to not revert
this in Debian but to add a dependency on conntrack. And even if this is
not needed for further icehouse updates, the dependency needs to be
added to later releases.

Original bug report: https://bugs.launchpad.net/neutron/+bug/1334926
Fix: https://review.openstack.org/#/c/124375/
Revert: https://review.openstack.org/#/c/132052/


-- System Information:
Debian Release: 8.0
  APT prefers testing-proposed-updates
  APT policy: (500, 'testing-proposed-updates'), (500, 'testing'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

More information about the Openstack-devel mailing list