From d75074782acc8467b41c944b65badd1c2129e68d Mon Sep 17 00:00:00 2001
From: Pierre Riteau <pierre@stackhpc.com>
Date: Wed, 24 Jul 2024 14:05:44 +0200
Subject: [PATCH] Fix CVE-2024-40767

Fixes CVE-2024-40767 [1] with updated container images for Nova
services.

[1] https://security.openstack.org/ossa/OSSA-2024-002.html
---
 etc/kayobe/kolla/globals.yml                                | 6 +++---
 releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml | 6 ++++++
 2 files changed, 9 insertions(+), 3 deletions(-)
 create mode 100644 releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml

diff --git a/etc/kayobe/kolla/globals.yml b/etc/kayobe/kolla/globals.yml
index eaa8b910a..06e4f1035 100644
--- a/etc/kayobe/kolla/globals.yml
+++ b/etc/kayobe/kolla/globals.yml
@@ -40,9 +40,9 @@ kayobe_image_tags:
     rocky: yoga-20240105T120257
     ubuntu: yoga-20231114T125927
   nova:
-    centos: yoga-20240702T105751
-    rocky: yoga-20240702T105751
-    ubuntu: yoga-20240702T105751
+    centos: yoga-20240724T085253
+    rocky: yoga-20240724T085253
+    ubuntu: yoga-20240724T085253
   nova_libvirt:
     centos: yoga-20231113T171023
     rocky: yoga-20240105T120257
diff --git a/releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml b/releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml
new file mode 100644
index 000000000..d272329ea
--- /dev/null
+++ b/releasenotes/notes/fix-cve-2024-40767-24b9b3c35f61a0c8.yaml
@@ -0,0 +1,6 @@
+---
+critical:
+  - |
+    Fixes `CVE-2024-40767
+    <https://security.openstack.org/ossa/OSSA-2024-002.html>`_ with updated
+    container images for Nova services.