From 0babf49f9b6dfcce15509feaf38f75d3f028ed46 Mon Sep 17 00:00:00 2001
From: Pranali Deore <pdeore@redhat.com>
Date: Thu, 16 Feb 2023 10:07:40 +0000
Subject: Release notes for Antelope Milestone 3

Change-Id: I3dbc1c1e2bf2622721d98e88e219afd816722e22
---
 .../notes/antelope-milestone-3-b9a4f7fdba31f628.yaml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 releasenotes/notes/antelope-milestone-3-b9a4f7fdba31f628.yaml

diff --git a/releasenotes/notes/antelope-milestone-3-b9a4f7fdba31f628.yaml b/releasenotes/notes/antelope-milestone-3-b9a4f7fdba31f628.yaml
new file mode 100644
index 000000000..ec28040a6
--- /dev/null
+++ b/releasenotes/notes/antelope-milestone-3-b9a4f7fdba31f628.yaml
@@ -0,0 +1,20 @@
+---
+prelude: >
+    In this cycle Glance enabled the API policies (RBAC) new defaults and scope by
+    default and removed the deprecated ``enforce_secure_rbac`` option which is no
+    longer needed after switching to new defaults.
+    The Default value of config options ``[oslo_policy] enforce_scope``
+    and ``[oslo_policy] oslo_policy.enforce_new_defaults`` have been changed
+    to ``True``. Old policies are still there but they are disabled by default.
+
+fixes:
+  - |
+    Bug 1996188_: [OSSA-2023-002] Arbitrary file access through custom VMDK flat descriptor (CVE-2022-47951)
+  - |
+    Bug 1939690_: The api-ref response and the actual response returned from the Create Tags API does not match
+  - |
+    Bug 1983279_: Cannot upload vmdk images due to unsupported vmdk format
+
+    .. _1996188: https://code.launchpad.net/bugs/1996188
+    .. _1939690: https://code.launchpad.net/bugs/1939690
+    .. _1983279: https://code.launchpad.net/bugs/1983279
-- 
cgit v1.2.1