Paketname
Zope
Datum
2001-10-15
Advisory ID
MDKSA-2001:080
Betroffene Versionen
7.2 i586 , 7.1 i586 , CS1.0 i586

Problembeschreibung

A new Zope hotfix is available that fixes a problem with DTML scripting as described in the README.txt of Hotfix_2001-09-28: "The issue involves the fmt attribute of dtml-var tags. Without this correction, Zope does not check security access to methods invoked through fmt. This issue could allow partially trusted users with enough knowledge of Zope to call, in a limited way, methods they would not otherwise be allowed to access."

Aktualisierte Pakete

7.2 i586

 600dcab7867793ca5c1d8ac0736b1933  7.2/RPMS/Zope-2.2.4-1.5mdk.i586.rpm
d70ae6d1a368e0796e578d1b52016abe  7.2/RPMS/Zope-components-2.2.4-1.5mdk.i586.rpm
ee7661882bb659dc652eaa256d648d0b  7.2/RPMS/Zope-core-2.2.4-1.5mdk.i586.rpm
81d8cd8d152add37027a7bd3f064886e  7.2/RPMS/Zope-pcgi-2.2.4-1.5mdk.i586.rpm
aa8b64e79228d629326384ea48ac1783  7.2/RPMS/Zope-services-2.2.4-1.5mdk.i586.rpm
6c085872a1c9eb25309415cc181a67e4  7.2/RPMS/Zope-zpublisher-2.2.4-1.5mdk.i586.rpm
4438ec964addac716486147982b03614  7.2/RPMS/Zope-zserver-2.2.4-1.5mdk.i586.rpm
ee64297b1f83d46ac591e706137a8e04  7.2/RPMS/Zope-ztemplates-2.2.4-1.5mdk.i586.rpm
50a7cef726b79ae682ebc6ab5d41bc06  7.2/SRPMS/Zope-2.2.4-1.5mdk.src.rpm

7.1 i586

 4f0bca7bda112b53b9f758b1dee42001  7.1/RPMS/Zope-2.2.4-1.5mdk.i586.rpm
d1c0199e9c0516144f214f00a3c2939f  7.1/RPMS/Zope-components-2.2.4-1.5mdk.i586.rpm
292d60f992eabdc51706a4dac49ed988  7.1/RPMS/Zope-core-2.2.4-1.5mdk.i586.rpm
c020946390e106989d4a3fd06f27ca7d  7.1/RPMS/Zope-pcgi-2.2.4-1.5mdk.i586.rpm
2251d4aeba9d5e6c9e3cc500799e1e2d  7.1/RPMS/Zope-services-2.2.4-1.5mdk.i586.rpm
b47b8b39280422a21d3e697839dc0c7e  7.1/RPMS/Zope-zpublisher-2.2.4-1.5mdk.i586.rpm
6c7d1621bd6e4f2e5daaa47347ba7f2d  7.1/RPMS/Zope-zserver-2.2.4-1.5mdk.i586.rpm
316041544cb1cfcb74752b09f4302e4b  7.1/RPMS/Zope-ztemplates-2.2.4-1.5mdk.i586.rpm
50a7cef726b79ae682ebc6ab5d41bc06  7.1/SRPMS/Zope-2.2.4-1.5mdk.src.rpm

CS1.0 i586

 4f0bca7bda112b53b9f758b1dee42001  1.0.1/RPMS/Zope-2.2.4-1.5mdk.i586.rpm
d1c0199e9c0516144f214f00a3c2939f  1.0.1/RPMS/Zope-components-2.2.4-1.5mdk.i586.rpm
292d60f992eabdc51706a4dac49ed988  1.0.1/RPMS/Zope-core-2.2.4-1.5mdk.i586.rpm
c020946390e106989d4a3fd06f27ca7d  1.0.1/RPMS/Zope-pcgi-2.2.4-1.5mdk.i586.rpm
2251d4aeba9d5e6c9e3cc500799e1e2d  1.0.1/RPMS/Zope-services-2.2.4-1.5mdk.i586.rpm
b47b8b39280422a21d3e697839dc0c7e  1.0.1/RPMS/Zope-zpublisher-2.2.4-1.5mdk.i586.rpm
6c7d1621bd6e4f2e5daaa47347ba7f2d  1.0.1/RPMS/Zope-zserver-2.2.4-1.5mdk.i586.rpm
316041544cb1cfcb74752b09f4302e4b  1.0.1/RPMS/Zope-ztemplates-2.2.4-1.5mdk.i586.rpm
50a7cef726b79ae682ebc6ab5d41bc06  1.0.1/SRPMS/Zope-2.2.4-1.5mdk.src.rpm

Referenzen