UNKNOWN
Project description
This is a critical security hotfix which should be applied to the following versions of Zope:
Zope 2.13 <= 2.13.7 (Plone 4.1 <= 4.1rc3)
Zope 2.12 <= 2.12.18 (Plone 4.0 <= 4.0.7)
Any version of Zope 2.10 or Zope 2.11 where PloneHotfix20110720 is installed (Plone 3.0, 3.1, 3.2 and 3.3 <= 3.3.5).
Additional information about the hotfix including frequently asked questions is available at http://plone.org/products/plone/security/advisories/20110622
This hotfix applies the following modifications to improve Zope security:
Disables the acquire, attribute, item, lang and vh traversers.
Patches the traverse method of zope.traversing.namespaces.resource.
Installation
Installation instructions can be found at http://plone.org/products/plone-hotfix/releases/20110622
Changelog
1.0 (2011-06-28)
Initial release
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distributions
Hashes for Products.Zope_Hotfix_20110622-1.0.zip
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 9066431c0ffad495cd935badc965e544658b5bbb8d173afc9ef2568a14e40bc5 |
|
| MD5 | edb6da2c43505dac02c1710bbcb57826 |
|
| BLAKE2b-256 | b146cdb82f73a216e5c2818b4939929f0030c2181d59aa32181b3263873296d2 |
Hashes for Products.Zope_Hotfix_20110622-1.0.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | aa9b4c025ba8f4eeea7eaecc64cfb8297c76e688a70913ce6161c930e6670ee9 |
|
| MD5 | 6939e3cfd475c428d383af38aea74dc8 |
|
| BLAKE2b-256 | ae45e8df6c31e9e96929919e9ccf2be49cd6b504d91771fa97a4ed954f428172 |
