[ZODB-Dev] CVE-2009-0668 and CVE-2009-0669: Releases to fix ZODB ZEO server vulnerabilities

Vulnerabilities have been found in the Zope Object Database (ZODB) Zope Enterprise Objects (ZEO) network protocol that allow: CVE-2009-0668 Arbitrary Python code execution in ZODB ZEO storage servers CVE-2009-0669 Authentication bypass in ZODB ZEO storage servers The vulnerabilities only

Re: [ZODB-Dev] CVE-2009-0668 and CVE-2009-0669: Releases to fix ZODB ZEO server vulnerabilities

Hi Jim, Jim Fulton wrote: CVE-2009-0668 Arbitrary Python code execution in ZODB ZEO storage servers CVE-2009-0669 Authentication bypass in ZODB ZEO storage servers Where are the actual CVE entries for these? http://cve.mitre.org doesn't seem to know much about either of them... The

Re: [ZODB-Dev] CVE-2009-0668 and CVE-2009-0669: Releases to fix ZODB ZEO server vulnerabilities

On Thu, Aug 6, 2009 at 1:31 PM, Chris Withersch...@simplistix.co.uk wrote: Hi Jim, Jim Fulton wrote:  CVE-2009-0668 Arbitrary Python code execution in ZODB ZEO storage servers  CVE-2009-0669 Authentication bypass in ZODB ZEO storage servers Where are the actual CVE entries for these?