Re: [Zope-dev] [Zope] Hotfix for security vulnerability

On 24 October 2011 22:54, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On behalf of the Zope security response team, I would like to announce the availability of a hotfix for a vulnerability inadvertently published earlier today.

Re: [Zope-dev] [Zope] Hotfix for security vulnerability

Laurence Rowe wrote: This hotfix addresses a serious vulnerability in the Zope2 application server. Affected versions of Zope2 include: - - 2.12.x= 2.12.20 - - 2.13.x= 2.13.6 Older releases (2.11.x, 2.10.x, etc.) are not vulnerable. Can you confirm whether or not Zope 2.13.6 through

Re: [Zope-dev] [Zope] Hotfix for security vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 10/25/2011 07:44 AM, yuppie wrote: Laurence Rowe wrote: This hotfix addresses a serious vulnerability in the Zope2 application server. Affected versions of Zope2 include: - - 2.12.x= 2.12.20 - - 2.13.x= 2.13.6 Older releases (2.11.x,

Re: [Zope-dev] [Zope] Hotfix for security vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 10/25/2011 07:28 AM, Laurence Rowe wrote: On 24 October 2011 22:54, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On behalf of the Zope security response team, I would like to announce the

Re: [Zope] Hotfix for security vulnerability

Hello, Both of these url are not available: - http://download.zope.org/Zope2/index/2.12.21/versions.cfg - http://download.zope.org/Zope2/index/2.13.11/versions.cfg Regards, Encolpe DEGOUTE Le 24/10/2011 23:54, Tres Seaver a écrit : On behalf of the Zope security response team, I would like to

Re: [Zope] Hotfix for security vulnerability

Am Dienstag, 25. Oktober 2011, 12:52:33 schrieb Encolpe Degoute: Hello, Both of these url are not available: - http://download.zope.org/Zope2/index/2.12.21/versions.cfg - http://download.zope.org/Zope2/index/2.13.11/versions.cfg As i understand the hotfix posting right, the new full ZOPE

Re: [Zope] Hotfix for security vulnerability

On 24 October 2011 22:54, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On behalf of the Zope security response team, I would like to announce the availability of a hotfix for a vulnerability inadvertently published earlier today.

Re: [Zope] Hotfix for security vulnerability

Am Dienstag, 25. Oktober 2011, 12:28:39 schrieb Laurence Rowe: Can you confirm whether or not Zope 2.13.6 through 2.13.10 are affected? For me 2.13.10 seems to be affected (which makes sense as there would not be a 2.13.11 announced in the advisory). Is this possibly a typo? cheers, Niels.

Re: [Zope] Hotfix for security vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 10/25/2011 06:52 AM, Encolpe Degoute wrote: Hello, Both of these url are not available: - http://download.zope.org/Zope2/index/2.12.21/versions.cfg - http://download.zope.org/Zope2/index/2.13.11/versions.cfg The hotfix announcement says,

[Zope] Hotfix for security vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On behalf of the Zope security response team, I would like to announce the availability of a hotfix for a vulnerability inadvertently published earlier today. 'Products.Zope_Hotfix_20111024' README == Overview -