Re: [Zope-CMF] CMF security patches in Products.PloneHotfix20121106

2012-11-15 Thread Tres Seaver
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 11/13/2012 05:39 AM, johannes raggam wrote: since most users are on the Zope mailing list (2323 users), i think it's better to post there (and on Zope-dev). https://mail.zope.org/mailman/listinfo/zope johannes On 11/09/2012 08:45 PM,

[Zope-CMF] CMF security patches in Products.PloneHotfix20121106

2012-11-09 Thread Jens Vagelpohl
Hi all, I don't recall any information being provided to the CMF developers about CMF fixes in the most recent Plone Hotfix: http://plone.org/products/plone-hotfix/releases/20121106 For example, there's a monkey patch to make sure getToolByName only returns valid tool objects and nothing

Re: [Zope-CMF] CMF security patches in Products.PloneHotfix20121106

2012-11-09 Thread Charlie Clark
Am 09.11.2012, 17:02 Uhr, schrieb Jens Vagelpohl j...@dataflake.org: Hi all, I don't recall any information being provided to the CMF developers about CMF fixes in the most recent Plone Hotfix: http://plone.org/products/plone-hotfix/releases/20121106 For example, there's a monkey patch to

Re: [Zope-CMF] CMF security patches in Products.PloneHotfix20121106

2012-11-09 Thread David Glick (Plone)
On 11/9/12 11:23 AM, Charlie Clark wrote: Am 09.11.2012, 17:02 Uhr, schrieb Jens Vagelpohl j...@dataflake.org: Hi all, I don't recall any information being provided to the CMF developers about CMF fixes in the most recent Plone Hotfix: