This should be clarified too: "You should, however, make sure that you are running either Zope 2.10.13 or Zope 2.11.8 and PluggableAuthService 1.5.5, 1.6.5 or 1.7.5 "
Why must PluggableAuthService (+ its dependencies) even be installed? -N On 6/28/2011 3:30 PM, Sascha Welter wrote: > (Tue, Jun 28, 2011 at 12:57:02PM +0100) Laurence Rowe wrote/schrieb/egrapse: >> This is an update on today's security hotfix release. > > Thank you for the update, most helpful! > >> The fix will be released at 15:00 UTC today, Tuesday 28th June, 2011 >> (11:00am US EDT.) Updated versions of Zope 2 containing the security >> fix will be released at the same time. >> >> For details on which versions of Zope and Plone are affected, please >> see: http://plone.org/products/plone/security/advisories/20110622 > > It says "Zope 2.10 and 2.11 users who have not installed > PloneHotfix20110720 are not affected" - can I conclude from that, > that Zope 2.9 would not be affected either? > > Regards, > > Sascha > > _______________________________________________ > Zope maillist - Zope@zope.org > https://mail.zope.org/mailman/listinfo/zope > ** No cross posts or HTML encoding! ** > (Related lists - > https://mail.zope.org/mailman/listinfo/zope-announce > https://mail.zope.org/mailman/listinfo/zope-dev ) > > _______________________________________________ Zope maillist - Zope@zope.org https://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - https://mail.zope.org/mailman/listinfo/zope-announce https://mail.zope.org/mailman/listinfo/zope-dev )