2 matches found
Debian DSA-043-1 : zope
This advisory covers several vulnerabilities in Zope that have been addressed.Hotfix 08092000 'Zope security alert and hotfix product' The issue involves the fact that the getRoles method of user objects contained in the default UserFolder implementation returns a mutable Python type. Because the...
[SECURITY] [DSA-007-1] insufficient protection for zope Image and File objects
Package : zope Problem type : insufficient protection Debian-specific: no A busy week for the Zope team: on Monday another security alert was released revealing a potential problem found by Peter Kelly. This problem involved incorrect protection of data updating for Image and File objects: any us...