Security Advisory new Zope-Hotfix package available

Advisory: RHSA-2000:127-06
Type: Security Advisory
Severity: N/A
Issued on: 2000-12-18
Last updated on: 2000-12-18
Affected Products: Red Hat Linux 7.0
OVAL: N/A
CVEs (cve.mitre.org): CVE-2001-0128

Details

A new Zope-Hotfix package is availble which fixes issues with computation
of local roles.

An issue with the computation of local roles exists where the computation
was not climbing the proper hierarchy of folders, and sometimes granting
local roles inappropriately.

You must update Zope to version 2.2.4 prior to applying this update.


Solution

For each RPM for your particular architecture, run:

rpm -Fvh [filename]

where filename is the name of the RPM.

After you have applied the update, restart Zope.

Updated packages

Red Hat Linux 7.0
noarch:
ftp://updates.redhat.com/7.0/noarch/Zope-Hotfix-localroles-2000_12_15a-1.noarch.rpm
Missing file		     a8b58411ed4e4c8238e9f05157f97516
 

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0128
http://lwn.net/daily/zope-hotfix.php3
http://www.zope.org/Products/Zope/Hotfix_2000-12-15a/README.txt

Keywords

Hotfix

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/