Security Advisory New Zope packages are available

Advisory: RHSA-2001:065-05
Type: Security Advisory
Severity: N/A
Issued on: 2001-05-02
Last updated on: 2001-05-14
Affected Products: Powertools 6.2
Powertools 7.0
Powertools 7.1
OVAL: N/A
CVEs (cve.mitre.org): CVE-2001-0567

Details

New Zope packages are available which fix a security flaw with ZClass.

This package includes a "hotfix" product which addresses a security
problem with ZClasses, as descripbed in the Hotfix_2001-05-01 README.txt
file: "The issue is related to ZClasses in that any user can visit a
ZClass declaration and change the ZClass permission mappings for methods
and other objects defined within the ZClass, possibly allowing for
unauthorized access within the Zope instance."


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Powertools 6.2

Alpha:
Zope-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    60e6795963fe1dfd2c41216db13f2abd
Zope-components-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    312f409da0312d78087c5f22713d2972
Zope-core-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    611b719f9a135d2954aa4e1f98761c75
Zope-pcgi-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    472c9399c5b5436c06c10f886d48270a
Zope-services-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    310cd4e8d8c99a48d6efe6159c45bf15
Zope-zpublisher-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    6814549a40440a5c1aa32155bca66c03
Zope-zserver-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    96fc568da7466af73f2fb056313446b8
Zope-ztemplates-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115
    251704804aa579ecbe14a2e08df7ba83
 
IA-32:
Zope-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    9d412bb7abf56bfcd87fe950031e76cf
Zope-components-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    86445651972ca85c51cc8d80814320f3
Zope-core-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    c18bb610245f0a69723f5bbe3617a762
Zope-pcgi-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    1e1cb85815d08bad6f1380235c709235
Zope-services-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    6e2649efb3f63a0a7cc6c36a866caa31
Zope-zpublisher-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    485350f1457f5ab8f2b8a8b76281a6bc
Zope-zserver-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    52ebb265edc86478f1b966a362127c4f
Zope-ztemplates-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115
    7475a10000023d5b7161986e654fa7eb
 
Sparc:
Zope-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    16772d94da2dddfdc9581c166a5580fc
Zope-components-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    2661262f459731a3526322eee18bf837
Zope-core-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    095bfb4731b33e9641ef07e23dabaa77
Zope-pcgi-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    6b8c33d75f9992f232d46ae7c218ba8c
Zope-services-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    7714c0b5701a35d68999e6a56ffe4d8f
Zope-zpublisher-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    62b9a1d8776664bd179eedea6462e264
Zope-zserver-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    9dcec718a2c240dfdb6a57f016f622b7
Zope-ztemplates-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115
    294061ae90c35fa6d59545d8e2f9c481
 
Powertools 7.0

Alpha:
Zope-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    11b0278d0b09896366cb7c161fd28002
Zope-components-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    7ed1edb7f4e24dc6a2f52b6fd2c4cd4d
Zope-core-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    8f51620d8a6515411c5add627fd93dd2
Zope-pcgi-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    1c6050a604b2c60393505f80c33af9cb
Zope-services-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    986403228735ac040d3cdcdb723380d5
Zope-zpublisher-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    c4eb9d9d11ec4849dbf094f435fc6c6f
Zope-zserver-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    f7067d836ecedd206de3ee8ee784c28c
Zope-ztemplates-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060
    49e8471b1658a8fdba3912cf5a2f5702
 
Powertools 7.1

IA-32:
Zope-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    f37781f1f1e9c269fc99665948e9a982
Zope-components-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    2273a92eb0977cf3d1314c25ab1c9641
Zope-core-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    a22e60c220fbac47102fc8e2215d7e5a
Zope-pcgi-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    f4f588636465b95910f98608bf39e165
Zope-services-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    220f5e45dd5aa32c2a410e0a37175ce3
Zope-zpublisher-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    cfaa9c3fd88aa1eb034ada8be34a0163
Zope-zserver-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    01dfc35688a0dda4e7d864f127a69792
Zope-ztemplates-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060
    3058e069563cc7d986db91feebca9add
 

References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/