Skip to navigation

Security Advisory New Zope packages are available

Advisory: RHSA-2001:065-05
Type: Security Advisory
Severity: N/A
Issued on: 2001-05-02
Last updated on: 2001-05-14
Affected Products: Powertools 6.2
Powertools 7.0
Powertools 7.1
CVEs (cve.mitre.org): CVE-2001-0567

Details

New Zope packages are available which fix a security flaw with ZClass.

This package includes a "hotfix" product which addresses a security
problem with ZClasses, as descripbed in the Hotfix_2001-05-01 README.txt
file: "The issue is related to ZClasses in that any user can visit a
ZClass declaration and change the ZClass permission mappings for methods
and other objects defined within the ZClass, possibly allowing for
unauthorized access within the Zope instance."


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Powertools 6.2
Alpha:
Zope-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 60e6795963fe1dfd2c41216db13f2abd
Zope-components-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 312f409da0312d78087c5f22713d2972
Zope-core-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 611b719f9a135d2954aa4e1f98761c75
Zope-pcgi-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 472c9399c5b5436c06c10f886d48270a
Zope-services-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 310cd4e8d8c99a48d6efe6159c45bf15
Zope-zpublisher-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 6814549a40440a5c1aa32155bca66c03
Zope-zserver-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 96fc568da7466af73f2fb056313446b8
Zope-ztemplates-2.2.4-7.alpha.rpm
File outdated by:  RHSA-2001:115		     MD5: 251704804aa579ecbe14a2e08df7ba83
 
IA-32:
Zope-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 9d412bb7abf56bfcd87fe950031e76cf
Zope-components-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 86445651972ca85c51cc8d80814320f3
Zope-core-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: c18bb610245f0a69723f5bbe3617a762
Zope-pcgi-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 1e1cb85815d08bad6f1380235c709235
Zope-services-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 6e2649efb3f63a0a7cc6c36a866caa31
Zope-zpublisher-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 485350f1457f5ab8f2b8a8b76281a6bc
Zope-zserver-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 52ebb265edc86478f1b966a362127c4f
Zope-ztemplates-2.2.4-7.i386.rpm
File outdated by:  RHSA-2001:115		     MD5: 7475a10000023d5b7161986e654fa7eb
 
Sparc:
Zope-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 16772d94da2dddfdc9581c166a5580fc
Zope-components-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 2661262f459731a3526322eee18bf837
Zope-core-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 095bfb4731b33e9641ef07e23dabaa77
Zope-pcgi-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 6b8c33d75f9992f232d46ae7c218ba8c
Zope-services-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 7714c0b5701a35d68999e6a56ffe4d8f
Zope-zpublisher-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 62b9a1d8776664bd179eedea6462e264
Zope-zserver-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 9dcec718a2c240dfdb6a57f016f622b7
Zope-ztemplates-2.2.4-7.sparc.rpm
File outdated by:  RHSA-2001:115		     MD5: 294061ae90c35fa6d59545d8e2f9c481
 
Powertools 7.0
SRPMS:
Zope-2.2.5-6.src.rpm
File outdated by:  RHSA-2002:060		     MD5: fd0da348b8cc62664ea46bdcf118bfe4
 
Alpha:
Zope-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: 11b0278d0b09896366cb7c161fd28002
Zope-components-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: 7ed1edb7f4e24dc6a2f52b6fd2c4cd4d
Zope-core-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: 8f51620d8a6515411c5add627fd93dd2
Zope-pcgi-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: 1c6050a604b2c60393505f80c33af9cb
Zope-services-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: 986403228735ac040d3cdcdb723380d5
Zope-zpublisher-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: c4eb9d9d11ec4849dbf094f435fc6c6f
Zope-zserver-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: f7067d836ecedd206de3ee8ee784c28c
Zope-ztemplates-2.2.5-6.alpha.rpm
File outdated by:  RHSA-2002:060		     MD5: 49e8471b1658a8fdba3912cf5a2f5702
 
IA-32:
Zope-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: f37781f1f1e9c269fc99665948e9a982
Zope-components-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 2273a92eb0977cf3d1314c25ab1c9641
Zope-core-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: a22e60c220fbac47102fc8e2215d7e5a
Zope-pcgi-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: f4f588636465b95910f98608bf39e165
Zope-services-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 220f5e45dd5aa32c2a410e0a37175ce3
Zope-zpublisher-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: cfaa9c3fd88aa1eb034ada8be34a0163
Zope-zserver-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 01dfc35688a0dda4e7d864f127a69792
Zope-ztemplates-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 3058e069563cc7d986db91feebca9add
 
Powertools 7.1
SRPMS:
Zope-2.2.5-6.src.rpm
File outdated by:  RHSA-2002:060		     MD5: fd0da348b8cc62664ea46bdcf118bfe4
 
IA-32:
Zope-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: f37781f1f1e9c269fc99665948e9a982
Zope-components-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 2273a92eb0977cf3d1314c25ab1c9641
Zope-core-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: a22e60c220fbac47102fc8e2215d7e5a
Zope-pcgi-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: f4f588636465b95910f98608bf39e165
Zope-services-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 220f5e45dd5aa32c2a410e0a37175ce3
Zope-zpublisher-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: cfaa9c3fd88aa1eb034ada8be34a0163
Zope-zserver-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 01dfc35688a0dda4e7d864f127a69792
Zope-ztemplates-2.2.5-6.i386.rpm
File outdated by:  RHSA-2002:060		     MD5: 3058e069563cc7d986db91feebca9add
 

References

https://www.redhat.com/security/data/cve/CVE-2001-0567.html
http://www.zope.org/Products/Zope/Hotfix_2001-05-01/README.txt

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/