[SECURITY] Fedora EPEL 5 Update: zope-2.10.9-1.el5
updates at fedoraproject.org
updates at fedoraproject.org
Tue Nov 10 03:22:29 UTC 2009
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2009-0401
2009-09-08 22:24:44
--------------------------------------------------------------------------------
Name : zope
Product : Fedora EPEL 5
Version : 2.10.9
Release : 1.el5
URL : http://www.zope.org/
Summary : Web application server for flexible content management applications
Description :
Zope is an application server framework that enables developers to quickly
build web applications such as intranets, portals, and content management
systems.
Zope, by default, will listen on port 8080.
--------------------------------------------------------------------------------
Update Information:
CVE-2009-0668, CVE-2009-0669
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #513422 - CVE-2009-0668 zope: ZEO arbitrary Python code execution in the context of server process
https://bugzilla.redhat.com/show_bug.cgi?id=513422
[ 2 ] Bug #513428 - CVE-2009-0669 zope: ZEO authentication bypass
https://bugzilla.redhat.com/show_bug.cgi?id=513428
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update zope' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the epel-package-announce
mailing list