cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
37,512 Commits 1 Branch 0 Tags 554 MiB
2aec64c7b5
Commit Graph

16 Commits

Author SHA1 Message Date
mbalmer
76c417cc36 Our friends at www.zope.org had a little mishap... 2007-03-26 19:39:01 +00:00
mbalmer
6cff324830 Update to Zope 2.10.3, this is a bugfix releasse and includes the hotfix 
published some days ago:

 http://www.zope.org/Products/Zope/Hotfix-2007-03-20

SECURITY:  This fixes a XSS vulnerability.

Thanks to Ingo Schwarze for the ApplicationManager patch.
 2007-03-26 06:10:30 +00:00
mbalmer
ce58a4f445 the zope darlings changed the distfile, I bumped the packagename and naddy 
gets the cookie for letting me know.
 2006-10-04 21:41:48 +00:00
mbalmer
884e4f4d9d Update to Zope-2.10.0. 
See http://www.zope.org/Products/Zope/2.10.0/Zope-2_10_0_released for the
complete release notes.

ok xsa
 2006-10-03 09:16:16 +00:00
mbalmer
8e47d16714 Zope-2.8.6, latest stable release of the Zope 2.8 branch. 2006-03-16 09:53:55 +00:00
mbalmer
e99b718356 Update to Zope 2.8.4 and switch to Python 2.4 2005-11-06 20:20:58 +00:00
mbalmer
91518b08e7 Update to Zope-2.7.4. 
ok xsa@
 2005-01-20 17:13:28 +00:00
naddy
ae76d3ea1f SIZE 2005-01-05 17:21:50 +00:00
xsa
db1072e6d9 update to zope-2.7.2!!! 
new MAINTAINER timeout ...
some input from Aleksander Piotrowski;
 2004-08-03 10:16:36 +00:00
krw
9dcd3c018c Update to 2.6.1. 
MAINTAINER has moved on so remove his name.

ok naddy@
 2003-05-14 21:35:52 +00:00
brad
078daae9a1 SECURITY: add 2002-06-14 hotfix 
The issue involves the security of the indexes of ZCatalog objects. A flaw
in the security settings of ZCatalog allows anonymous users to call arbitrary
methods of catalog indexes. The vulnerability also allows untrusted code to
do the same.
--
From: MAINTAINER
 2002-09-29 06:02:18 +00:00
matt
555fb7dc93 - 2.5.1 
- make "prominent notices" in changed files for 100% license compliance
 2002-04-25 15:38:54 +00:00
naddy
3ef18e1e59 SECURITY: Add hotfix; from matt@ 
The issue involves a vulnerability involving "through the web code"
inadvertently allowing an untrusted user to remotely shut down a
Zope server by allowing the user to inject special headers into the
response. If you allow untrusted users to write "through the web"
code like Python Scripts, DTML Methods, or Page Templates, your
Zope server is vulnerable.
 2002-04-17 16:04:01 +00:00
matt
e44d12be40 Upgrade to 2.5.1b1, as it's got a few important fixes, and nobody 
knows if 2.5.1 is going to come out in time for the release.

Also add my patch to fix setuid support (not used by default) and
set our own version string to distinguish this from an "official"
Zope release.
 2002-03-26 02:50:23 +00:00
matt
ce5fec9266 zope 2.5.0 2002-02-15 19:55:56 +00:00
matt
186a286ede - update to 2.4.3 
- package spec for gtar
- distinfo
 2001-11-21 01:33:12 +00:00