Security issues in etch (?) and lenny! (was: Plone 2.5.3 is released!)

Jérémy Bobbio lunar at debian.org
Tue May 22 12:03:13 UTC 2007


On Wed, May 16, 2007 at 04:32:22PM -0700, Alexander Limi wrote:
> Plone 2.5.3 with some serious security bug fixes was released earlier
> today, and we would appreciate installers and packages for the various
> platforms for it.
> 
> Please note that it *requires* Zope 2.9.7 now to make sure the
> security fixes will work (most of them were fixed on the Zope level).
> If your installers/packages are using the Zope 2.8 series, the version
> you need is Zope 2.8.9+Five to get the security fixes).

etch was released with Plone 2.5.1 and Zope 2.9.6.

We definitely need to check if etch is affected by the security issues
to eventually provide a security update for etch.

For sid/lenny, Zope 2.9.7 is already in, and Plone would just need to be
updated.

Unfortunately, I won't have the time to anything this week (and I'm
already catching up on quite old emails).  Would anyone like to take a
further look at this issues?

Cheers,
-- 
Jérémy Bobbio                        .''`. 
lunar at debian.org                    : :Ⓐ  :  # apt-get install anarchism
                                    `. `'` 
                                      `-   
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-zope-developers/attachments/20070522/93ceb9b2/attachment.pgp 


More information about the pkg-zope-developers mailing list