-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 12 Jul 2006 16:34:38 +0200 Source: zope2.7 Binary: zope2.7 Architecture: source i386 Version: 2.7.5-2sarge2 Distribution: stable-security Urgency: high Maintainer: Debian Zope team <pkg-zope-developers@lists.alioth.debian.org> Changed-By: Fabio Tranchitella <kobold@debian.org> Description: zope2.7 - Open Source Web Application Server Closes: 377285 Changes: zope2.7 (2.7.5-2sarge2) stable-security; urgency=high . * SECURITY UPDATE: Arbitrary file inclusion. * Disable 'raw' ReST directive in included docutils to prevent reading arbitrary files through ReST documents. (Closes: #377285) - CVE-2006-3458 Files: e23c6dc88c7af48940e86fa41f97d536 906 web optional zope2.7_2.7.5-2sarge2.dsc a30c65b102a2ae75eb8e953826ec397b 51266 web optional zope2.7_2.7.5-2sarge2.diff.gz 0d2255ee8404c285df5d218ff1720ca1 2608476 web optional zope2.7_2.7.5-2sarge2_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (GNU/Linux) iD8DBQFEtSeyXm3vHE4uyloRAkj/AKDAbNPfHDksVSTgReMvBm6iragEegCghxGR 7LsRJlsMuS0ti67JAwabRgM= =+f6j -----END PGP SIGNATURE----- Accepted: zope2.7_2.7.5-2sarge2.diff.gz to pool/main/z/zope2.7/zope2.7_2.7.5-2sarge2.diff.gz zope2.7_2.7.5-2sarge2.dsc to pool/main/z/zope2.7/zope2.7_2.7.5-2sarge2.dsc zope2.7_2.7.5-2sarge2_i386.deb to pool/main/z/zope2.7/zope2.7_2.7.5-2sarge2_i386.deb