-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 24 Aug 2006 19:38:13 +0200 Source: zope2.7 Binary: zope2.7 Architecture: source i386 Version: 2.7.5-2sarge3 Distribution: stable-security Urgency: high Maintainer: Debian Zope team <pkg-zope-developers@lists.alioth.debian.org> Changed-By: Fabio Tranchitella <kobold@debian.org> Description: zope2.7 - Open Source Web Application Server Changes: zope2.7 (2.7.5-2sarge3) stable-security; urgency=high . * SECURITY UPDATE: Arbitrary file inclusion. * Disable 'csv_table' ReST directive in included docutils to prevent reading arbitrary files through ReST documents. Files: b4ea5636227d16c5df630894d2b76967 906 web optional zope2.7_2.7.5-2sarge3.dsc ee75bf3e88b6eb161ccc431e1077bce8 51399 web optional zope2.7_2.7.5-2sarge3.diff.gz 779c9e75c919a1d39d0db7a9a6fc14d9 2608554 web optional zope2.7_2.7.5-2sarge3_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFBA2EXm3vHE4uyloRAgETAKCkxiWrnGJ40loisGvnZ09LW5HGFQCgo3Tg jLoOpRt3RrDofofXFjvUeKE= =49qD -----END PGP SIGNATURE----- Accepted: zope2.7_2.7.5-2sarge3.diff.gz to pool/main/z/zope2.7/zope2.7_2.7.5-2sarge3.diff.gz zope2.7_2.7.5-2sarge3.dsc to pool/main/z/zope2.7/zope2.7_2.7.5-2sarge3.dsc zope2.7_2.7.5-2sarge3_i386.deb to pool/main/z/zope2.7/zope2.7_2.7.5-2sarge3_i386.deb