Skip to main content

Hotfix to fix CVE 2010-1104 for Zope 2.8 - 2.13

Project description

Introduction

This Zope hotfix fixes CVE 2010-1104.

This hotfix has been tested with Zope instances using Zope 2.8.x - 2.11.x. Users of Zope 2.12 and greater should instead update to the latest corresponding minor revision, which already includes this fix.

Warning

Zope < 2.12 is no longer officially supported, and may have other unpatched vulnerabilities. You are encouraged to upgrade to a supported Zope 2.

Installation

Download the tarball from the PyPI page:

http://pypi.python.org/pypi/Products.Zope_Hotfix_CVE_2010_1104

Unpack the tarball and add a ‘products’ key to the ‘etc/zope.conf’ of your instance. E.g.:

products /path/to/Products.Zope_Hotfix_CVE_2010_1104/Products

and restart. Alternatively, you may copy or symlink the ‘Products’ directory into the ‘Products’ subdirectory of your Zope instance. E.g.:

$ cp -r /path/to/Products.Zope_Hotfix_CVE_2010_1104/Products \
  /path/to/instance/Products/

Verifying the Installation

After restarting the Zope instance, check the ‘Control_Panel/Products’ folder in the Zope Management Interface, e.g.:

http://localhost:8080/Control_Panel/Products/manage_main

You should see the ‘Zope_Hotfix_CVE_2010_1104’ product folder there.

Changelog

1.0 (2012-01-18)

  • Initial release

Project details


Release history Release notifications

This version
History Node

1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Filename, size & hash SHA256 hash help File type Python version Upload date
Products.Zope_Hotfix_CVE_2010_1104-1.0.tar.gz (3.5 kB) Copy SHA256 hash SHA256 Source None Jan 18, 2012

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging CloudAMQP CloudAMQP RabbitMQ AWS AWS Cloud computing Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page