oss-sec mailing list archives
CVE request: plone privilege escalation flaw
From: Vincent Danen <vdanen () redhat com>
Date: Mon, 4 Jul 2011 15:59:39 -0600
Looks like the previous fix for Plone/Zope (CVE-2011-0720) caused a new privilege escalation flaw in Plone 3.x and 4.x. Could a CVE be assigned? References: https://bugzilla.redhat.com/show_bug.cgi?id=718824 http://plone.org/products/plone/security/advisories/20110622 http://plone.org/products/plone-hotfix/releases/20110622 http://secunia.com/advisories/45111 Thanks. --Vincent Danen / Red Hat Security Response Team
Current thread:
- CVE request: plone privilege escalation flaw Vincent Danen (Jul 04)
- Re: CVE request: plone privilege escalation flaw Josh Bressers (Jul 12)