Implement the HotFix described at

http://www.zope.org/Products/Zope/Hotfix_2002-03-01/README.txt which says: ``The issue involves the checking of security for objects with proxy roles. The context of the owner user that created the object with proxy roles was not being taken into account when determining access to the object with proxy roles. This flaw could allow users defined in subfolders of a site with sufficient privileges to access objects at higher levels in the site that they would not normally be able to access.'' PR: 36103 Submitted by: HAYASHI Yasushi <yasi@yasi.to>
author: Neil Blakey-Milner <nbm@FreeBSD.org> 2002-03-23 10:04:29 +0000
committer: Neil Blakey-Milner <nbm@FreeBSD.org> 2002-03-23 10:04:29 +0000
commit: be5a1dcb666cecc7961fc9d42a1cffbb86f0713b (patch)
tree: 7770358271199bd906bc465b08a545dfff68ad06 /www/zope211/distinfo
parent: Update to 1.63 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/www/zope211/distinfo b/www/zope211/distinfo
index ccc2d7347473..8fe20e1dea7b 100644
--- a/www/zope211/distinfo
+++ b/www/zope211/distinfo
@@ -1,2 +1,3 @@
 MD5 (zope/Zope-2.5.0-src.tgz) = 105bb1f9d90478596cc929164ef385e3
+MD5 (zope/Hotfix_2002-03-01.tgz) = 4bb8d96a7dd5a93a3fe2e0b9f37632e7
 MD5 (zope/Zope-2.5.0-unix-security.patch) = 87f3dceb08aa3bcede5bf521c9cdd328
author	Neil Blakey-Milner <nbm@FreeBSD.org>	2002-03-23 10:04:29 +0000
committer	Neil Blakey-Milner <nbm@FreeBSD.org>	2002-03-23 10:04:29 +0000
commit	be5a1dcb666cecc7961fc9d42a1cffbb86f0713b (patch)
tree	7770358271199bd906bc465b08a545dfff68ad06 /www/zope211/distinfo
parent	Update to 1.63 (diff)