kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Acqusition context checking hotfix

Browse source 
``The issue involves an error in the '_check_context' method of the
AccessControl.User.BasicUser class. The bug made it possible to access
Zope objects via acquisition that a user would not otherwise have access
to. This issue could allow users with enough internal knowledge of Zope
to perform actions higher in the object hierarchy than they should be
able to.''
This commit is contained in:
Neil Blakey-Milner 2001-08-04 17:29:00 +00:00
parent a5d858f6e1
commit 434868fb60
Notes: svn2git 2021-03-31 03:12:20 +00:00 
svn path=/head/; revision=45808
18 changed files with 72 additions and 30 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
www/zope/Makefile
View file

@ -7,11 +7,13 @@
PORTNAME= zope
PORTVERSION= 2.4.0
CATEGORIES= www python
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/
PORTREVISION= 1
CATEGORIES= www python zope
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/ \
http://www.zope.org/Products/Zope/Hotfix_2001-08-04/
DISTNAME= Zope-${PORTVERSION}-src
EXTRACT_SUFX= .tgz
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
DISTFILES= ${DISTNAME}.tgz \
Hotfix_2001_08_04.tgz
MAINTAINER= nbm@FreeBSD.org
@ -62,7 +64,7 @@ do-install:
@${ECHO} "===> Please be patient, some builds need their time."
@${ECHO} "===> Copying..."
@${CP} -Rp ${WRKSRC}/* ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKSRC}/lib ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKDIR}/lib ${ZOPEBASEDIR}/
@#
@${CHMOD} -R u+w ${ZOPEBASEDIR}
@(cd ${ZOPEBASEDIR} && ${PYTHON_CMD} w_pcgi.py)

1
www/zope/distinfo
View file

@ -1 +1,2 @@
MD5 (zope/Zope-2.4.0-src.tgz) = 1a41e096a80411bccf61cd862bc3cc20
MD5 (zope/Hotfix_2001_08_04.tgz) = c060bf5f1a22b6d93ea3314cae9ea0cc

4
www/zope/pkg-plist
View file

@ -810,6 +810,9 @@ etc/rc.d/zope.sh
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help/ExternalMethod.pyc
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/version.txt
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www/function.gif
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/README.txt
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.py
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.py
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/README.txt
@ -2021,6 +2024,7 @@ etc/rc.d/zope.sh
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost/dtml
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MIMETools
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/dtml

12
www/zope210/Makefile
View file

@ -7,11 +7,13 @@
PORTNAME= zope
PORTVERSION= 2.4.0
CATEGORIES= www python
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/
PORTREVISION= 1
CATEGORIES= www python zope
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/ \
http://www.zope.org/Products/Zope/Hotfix_2001-08-04/
DISTNAME= Zope-${PORTVERSION}-src
EXTRACT_SUFX= .tgz
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
DISTFILES= ${DISTNAME}.tgz \
Hotfix_2001_08_04.tgz
MAINTAINER= nbm@FreeBSD.org
@ -62,7 +64,7 @@ do-install:
@${ECHO} "===> Please be patient, some builds need their time."
@${ECHO} "===> Copying..."
@${CP} -Rp ${WRKSRC}/* ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKSRC}/lib ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKDIR}/lib ${ZOPEBASEDIR}/
@#
@${CHMOD} -R u+w ${ZOPEBASEDIR}
@(cd ${ZOPEBASEDIR} && ${PYTHON_CMD} w_pcgi.py)

1
www/zope210/distinfo
View file

@ -1 +1,2 @@
MD5 (zope/Zope-2.4.0-src.tgz) = 1a41e096a80411bccf61cd862bc3cc20
MD5 (zope/Hotfix_2001_08_04.tgz) = c060bf5f1a22b6d93ea3314cae9ea0cc

4
www/zope210/pkg-plist
View file

@ -810,6 +810,9 @@ etc/rc.d/zope.sh
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help/ExternalMethod.pyc
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/version.txt
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www/function.gif
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/README.txt
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.py
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.py
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/README.txt
@ -2021,6 +2024,7 @@ etc/rc.d/zope.sh
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost/dtml
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MIMETools
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/dtml

12
www/zope211/Makefile
View file

@ -7,11 +7,13 @@
PORTNAME= zope
PORTVERSION= 2.4.0
CATEGORIES= www python
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/
PORTREVISION= 1
CATEGORIES= www python zope
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/ \
http://www.zope.org/Products/Zope/Hotfix_2001-08-04/
DISTNAME= Zope-${PORTVERSION}-src
EXTRACT_SUFX= .tgz
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
DISTFILES= ${DISTNAME}.tgz \
Hotfix_2001_08_04.tgz
MAINTAINER= nbm@FreeBSD.org
@ -62,7 +64,7 @@ do-install:
@${ECHO} "===> Please be patient, some builds need their time."
@${ECHO} "===> Copying..."
@${CP} -Rp ${WRKSRC}/* ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKSRC}/lib ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKDIR}/lib ${ZOPEBASEDIR}/
@#
@${CHMOD} -R u+w ${ZOPEBASEDIR}
@(cd ${ZOPEBASEDIR} && ${PYTHON_CMD} w_pcgi.py)

1
www/zope211/distinfo
View file

@ -1 +1,2 @@
MD5 (zope/Zope-2.4.0-src.tgz) = 1a41e096a80411bccf61cd862bc3cc20
MD5 (zope/Hotfix_2001_08_04.tgz) = c060bf5f1a22b6d93ea3314cae9ea0cc

4
www/zope211/pkg-plist
View file

@ -810,6 +810,9 @@ etc/rc.d/zope.sh
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help/ExternalMethod.pyc
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/version.txt
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www/function.gif
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/README.txt
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.py
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.py
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/README.txt
@ -2021,6 +2024,7 @@ etc/rc.d/zope.sh
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost/dtml
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MIMETools
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/dtml

12
www/zope213/Makefile
View file

@ -7,11 +7,13 @@
PORTNAME= zope
PORTVERSION= 2.4.0
CATEGORIES= www python
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/
PORTREVISION= 1
CATEGORIES= www python zope
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/ \
http://www.zope.org/Products/Zope/Hotfix_2001-08-04/
DISTNAME= Zope-${PORTVERSION}-src
EXTRACT_SUFX= .tgz
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
DISTFILES= ${DISTNAME}.tgz \
Hotfix_2001_08_04.tgz
MAINTAINER= nbm@FreeBSD.org
@ -62,7 +64,7 @@ do-install:
@${ECHO} "===> Please be patient, some builds need their time."
@${ECHO} "===> Copying..."
@${CP} -Rp ${WRKSRC}/* ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKSRC}/lib ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKDIR}/lib ${ZOPEBASEDIR}/
@#
@${CHMOD} -R u+w ${ZOPEBASEDIR}
@(cd ${ZOPEBASEDIR} && ${PYTHON_CMD} w_pcgi.py)

1
www/zope213/distinfo
View file

@ -1 +1,2 @@
MD5 (zope/Zope-2.4.0-src.tgz) = 1a41e096a80411bccf61cd862bc3cc20
MD5 (zope/Hotfix_2001_08_04.tgz) = c060bf5f1a22b6d93ea3314cae9ea0cc

4
www/zope213/pkg-plist
View file

@ -810,6 +810,9 @@ etc/rc.d/zope.sh
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help/ExternalMethod.pyc
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/version.txt
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www/function.gif
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/README.txt
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.py
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.py
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/README.txt
@ -2021,6 +2024,7 @@ etc/rc.d/zope.sh
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost/dtml
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MIMETools
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/dtml

12
www/zope28/Makefile
View file

@ -7,11 +7,13 @@
PORTNAME= zope
PORTVERSION= 2.4.0
CATEGORIES= www python
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/
PORTREVISION= 1
CATEGORIES= www python zope
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/ \
http://www.zope.org/Products/Zope/Hotfix_2001-08-04/
DISTNAME= Zope-${PORTVERSION}-src
EXTRACT_SUFX= .tgz
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
DISTFILES= ${DISTNAME}.tgz \
Hotfix_2001_08_04.tgz
MAINTAINER= nbm@FreeBSD.org
@ -62,7 +64,7 @@ do-install:
@${ECHO} "===> Please be patient, some builds need their time."
@${ECHO} "===> Copying..."
@${CP} -Rp ${WRKSRC}/* ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKSRC}/lib ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKDIR}/lib ${ZOPEBASEDIR}/
@#
@${CHMOD} -R u+w ${ZOPEBASEDIR}
@(cd ${ZOPEBASEDIR} && ${PYTHON_CMD} w_pcgi.py)

1
www/zope28/distinfo
View file

@ -1 +1,2 @@
MD5 (zope/Zope-2.4.0-src.tgz) = 1a41e096a80411bccf61cd862bc3cc20
MD5 (zope/Hotfix_2001_08_04.tgz) = c060bf5f1a22b6d93ea3314cae9ea0cc

4
www/zope28/pkg-plist
View file

@ -810,6 +810,9 @@ etc/rc.d/zope.sh
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help/ExternalMethod.pyc
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/version.txt
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www/function.gif
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/README.txt
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.py
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.py
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/README.txt
@ -2021,6 +2024,7 @@ etc/rc.d/zope.sh
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost/dtml
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MIMETools
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/dtml

12
www/zope29/Makefile
View file

@ -7,11 +7,13 @@
PORTNAME= zope
PORTVERSION= 2.4.0
CATEGORIES= www python
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/
PORTREVISION= 1
CATEGORIES= www python zope
MASTER_SITES= http://www.zope.org/Products/Zope/${PORTVERSION}/ \
http://www.zope.org/Products/Zope/Hotfix_2001-08-04/
DISTNAME= Zope-${PORTVERSION}-src
EXTRACT_SUFX= .tgz
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
DISTFILES= ${DISTNAME}.tgz \
Hotfix_2001_08_04.tgz
MAINTAINER= nbm@FreeBSD.org
@ -62,7 +64,7 @@ do-install:
@${ECHO} "===> Please be patient, some builds need their time."
@${ECHO} "===> Copying..."
@${CP} -Rp ${WRKSRC}/* ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKSRC}/lib ${ZOPEBASEDIR}/
@${CP} -Rp ${WRKDIR}/lib ${ZOPEBASEDIR}/
@#
@${CHMOD} -R u+w ${ZOPEBASEDIR}
@(cd ${ZOPEBASEDIR} && ${PYTHON_CMD} w_pcgi.py)

1
www/zope29/distinfo
View file

@ -1 +1,2 @@
MD5 (zope/Zope-2.4.0-src.tgz) = 1a41e096a80411bccf61cd862bc3cc20
MD5 (zope/Hotfix_2001_08_04.tgz) = c060bf5f1a22b6d93ea3314cae9ea0cc

4
www/zope29/pkg-plist
View file

@ -810,6 +810,9 @@ etc/rc.d/zope.sh
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help/ExternalMethod.pyc
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/version.txt
%%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www/function.gif
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/README.txt
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.py
%%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04/__init__.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.py
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/MIMETag.pyc
%%ZOPEBASEDIR%%/lib/python/Products/MIMETools/README.txt
@ -2021,6 +2024,7 @@ etc/rc.d/zope.sh
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost/dtml
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MailHost
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/MIMETools
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/Hotfix_2001_08_04
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/www
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/help
@dirrm %%ZOPEBASEDIR%%/lib/python/Products/ExternalMethod/dtml