2012-09-07 12:17:12 |
Roman Fiedler |
bug |
|
|
added bug |
2012-09-07 12:36:28 |
Tres Seaver |
zope2: status |
New |
Incomplete |
|
2012-09-07 12:45:56 |
Roman Fiedler |
attachment added |
|
Create escalation page HTTP-request https://bugs.launchpad.net/zope2/+bug/1047318/+attachment/3298117/+files/0-ManageUiCreatePage-Request |
|
2012-09-07 12:47:00 |
Roman Fiedler |
attachment added |
|
Call new page to initialize https://bugs.launchpad.net/zope2/+bug/1047318/+attachment/3298118/+files/1-CallPrivEscInit-Request |
|
2012-09-07 12:47:41 |
Roman Fiedler |
attachment added |
|
Perform escalation by getting hold on reflection HTTP-request https://bugs.launchpad.net/zope2/+bug/1047318/+attachment/3298119/+files/2-CallPrivExecPerform-Request |
|
2012-09-07 12:50:08 |
Roman Fiedler |
zope2: status |
Incomplete |
New |
|
2012-09-07 14:48:41 |
Tres Seaver |
zope2: status |
New |
In Progress |
|
2012-09-07 14:48:41 |
Tres Seaver |
zope2: assignee |
|
Tres Seaver (tseaver) |
|
2012-09-07 15:51:58 |
Tres Seaver |
attachment added |
|
Prevent even bare import of unprotected modules in untrusted code. https://bugs.launchpad.net/zope2/+bug/1047318/+attachment/3298693/+files/lp2057318-AccessControl.patch |
|
2012-09-07 15:52:49 |
Tres Seaver |
attachment added |
|
Fix tests which relied on importing unprotected stdlib modules in PythonScripts. https://bugs.launchpad.net/zope2/+bug/1047318/+attachment/3298696/+files/lp2057318-Products.PythonScripts.patch |
|
2012-09-09 13:15:46 |
Hanno Schlichting |
zope2: milestone |
|
2.13.17 |
|
2012-09-09 13:16:08 |
Hanno Schlichting |
zope2: status |
In Progress |
Fix Released |
|
2012-11-25 13:36:13 |
Tres Seaver |
information type |
Private Security |
Public Security |
|