Hola a todos,
acaba de salir un parche de seguridad para Plone 4
https://plone.org/products/plone-hotfix/releases/20151006.
Este es solo para Plone 4, el Plone 5 no se ve afectado mientras que las
versiones más antiguas ya no están soportadas.
Tenéis que ponerla cuanto antes pero ojo porque en este caso solo se
puede aplicar haciendo el Buildout.
Saludos,
Danilo Dellaquila
-------- Forwarded Message --------
Subject: [Plone-Announce] 20151006 hotfix released
Date: Tue, 6 Oct 2015 18:06:39 +0200
From: Announcement of Plone releases and security-related
notifications. Recommended subscription for all Plone developers and
site admins. <[email protected]>
Reply-To: [email protected]
To: [email protected]
A hotfix for all versions of Plone 4.x. Fixes multiple CSRF
vulnerabilities in Zope:
https://plone.org/products/plone-hotfix/releases/201510061
for more information on the nature of the issue, seeÂ
https://plone.org/products/plone/security/advisories/security-vulnerability-20151006-csrf
This is the follow up to Announcement:
https://community.plone.org/t/security-vulnerability-pre-announcement-20151006/979/2
The Plone Security Best Practices docs have been updated:
http://docs.plone.org/manage/deploying/production/securitybestpractices.html
------------------------------------------------------------------------------
_______________________________________________
Plone-Announce mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/plone-announce
_______________________________________________
Usuarios-Plone mailing list
[email protected]
https://lists.plone.org/mailman/listinfo/plone-usuarios-plone
