20151006 hotfix released

classic Classic list List threaded Threaded
1 message Options
Announce mailing list Announce mailing list
Reply | Threaded
Open this post in threaded view
|

20151006 hotfix released

A hotfix for all versions of Plone 4.x. Fixes multiple CSRF vulnerabilities in Zope: https://plone.org/products/plone-hotfix/releases/201510061

for more information on the nature of the issue, seeĀ https://plone.org/products/plone/security/advisories/security-vulnerability-20151006-csrf


This is the follow up to Announcement: https://community.plone.org/t/security-vulnerability-pre-announcement-20151006/979/2

The Plone Security Best Practices docs have been updated: http://docs.plone.org/manage/deploying/production/securitybestpractices.html




------------------------------------------------------------------------------

_______________________________________________
Plone-Announce mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/plone-announce