PublicDate: 2006-07-07 23:05:00 UTC
Candidate: CVE-2006-3458
References:
 https://ubuntu.com/security/notices/USN-317-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3458
Description:
 Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to 2.9.3 (Zope2) does not
 disable the "raw" command when providing untrusted users with restructured
 text (reStructuredText) functionality from docutils, which allows local
 users to read arbitrary files.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_zope2.9: needed
edgy_zope2.9: released (2.9.5-1)
feisty_zope2.9: released (2.9.5-1)
devel_zope2.9: released (2.9.5-1)
dapper_zope2.10: DNE
edgy_zope2.10: DNE
feisty_zope2.10: DNE
devel_zope2.10: released (2.10.3-2)
upstream_zope2.10: needs-triage
upstream_zope2.9: needs-triage