• Jim Fulton's avatar
    Bugs Fixed: · ada16446
    Jim Fulton authored
    - Fixed vulnerabilities in the ZEO network protocol that allow:
    
    CVE-2009-0668 Arbitrary Python code execution in ZODB ZEO storage servers
      CVE-2009-0669 Authentication bypass in ZODB ZEO storage servers
    
    - Limit the number of object ids that can be allocated at once to
      avoid running out of memory.
    ada16446
StorageServer.py 45.2 KB