[Zope-Checkins] CVS: Zope/doc - CHANGES.txt:1.406.2.78
Martijn Pieters
mj@zope.com
Fri, 4 Oct 2002 11:01:37 -0400
Update of /cvs-repository/Zope/doc
In directory cvs.zope.org:/tmp/cvs-serv9171/doc
Modified Files:
Tag: Zope-2_5-branch
CHANGES.txt
Log Message:
Merge ZTUtils tree changes from Zope 2.6 branch.
=== Zope/doc/CHANGES.txt 1.406.2.77 => 1.406.2.78 ===
--- Zope/doc/CHANGES.txt:1.406.2.77 Fri Oct 4 11:01:01 2002
+++ Zope/doc/CHANGES.txt Fri Oct 4 11:01:37 2002
@@ -85,6 +85,17 @@
errors when it shouldn't, because it wasn't providing enough context
to the security manager. Now the context is provided.
+ - ZTUtils.SimpleTree could not build a tree with a root other than the
+ ZODB root object. Also, filter functions didn't work.
+
+ - Collector #603: ZTUtils.Tree.encodeExpansion encoded depth with '.'
+ characters, but decodeExpansion could possibly see an encoded node
+ id as an encoded depth when that encoded id started with a '.'.
+
+ - Collector #605: ZTUtils.Tree.decodeExpansion set no limits on the
+ string to be decoded, allowing for a DoS attack with very large
+ strings.
+
Zope 2.5.1
New Features