Debian Security Advisory DSA 006-1 (zope)

The remote host is missing an update to zope announced via advisory DSA 006-1.
Last week a Zope (security advisory was released which indicated Erik Enge found a problem in the way Zope calculates roles. In some situations Zope checked the wrong folder hierarchy which could cause it to grant local roles when it should not. In other words: users with privileges in one folder could gain privileges in another folder. This has been fixed in version 2.1.6-5.3 by including the 2000-12-15 hotfix, and we recommend that you upgrade your zope