diff --git a/CHANGES.rst b/CHANGES.rst index c4b17af079..1899e77adf 100644 --- a/CHANGES.rst +++ b/CHANGES.rst @@ -32,6 +32,8 @@ https://github.com/zopefoundation/Zope/blob/4.x/CHANGES.rst - Make Zope's parameters for denial of service protection configurable `#1141 _`. +- Update ``RestrictedPython`` to 6.2 to mitigate a security problem. + 5.8.3 (2023-06-15) ------------------ diff --git a/constraints.txt b/constraints.txt index 00c8b1df2b..d3ac5b37f7 100644 --- a/constraints.txt +++ b/constraints.txt @@ -11,7 +11,7 @@ Paste==3.5.3 PasteDeploy==2.1.1; python_version == '3.7' PasteDeploy==3.0.1; python_version > '3.7' Persistence==4.0.post1 -RestrictedPython==6.1 +RestrictedPython==6.2 WSGIProxy2==0.5.1 WebOb==1.8.7 WebTest==3.0.0 diff --git a/requirements-full.txt b/requirements-full.txt index 20e466e42b..3d0407779e 100644 --- a/requirements-full.txt +++ b/requirements-full.txt @@ -12,7 +12,7 @@ Paste==3.5.3 PasteDeploy==2.1.1; python_version == '3.7' PasteDeploy==3.0.1; python_version > '3.7' Persistence==4.0.post1 -RestrictedPython==6.1 +RestrictedPython==6.2 WSGIProxy2==0.5.1 WebOb==1.8.7 WebTest==3.0.0 diff --git a/versions-prod.cfg b/versions-prod.cfg index 0c4c6327d7..2e28d4838d 100644 --- a/versions-prod.cfg +++ b/versions-prod.cfg @@ -16,7 +16,7 @@ MultiMapping = 5.0 Paste = 3.5.3 PasteDeploy = 3.0.1 Persistence = 4.0.post1 -RestrictedPython = 6.1 +RestrictedPython = 6.2 WebTest = 3.0.0 WSGIProxy2 = 0.5.1 WebOb = 1.8.7