From e889f0ab1befafcbe7928e87ed448c6e9bd12e70 Mon Sep 17 00:00:00 2001
From: Michael Howitz <icemac@gmx.net>
Date: Mon, 4 Sep 2023 07:59:35 +0200
Subject: [PATCH] Update `AccessControl` to version 6.2 to mitigate a security
 problem.

---
 CHANGES.rst           | 6 +++++-
 constraints.txt       | 2 +-
 requirements-full.txt | 2 +-
 versions-prod.cfg     | 2 +-
 versions.cfg          | 2 ++
 5 files changed, 10 insertions(+), 4 deletions(-)

diff --git a/CHANGES.rst b/CHANGES.rst
index 1899e77adf..edfb62ad8d 100644
--- a/CHANGES.rst
+++ b/CHANGES.rst
@@ -32,7 +32,11 @@ https://github.com/zopefoundation/Zope/blob/4.x/CHANGES.rst
 - Make Zope's parameters for denial of service protection configurable
   `#1141 <https://github.com/zopefoundation/Zope/issues/1141>_`.
 
-- Update ``RestrictedPython`` to 6.2 to mitigate a security problem.
+- Update ``RestrictedPython`` to version 6.2 to mitigate a security problem.
+  (CVE-2023-41039)
+
+- Update ``AccessControl`` to version 6.2 to mitigate a security problem.
+  (CVE-2023-41050)
 
 
 5.8.3 (2023-06-15)
diff --git a/constraints.txt b/constraints.txt
index d3ac5b37f7..20906077b6 100644
--- a/constraints.txt
+++ b/constraints.txt
@@ -1,4 +1,4 @@
-AccessControl==6.1
+AccessControl==6.2
 Acquisition==5.0
 AuthEncoding==5.0
 BTrees==5.0
diff --git a/requirements-full.txt b/requirements-full.txt
index 3d0407779e..ea870fd8f9 100644
--- a/requirements-full.txt
+++ b/requirements-full.txt
@@ -1,5 +1,5 @@
 -e git+https://github.com/zopefoundation/Zope.git@master#egg=Zope
-AccessControl==6.1
+AccessControl==6.2
 Acquisition==5.0
 AuthEncoding==5.0
 BTrees==5.0
diff --git a/versions-prod.cfg b/versions-prod.cfg
index 2e28d4838d..bd15387293 100644
--- a/versions-prod.cfg
+++ b/versions-prod.cfg
@@ -4,7 +4,7 @@
 [versions]
 Zope =
 Zope2 = 4.0
-AccessControl = 6.1
+AccessControl = 6.2
 Acquisition = 5.0
 AuthEncoding = 5.0
 BTrees = 5.0
diff --git a/versions.cfg b/versions.cfg
index c41956c62b..9113684553 100644
--- a/versions.cfg
+++ b/versions.cfg
@@ -24,6 +24,7 @@ docutils = 0.18.1
 five.localsitemanager = 4.0
 idna = 3.4
 imagesize = 1.4.1
+importlib-metadata = 5.1.0
 mr.developer = 2.0.1
 packaging = 23.1
 plone.recipe.command = 1.1
@@ -41,4 +42,5 @@ tempstorage = 6.0
 urllib3 = 2.0.3
 z3c.checkversions = 2.1
 zc.recipe.testrunner = 3.0
+zipp = 3.16.2
 zope.testrunner = 6.0