Please sign in to comment.
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[SECURITY] Disallow insecure deserialization for l18n_diffsource
Serialized values in l18n_diffsource are vulnerable to insecure deserialization when being invoked in FormEngine or DataHandler. Resolves: #88323 Releases: master, 9.5, 8.7 Security-Commit: 3b96ca7d5b35967b4277ed8cd78cdff4e07d709c Security-Bulletin: TYPO3-CORE-SA-2019-020 Change-Id: Iea90b0604a8f44413005c1d4fd5c876c55c61094 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/61139 Tested-by: Oliver Hader <firstname.lastname@example.org> Reviewed-by: Oliver Hader <email@example.com>
- Loading branch information
Showing with 8 additions and 2 deletions.