Package typo3_src: Information
Source package: typo3_src
Version: 4.3.7-alt1
Build time: Oct 6, 2010, 04:59 PM
Category: Networking/Other
Report package bugHome page: http://www.typo3.org
License: GPL
Summary: A free, feature rich, Content Management Framework/System
Description:
TYPO3 is a free Open Source content management system for enterprise purposes on the web and in intranets. It offers full flexibility and extendability while featuring an accomplished set of ready-made interfaces, functions and modules. To find out more, see http://www.typo3.org | http://www.typo3.ru. You should install MySQL-server package or care of DBAL setup yourself. It's also highly recommended to install some sort of PHP accelerator, like php-mmcache, php5-eaccelerator or php5-xcache.
Maintainer: Michael Shigorin
ACL:
@qa_p5
@qa_p5
Last changed
Oct. 6, 2010 Michael Shigorin 4.3.7-alt1
- 4.3.7: critical security fixes, see http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-020/ + remote file disclosure (no auth required) + several XSS in backend (valid backend login required) + remote file disclosure in EM (valid backend admin login required) + privilege escalation possible for backend user having permission to create other backend users due to improper user input validation + DoS with php crash in t3lib_div::validEmail() + XSS protection incomplete in RemoveXSS()
Sept. 28, 2010 Michael Shigorin 4.3.6-alt1
- 4.3.6: bugfixes, see http://wiki.typo3.org/wiki/TYPO3_4.3.6
Aug. 6, 2010 Michael Shigorin 4.3.5-alt1
- 4.3.5: regression fixes, see also: + http://news.typo3.org/news/article/regressions-in-latest-security-release/ + http://wiki.typo3.org/index.php/TYPO3_4.3.5