Bug #67245

Prevent information disclosure in file list

Added by Nicole Cordes over 6 years ago. Updated almost 4 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Category:
File Abstraction Layer (FAL)
Target version:
Start date:
2015-06-02
Due date:
% Done:

100%

Estimated time:
TYPO3 Version:
6.2
PHP Version:
Tags:
Complexity:
Is Regression:
No
Sprint Focus:

Description

Currently the doc header title shows the full path to a folder even if you are in a mount point.


Related issues

Related to TYPO3 Core - Bug #73735: Error 500 (mem exhausted) when a user has multiple filemountsClosed2016-02-29

Actions
Related to TYPO3 Core - Bug #75484: Error in file list module when having a read-only filemount for the same path as a normal filemountRejected2016-04-10

Actions
#1

Updated by Gerrit Code Review over 6 years ago

  • Status changed from New to Under Review

Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at http://review.typo3.org/39898

#2

Updated by Benni Mack over 6 years ago

  • Target version changed from 7.3 (Packages) to 7.4 (Backend)
#3

Updated by Gerrit Code Review about 6 years ago

Patch set 2 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at http://review.typo3.org/39898

#4

Updated by Nicole Cordes about 6 years ago

  • Status changed from Under Review to Resolved
  • % Done changed from 0 to 100
#5

Updated by Gerrit Code Review about 6 years ago

  • Status changed from Resolved to Under Review

Patch set 1 for branch TYPO3_6-2 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at http://review.typo3.org/42588

#6

Updated by Nicole Cordes about 6 years ago

  • Status changed from Under Review to Resolved
#7

Updated by Lorenz Ulrich over 5 years ago

This change broke a project of ours: User with only limited access to files (through mountpoints) cannot use the file list anymore. When clicking a folder, TYPO3 runs into a memory leak and only serves a white page. Reverting the patch brings back normal behaviour.

#8

Updated by Riccardo De Contardi almost 4 years ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF