Story #91384

Backend login and referrer problems after recent TYPO3 9.5.17 and 10.4.2 security fixes

Added by Oliver Hader about 2 months ago. Updated about 2 months ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
Backend User Interface
Target version:
-
Start date:
2020-05-13
Due date:
% Done:

100%

TYPO3 Version:
9
PHP Version:
Tags:
Sprint Focus:

Subtasks

Bug #91385: JavaScript error for extensions overriding login formClosed

Bug #91396: Allow SSO authentication handlers to pass SSRF referrer checksClosedOliver Hader

Bug #91414: After update from 9.5.16 to 9.5.17 I get an error 'Missing referrer for /main' in /typo3Closed

Bug #91420: MissingReferrerException TYPO3 v10.4.2Closed

Bug #91433: Allow referrer refresh in install toolClosedOliver Hader

History

#2 Updated by Oliver Hader about 2 months ago

This is a collection tracking issue for drawbacks resulted from https://typo3.org/security/advisory/typo3-core-sa-2020-006

#3 Updated by Oliver Hader about 2 months ago

  • Target version set to 9.5.18 & 10.4.3

#4 Updated by Oliver Hader about 2 months ago

  • Target version deleted (9.5.18 & 10.4.3)

#5 Updated by K. F. about 2 months ago

  • Related to Bug #91420: MissingReferrerException TYPO3 v10.4.2 added

#6 Updated by Oliver Hader about 2 months ago

  • Tracker changed from Bug to Story

#7 Updated by Oliver Hader about 2 months ago

  • Status changed from New to In Progress

#8 Updated by Oliver Hader about 2 months ago

  • Status changed from In Progress to Closed

Also available in: Atom PDF