Project

General

Profile

Actions

Bug #97694

closed

Update vulnerable guzzlehttp/guzzle version

Added by Andreas Kienast over 2 years ago. Updated about 2 years ago.

Status:
Closed
Priority:
Should have
Category:
-
Target version:
Start date:
2022-05-26
Due date:
% Done:

100%

Estimated time:
TYPO3 Version:
12
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

guzzlehttp/guzzle has been updated to 7.4.3 and 6.5.6 respectively, both fixing a security vulnerability related to "Cross-domain cookie leakage". Since TYPO3 is not affected by this issue out-of-the-box, this is handled as a public bugfix.

Actions

Also available in: Atom PDF