[TYPO3-dev] Regarding Security issue mm_forum

Steffen Gebert steffen at steffen-gebert.de
Thu Aug 26 21:04:30 CEST 2010


Am 26.08.10 20:06, schrieb Tomas Norre Mikkelsen:
> I saw this message/mail regarding mm_forum
> http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-016/
>
> Anyone has a patch? diff etc?
>
> I have made som ajustments to my mm_forum so a upgrade is not possible right
> now, but I would of course like to close this issue.

Hi Tomas,

mm_forum is, like many other TYPO3 extensions, hosted on 
http://forge.typo3.org

As they are connected to a subversion server (svn.typo3.org) you can 
browse the different changesets.

Unfortunately the author applied the patch in a very bad way - instead 
of applying branch by branch, he applied it to whole repository, for all 
versions at once. So you can't just grab the diff-file and apply it, but 
have to extract the changes from here:
http://forge.typo3.org/projects/extension-mm_forum/repository/revisions/36688

So pick one branch (e.g. 1.9.x or trunk) and get all the diff files and 
apply.

Ah.. or better.. check out
https://svn.typo3.org/TYPO3v4/Extensions/mm_forum/trunk
and create a diff by calling
svn diff -r 36687:36688


Kind regards
Steffen

-- 
Steffen Gebert
TYPO3 Core Team Member




More information about the TYPO3-dev mailing list