[TYPO3-announce] [Ticket#2010040810000057] Important Security-Bulletin Pre-Announcement

TYPO3 Security Team security at typo3.org
Thu Apr 8 14:35:35 CEST 2010

Dear users of TYPO3,

The TYPO3 security team has identified a critical security issue in  
the TYPO3 core.

Vulnerable are all versions of TYPO3 4.3.x. We will release TYPO3 4.3.3 and
publish mitigation advices together with a security bulletin on
http://typo3.org on Friday, April 9 at 11:00 am CEST (9:00 am GMT).

Since this is a very important security fix, please be prepared to update  
your TYPO3 installations on Friday.

Until the advisory is out, please understand that we cannot provide any
further information.

CVSS v2.0 data:
Base AV:N/AC:H/Au:N/C:C/I:C/A:C | Temporal E:F/RL:OF/RC:C


Marcus Krause
Member of the TYPO3 Security Team

TYPO3 Security Team homepage: http://typo3.org/teams/security/

E-Mail: security at typo3.org

Please note: When replying to this e-mail, please leave the header intact.

More information about the TYPO3-announce mailing list