[TYPO3-dev] Regarding Security issue mm_forum
Steffen Gebert
steffen at steffen-gebert.de
Thu Aug 26 21:04:30 CEST 2010
Am 26.08.10 20:06, schrieb Tomas Norre Mikkelsen:
> I saw this message/mail regarding mm_forum
> http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-016/
>
> Anyone has a patch? diff etc?
>
> I have made som ajustments to my mm_forum so a upgrade is not possible right
> now, but I would of course like to close this issue.
Hi Tomas,
mm_forum is, like many other TYPO3 extensions, hosted on
http://forge.typo3.org
As they are connected to a subversion server (svn.typo3.org) you can
browse the different changesets.
Unfortunately the author applied the patch in a very bad way - instead
of applying branch by branch, he applied it to whole repository, for all
versions at once. So you can't just grab the diff-file and apply it, but
have to extract the changes from here:
http://forge.typo3.org/projects/extension-mm_forum/repository/revisions/36688
So pick one branch (e.g. 1.9.x or trunk) and get all the diff files and
apply.
Ah.. or better.. check out
https://svn.typo3.org/TYPO3v4/Extensions/mm_forum/trunk
and create a diff by calling
svn diff -r 36687:36688
Kind regards
Steffen
--
Steffen Gebert
TYPO3 Core Team Member
More information about the TYPO3-dev
mailing list