[TYPO3-core] RFC #12341: Bug: Image Generation broken with PHP safe_mode = On / Graphicsmagick
Til Obes
til at obes.name
Sun Jan 3 12:08:43 CET 2010
Am 21.12.2009 19:33, schrieb Til Obes:
> this is an SVN patch request.
>
> Type: Bugfix
>
> Bugtracker references:
> http://bugs.typo3.org/view.php?id=12341
>
> Branches:
> >= 4.2.10
>
>
> Problem:
> When safe_mode = On this results in escapeshellcmd() being called twice
> on the arguments. As the shell only unescapes the command once this
> results in invalid parameters being passed, which causes at least
> GraphicsMagick to hang infinitly.
>
> Solution:
> Apply patch 0012341_v3.patch
> http://bugs.typo3.org/file_download.php?file_id=8872&type=bug
>
> Notes:
> I am not the submitter, but a person who needs this fix.
> This failure needs to a Denial of Service, due to gm going to 100%
> cpu load for each process.
REMINDER
This is a Denial-of-Service Bug, so please hurry up.
Regards Til
More information about the TYPO3-team-core
mailing list