[SECURITY] Remove charts.swf to get rid of XSS vulnerability 92/30292/2
authorHelmut Hummel <helmut.hummel@typo3.org>
Thu, 22 May 2014 07:32:53 +0000 (09:32 +0200)
committerOliver Hader <oliver.hader@typo3.org>
Thu, 22 May 2014 07:32:57 +0000 (09:32 +0200)
commit32efb1b03573d51391126c90cd87c74b3dc457fb
tree35e0de8415c570dd2469bc45b4940a81ed73a17d
parent6a91a909b8c9e2da674f4b106f98ca805cbc91ad
[SECURITY] Remove charts.swf to get rid of XSS vulnerability

The file charts.swf is vulnerable to XSS, is delivered
by ExtJS but not used in TYPO3 CMS at all.

Since the vendor of ExtJS did not fix this vulnerability,
we decided to remove it from TYPO3 sources.

Change-Id: I4d4f871e9e89250b0b818b50e8342bd902485464
Fixes: #54526
Releases: 6.2, 6.1, 6.0, 4.7, 4.5
Security-Commit: 467ea328aaa23230bbe93b4deb18ec73fbd7b1e8
Security-Bulletin: TYPO3-CORE-SA-2014-001
Reviewed-on: https://review.typo3.org/30292
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
typo3/contrib/extjs/resources/charts.swf [deleted file]