[SECURITY] Fix open redirection in openid extension 79/26179/2
authorAnja Leichsenring <aleichsenring@ab-softlab.de>
Tue, 10 Dec 2013 09:50:59 +0000 (10:50 +0100)
committerOliver Hader <oliver.hader@typo3.org>
Tue, 10 Dec 2013 09:51:04 +0000 (10:51 +0100)
commit63ff9109c15560b9c357e513d98fd3525a0dc150
tree41f10d370e8a937952929304e183922a6ede8805
parentc4d13361936dbdf2bfba1690d1d199eb7c0a5c67
[SECURITY] Fix open redirection in openid extension

The eID script of the openid extension does not
validate the given redirect url, leading to
an open redirection vulnerability.
Add and verify hmac of the redirect url.

Change-Id: I0c446199504018cab6e4ad2f6bd9085458ca86f0
Fixes: #54099
Releases: 6.2, 6.1, 6.0, 4.7, 4.5
Security-Commit: 6be16f2ea6b135b6f7ab2dec17d126f3f1eb89c4
Security-Bulletin: TYPO3-CORE-SA-2013-004
Reviewed-on: https://review.typo3.org/26179
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
typo3/sysext/openid/class.tx_openid_eid.php
typo3/sysext/openid/sv1/class.tx_openid_sv1.php