[BUFIX] External URL regression by jumpurl security fix 55/18755/3
authorHelmut Hummel <helmut.hummel@typo3.org>
Wed, 6 Mar 2013 15:12:00 +0000 (16:12 +0100)
committerHelmut Hummel <helmut.hummel@typo3.org>
Wed, 6 Mar 2013 21:19:15 +0000 (22:19 +0100)
With the jumpurl security fix, pages of type
'Link to external URL' throw a jumpurl
hash exception if called in the frontend. This typically
happens if a HMENU renders such page links.

The patch adapts the TSFE logic to write the required
hash dynamically to _GET to make the jumpurl check happy
that is called later on within the same process if
calling such a 'external url' link.

Change-Id: Ie73cd9710929c72aad4e75543f90c8618797997b
Fixes: #46071
Related: #28587
Releases: 6.1, 6.0, 4.7, 4.6, 4.5
Reviewed-on: https://review.typo3.org/18755
Reviewed-by: Wouter Wolters
Tested-by: Wouter Wolters
Reviewed-by: Stefan Neufeind
Tested-by: Stefan Neufeind
Reviewed-by: Gregor Hermens
Tested-by: Gregor Hermens
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
typo3/sysext/cms/tslib/class.tslib_fe.php

index d986303..ade318f 100644 (file)
        function setExternalJumpUrl()   {
                if ($extUrl = $this->sys_page->getExtURL($this->page, $this->config['config']['disablePageExternalUrl']))       {
                        $this->jumpurl = $extUrl;
+                       t3lib_div::_GETset(t3lib_div::hmac($this->jumpurl, 'jumpurl'), 'juHash');
                }
        }