阿里云漏洞库

TYPO3 PharStreamWrapper是瑞士TYPO3协会的一款用于流处理的拦截器。

TYPO3 PharStreamWrapper包2.1.1之前的2.x版本和3.1.1之前的3.x版本中存在代码问题漏洞。该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题。

用户可联系供应商获得补丁信息：
https://www.drupal.org/sa-core-2019-007

参考链接
http://www.securityfocus.com/bid/108302
https://github.com/TYPO3/phar-stream-wrapper/releases/tag/v2.1.1
https://github.com/TYPO3/phar-stream-wrapper/releases/tag/v3.1.1
https://lists.debian.org/debian-lts-announce/2019/05/msg00029.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://seclists.org/bugtraq/2019/May/36
https://typo3.org/security/advisory/typo3-psa-2019-007/
https://www.debian.org/security/2019/dsa-4445
https://www.drupal.org/sa-core-2019-007
https://www.synology.com/security/advisory/Synology_SA_19_22