Änderungen im Rahmen des TYPO3 7.6 ELTS

ChangeLog TYPO3 Version 7.6.33 bis 7.6.41

Im ChangeLog sind die Änderungen an den einzelnen Versionen dokumentiert:

2020-01-27 127dc7a3a8 [RELEASE] Release of TYPO3 7.6.41 (thanks to Andreas Fernandez)
2020-01-27 263ab615e6 [BUGFIX] Ensure ZipService->extract sets proper permissions (thanks to Andreas Fernandez)
2019-12-17 38f55c5c95 [TASK] Set TYPO3 version to 7.6.41-dev (thanks to Andreas Fernandez)

2019-12-17 e7abe0c4e8 [RELEASE] Release of TYPO3 7.6.40 (thanks to Andreas Fernandez)
2019-12-17 210248b4be [SECURITY] Avoid XSS by correctly encoding typolink results (thanks to Oliver Hader)
2019-12-17 1b1cbc3b10 [SECURITY] Prevent SQLi in ext:lowlevel QueryGenerator (thanks to Frank Naegler)
2019-12-17 ab2639f75b [TASK] Streamline frontend user password recovery process (thanks to Oliver Hader)
2019-12-17 7368f69825 [SECURITY] Avoid directory traversal on archive extraction (thanks to Andreas Fernandez)
2019-12-17 749ac0c1a5 [SECURITY] XSS in file list through file extension (thanks to Andreas Fernandez)
2019-12-17 b66cdbf28c [SECURITY] Avoid insecure deserialization in QueryGenerator & QueryView (thanks to Frank Naegler)
2019-12-16 ab2de5cc12 [SECURITY] Avoid possible insecure deserialization in Extbase (thanks to Oliver Hader)
2019-12-09 eb76b620bf [BUGFIX] Prevent encoding of search form (thanks to Andreas Fernandez)

2019-08-20 b315872cde [RELEASE] Release of TYPO3 7.6.39 (thanks to Andreas Fernandez)
2019-07-30 ecd134ad65 [BUGFIX] Set empty iframe src for Webkit and Chrome (thanks to Andreas Fernandez)

2019-06-25 a6bc9651d8 [RELEASE] Release of TYPO3 7.6.38 (thanks to Andreas Fernandez)
2019-06-25 edadf9dd8b [SECURITY] Disallow insecure deserialization for l18n_diffsource (thanks to Andreas Fernandez)
2019-06-25 26ca450341 [SECURITY] Deny pages' TSconfig and tsconfig_includes for non-admins (thanks to Andreas Fernandez)
2019-06-25 1acbfed069 [SECURITY] Check record permissions in record information popup (thanks to Andreas Fernandez)
2019-06-19 adb3a021ce Update typo3/phar-stream-wrapper to version 2.1.2 (thanks to Anja Leichsenring)
2019-05-23 8db8dd1062 [BUGFIX] HTMLArea/Edge: Restore selection when using ElementBrowser (thanks to Andreas Fernandez)

2019-05-08 70a4e36dbe [RELEASE] Release of TYPO3 7.6.37 (thanks to Anja Leichsenring) 
2019-05-08 cd4de994ad [SECURITY] Enclose file type scope when invoking ImageMagick (thanks to Andreas Fernandez) 
2019-05-07 69c388b9c1 [BUGFIX] Use `CommandUtility::escapeShellArgument()` over non-existent `wrapFileName()` (thanks to Andreas Fernandez) 
2019-05-07 60b7d39aad [BUGFIX] Add missing DatabaseConnectionMock::isConnected() (thanks to Andreas Fernandez)
2019-05-07 818709a0fc [BUGFIX] Check existence of `jQuery` prior to `TYPO3.jQuery` (thanks to Andreas Fernandez)

2019-05-07 3606857f76 [RELEASE] Release of TYPO3 7.6.36 (thanks to Anja Leichsenring) 
2019-05-07 5fe03109a3 [SECURITY] Destroy sessions on password change (thanks to Frank Naegler) 
2019-05-07 1ffbba3183 [SECURITY] Enclose file type scope when invoking ImageMagick (thanks to Susanne Moog) 
2019-05-07 ff112fc53d [BUGFIX] Avoid showing password on MacBook touch bar in backend forms (thanks to Andreas Fernandez) 
2019-05-03 0d842db7fa [TASK] Incorporate changes of jQuery version to 3.4.0 (thanks to Andreas Fernandez) 
2019-05-02 1b43b33feb [TASK] Raise twitter bootstrap to 3.4.1 (thanks to Andreas Fernandez) 
2019-03-20 d23dc3a912 [TASK] Add ChangeLog for 7.6.35 (thanks to Anja Leichsenring) 
2019-03-19 92a8aa2125 [TASK] Set TYPO3 version to 7.6.36-dev (thanks to Anja Leichsenring)

2019-03-19 a8b7a41474 [RELEASE] Release of TYPO3 7.6.35 (thanks to Anja Leichsenring) 
2019-03-18 9318448c30 [!!!][SECURITY][BUGFIX] Use parseFunc to render content objects in EXT:form (thanks to Andreas Fernandez) 
2019-03-18 b3a826d6f1 [BUGFIX] Do not use about:blank as src in other Webkit browsers than Chrome (thanks to Andreas Fernandez) 
2019-03-15 5ea2fd19f0 [SECURITY] XSS in case RTE is disabled (thanks to Oliver Hader) 
2019-03-14 48af6d7abb [BUGFIX] Use non-JavaScript based iframe src (thanks to Andreas Fernandez) 
2019-02-28 71c35d1108 [TASK] tgt-1700 composer wants lowercase mikey179/vfsStream (thanks to Christian Kuhn) 
2019-01-25 13922a63e2 [TASK] bamboo: db dependency loop needs break condition (thanks to Anja Leichsenring) 
2019-01-23 8356dfad36 [TASK] Set TYPO3 version to 7.6.35-dev (thanks to Anja Leichsenring)

2019-01-23 092b30dcc5 [RELEASE] Release of TYPO3 7.6.34 (thanks to Anja Leichsenring) 
2019-01-23 e3d2482c76 [TASK] Add ChangeLog for 7.6.34 (thanks to Anja Leichsenring) 
2019-01-23 cd37b3d16e [BUGFIX] Remove compression of requirejs-loader.js (thanks to Frank Nägler) 
2019-01-22 3da5d20c1b [TASK] Add ChangeLog for 7.6.33 (thanks to Anja Leichsenring) 
2019-01-22 ae64d03730 [TASK] Set TYPO3 version to 7.6.34-dev (thanks to Anja Leichsenring)
2019-01-22 0e6edc960a [RELEASE] Release of TYPO3 7.6.33 (thanks to Anja Leichsenring) 

2019-01-22 0e6edc960a [RELEASE] Release of TYPO3 7.6.33 (thanks to Anja Leichsenring) 
2019-01-22 cbab187874 [SECURITY] Avoid disclosing loaded extensions (thanks to Oliver Hader) 
2019-01-22 73d16a1227 [SECURITY] Extend file deny pattern (thanks to Oliver Hader) 
2019-01-22 169d721fc7 [SECURITY] Raise bootstrap 3.4.0 to fix XSS in JS components (thanks to Anja Leichsenring) 
2019-01-22 1450cc1719 [SECURITY] XSS issues in Fluid view helpers (thanks to Anja Leichsenring) 
2019-01-22 3dc79ae69c [SECURITY] Backend user privilege escalation for language limitations (thanks to Oliver Hader) 
2019-01-22 16609ee4f4 [SECURITY] Avoid creation of backend users without password (thanks to Oliver Hader) 
2019-01-22 da9e834936 [BUGFIX] Harden CommandUtility invocations (thanks to Oliver Hader) 
2019-01-22 814f8c147c [TASK] Adjust copyright year (thanks to Anja Leichsenring) 
2018-12-11 766133d5f9 [TASK] Set TYPO3 version to 7.6.33-dev (thanks to Oliver Hader)