[BUGFIX] Mitigate incorrect libxml usage of "enshrined/svg-sanitize"
External "enshrined/svg-sanitize" package uses `libxml_use_internal_errors()`, but fails to clear errors using libxml_clear_errors(). This can lead to side effects with subsequest libxml usages. An upstream patch to fix this is pending, but it needs to be merged and released. In the meantime, we mitigate the issue in our wrapper class. See: https://github.com/darylldoyle/svg-sanitizer/pull/90 Resolves: #100607 Releases: main, 11.5 Change-Id: I911119b498a4dda8312c5ca940b5fdf6410a1a87 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/78648 Tested-by:core-ci <typo3@b13.com> Tested-by:
Christian Kuhn <lolli@schwarzbu.ch> Reviewed-by:
Showing
- typo3/sysext/core/Classes/Resource/Security/SvgSanitizer.php 6 additions, 1 deletiontypo3/sysext/core/Classes/Resource/Security/SvgSanitizer.php
- typo3/sysext/core/Tests/Functional/Resource/Security/SvgSanitizerTest.php 7 additions, 7 deletions...e/Tests/Functional/Resource/Security/SvgSanitizerTest.php
Please register or sign in to comment