TYPO3 8.7.33 ELTS

Release Notes

Version 8.7.33 ELTS

Stay secure and up-to-date with TYPO3 ELTS!

The TYPO3 CMS community supported from 2017-04-04 until 2020-03-31.
Extend your support now until 2023-03-31 to get access to the latest security and compatibility updates for this version.

Learn more about TYPO3 ELTS Browse the TYPO3 ELTS Portal

Release Notes for TYPO3 CMS 8.7.33

This document contains information about TYPO3 CMS 8.7.33 which was released on 12.05.2020.

Get TYPO3 8.7.33 now

News

This release is a combined bug fix and security release.

Checksums of TYPO3 8.7.33

SHA256

cbe572f6282546f3110c09beb17a4990d590d7ff5c33d3a0f93b28472656c8ed typo3_src-8.7.33.tar.gz
d0ac9a64dc41302af96d6717db323ac33c56fcf641965ac7f90e979e8d3898c3 typo3_src-8.7.33.zip

SHA1

2dd44ab6c98c3f07a0bbe4af6ccc5d7ced7e5856 typo3_src-8.7.33.tar.gz
aa7cd62d057a5e66751dc5745e08f48394afa9f8 typo3_src-8.7.33.zip

MD5

d32266934142410dc75106cd7b014bc5 typo3_src-8.7.33.tar.gz
825e151f7ed81aeb6a9c6c9ffbc58d15 typo3_src-8.7.33.zip

Package Signatures

TYPO3 Release Packages (the downloadable tarballs and zip files) as well as Git tags are signed using PGP signatures during the automated release process. Besides that, MD5 and SHA2-256 hashes are being generated for these files. Find more details on verifying signatures and hashes in the infrastructure guide.

Download GPG signed release README.md file

Example of verifying integrity of tar.gz package of current release:

wget --content-disposition https://get.typo3.org/8.7.33/tar.gz
wget --content-disposition https://get.typo3.org/8.7.33/tar.gz.sig
gpg --verify typo3_src-8.7.33.tar.gz.sig typo3_src-8.7.33.tar.gz

Upgrading

The usual upgrading procedure applies. No database updates are necessary. It might be required to clear all caches; the "important actions" section in the TYPO3 Install Tool offers the accordant possibility to do so.

Changes

  • 2020-05-12 bdaa68de32 [RELEASE] Release of TYPO3 8.7.33 (thanks to Andreas Fernandez)
  • 2020-05-12 7f622f9780 [SECURITY] Mitigate bypassing CSRF token via XSS (thanks to Andreas Fernandez)
  • 2020-05-12 1d2e52fd6d [SECURITY] Avoid insecure deserialization of $BE_USER->uc properties (thanks to Andreas Fernandez)
  • 2020-05-12 0f2d75e67b [SECURITY] Prevent destructors with side-effects from being unserialized (thanks to Andreas Fernandez)
  • 2020-05-12 4ea5502842 [TASK] Incorporate changes of jQuery version 3.5.0 (thanks to Andreas Fernandez)
  • 2020-05-12 5e364e321e [SECURITY] Escape shortened placeholder text in HTML output (thanks to Andreas Fernandez)
  • 2020-05-12 1b1b0f2a32 [BUGFIX] Reintroduce Extbase referring argument handling (thanks to Andreas Fernandez)
  • 2020-05-12 6daa7b1fca [BUGFIX] Fully check dependencies of dependencies (thanks to Andreas Fernandez)
  • 2020-05-12 c8be5938c7 [BUGFIX] Update ckeditor to 4.14.0 (thanks to Andreas Fernandez)
  • 2020-05-12 fbf4919280 [TASK] Update copyright year (thanks to Andreas Fernandez)
  • 2020-05-08 15096cb0ff [TASK] Backport local test suite (thanks to Andreas Fernandez)
  • 2020-05-08 e7e4d9d218 [TASK] Refine Bamboo build plans for ELTS needs (thanks to Andreas Fernandez)
  • 2020-04-16 9e1c91aed8 [BUGFIX] Do not generate links to not reachable pages (thanks to Markus Klein)
  • 2020-04-02 0d719fe187 [BUGFIX] Do not cache on cObject level if global no_cache is active (thanks to Markus Klein)
  • 2020-03-31 ce559350c9 [TASK] Set TYPO3 version to 8.7.33-dev (thanks to Benni Mack)