[MGNLDAM-1133] Replace SVGValidator in DAM module for BinaryValidator: Port to master Created: 09/Mar/23  Updated: 21/Mar/23  Resolved: 21/Mar/23

Status: Closed
Project: Magnolia DAM Module
Component/s: None
Affects Version/s: 3.0.21
Fix Version/s: 3.1.0

Type: Bug Priority: Neutral
Reporter: Alberto Soto Assignee: Alberto Soto
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Cloners
clones MGNLDAM-1131 Replace SVGValidator in DAM module fo... Closed
Template:
Acceptance criteria:
Empty
Task DoD:
[X]* Doc/release notes changes? Comment present?
[X]* Downstream builds green?
[X]* Solution information and context easily available?
[X]* Tests
[X]* FixVersion filled and not yet released
[X]  Architecture Decision Record (ADR)
Bug DoR:
[ ]* Steps to reproduce, expected, and actual results filled
[ ]* Affected version filled
Epic Link: XSS vulnerability over SVG uploads
Story Points: 3
Team: AuthorX
Work Started:

 Description   

Steps to reproduce

  1. Upload linked file to assets

Expected results

  1. Only 2 out of 5 files need to be uploaded

Actual results

It uses SVGValidator

Workaround

Development notes

Needs to include the last version from magnolia-core, included in branch 5.7 for BinaryValidator.


Generated at Mon Feb 12 05:06:35 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.