From 5af205993d24b4bafc00dea94efc2c31305bca83 Mon Sep 17 00:00:00 2001
From: Serge Latyntcev <dnsl48@gmail.com>
Date: Tue, 24 Sep 2019 11:14:14 +1200
Subject: [PATCH] [CVE-2019-12617] Fix access escalation for CMS users with
 limited access through permission cache pollution

---
 src/Security/InheritedPermissions.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/Security/InheritedPermissions.php b/src/Security/InheritedPermissions.php
index d8ae2f7bd..adf752429 100644
--- a/src/Security/InheritedPermissions.php
+++ b/src/Security/InheritedPermissions.php
@@ -737,6 +737,7 @@ class InheritedPermissions implements PermissionChecker, MemberCacheFlusher
      */
     protected function generateCacheKey($type, $memberID)
     {
-        return "{$type}-{$memberID}";
+        $classKey = str_replace('\\', '-', $this->baseClass);
+        return "{$type}-{$classKey}-{$memberID}";
     }
 }