[jira] [Updated] (BATIK-1316) use '%' in rgb will make a illegalStateException

Tue, 07 Sep 2021 01:40:06 -0700 


     [ 
https://issues.apache.org/jira/browse/BATIK-1316?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

liu jing updated BATIK-1316:
----------------------------
    Affects Version/s: 1.14

> use '%' in rgb will make a illegalStateException
> ------------------------------------------------
>
>                 Key: BATIK-1316
>                 URL: https://issues.apache.org/jira/browse/BATIK-1316
>             Project: Batik
>          Issue Type: Bug
>    Affects Versions: 1.14
>         Environment: jdk 1.8
>            Reporter: liu jing
>            Priority: Major
>
> {code:java}
> //java
> String content = "<div style=\"color:rgb(20%, 20%, 20%)\">test</div>";
> new AntiSamy().scan(content, policy, AntiSamy.DOM);{code}
> This will make a illegalStateException. Track:
> java.lang.IllegalStateException
> at 
> org.apache.batik.css.parser.CSSLexicalUnit.getIntegerValue(CSSLexicalUnit.java:119)
> at 
> org.owasp.validator.css.CssValidator.lexicalValueToString(CssValidator.java:389)
> at org.owasp.validator.css.CssValidator.isValidProperty(CssValidator.java:101)
> at org.owasp.validator.css.CssHandler.property(CssHandler.java:488)
> at org.apache.batik.css.parser.Parser.parseStyleDeclaration(Parser.java:885)
> at 
> org.apache.batik.css.parser.Parser.parseStyleDeclarationInternal(Parser.java:269)
> at org.apache.batik.css.parser.Parser.parseStyleDeclaration(Parser.java:1694)
> at org.owasp.validator.css.CssScanner.scanInlineStyle(CssScanner.java:216)
> at 
> org.owasp.validator.html.scan.AntiSamyDOMScanner.recursiveValidateTag(AntiSamyDOMScanner.java:568)
> at 
> org.owasp.validator.html.scan.AntiSamyDOMScanner.recursiveValidateTag(AntiSamyDOMScanner.java:738)
> at 
> org.owasp.validator.html.scan.AntiSamyDOMScanner.recursiveValidateTag(AntiSamyDOMScanner.java:738)
> at 
> org.owasp.validator.html.scan.AntiSamyDOMScanner.recursiveValidateTag(AntiSamyDOMScanner.java:738)
> at 
> org.owasp.validator.html.scan.AntiSamyDOMScanner.scan(AntiSamyDOMScanner.java:153)
> at org.owasp.validator.html.AntiSamy.scan(AntiSamy.java:113)



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to