Updates:
Status: Fixed
Comment #3 on issue 83 by excors: DOS vulnerability when using HTML5
Sanitization
http://code.google.com/p/html5lib/issues/detail?id=83
Fixed in r1231. (I haven't checked all the other regexps to make sure
similar
problems couldn't come up in different situations, but I don't see anything
very
obvious.)
Also, in r1232 I made some changes so that the sanitizer wouldn't
immediately reject
style attribute values that end with spaces (as in your example), since
they seem
like a perfectly legitimate thing to do.
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"html5lib-discuss" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/html5lib-discuss?hl=en-GB
-~----------~----~----~----~------~----~------~--~---
