Skip Menu |

This queue is for tickets about the HTML-Defang CPAN distribution.

Report information
The Basics
Id: 68435
Status: rejected
Priority: 0/
Queue: HTML-Defang
People
Owner: KURIANJA [...] cpan.org
Requestors: apeiron [...] cpan.org
Cc:
AdminCc:
Bug Information
Severity: Critical
Broken in:
  • 1.01
  • 1.02
  • 1.03
  • 1.04
Fixed in: (no value)

History Show all quoted text
  Tue May 24 05:51:40 2011 apeiron [...] cpan.org - Ticket created
Subject: Code uses regex to parse HTML
This code is targeted at a security context and uses regex to parse HTML? Serious implementation flaw.
  Thu Jun 16 01:26:28 2011 KURIANJA [...] cpan.org - Taken
  Thu Jun 16 01:31:07 2011 KURIANJA [...] cpan.org - Correspondence added
Yes, but the module has been tested against a wide variety of reported attack vectors. If you have a particular case where the module breaks, let me know. I am closing this ticket. If you do have a specific bug to report, please open a new ticket. Cheers Kurian
  Thu Jun 16 01:31:09 2011 The RT System itself - Status changed from 'new' to 'open'
  Thu Jun 16 01:31:09 2011 KURIANJA [...] cpan.org - Status changed from 'open' to 'rejected'