[YANGTOOLS-708] Introduce XML utilities for dealing with untrusted documents - OpenDaylight JIRA

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Resolution: Done
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None
Environment:

Operating System: All
Platform: All

External issue ID:
7057

Description

We are dealing with untrusted XMLs across all projects, with a lot of places instantiation DocumentBuilderFactories and similar.

Create a central place, which will give out properly configured instances, so that we reduce the risk of DoS attacks on code which thinks that a DocumentBuilder, or any XML parser can be trusted in its default configuration.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Robert Varga

Reporter:: Robert Varga

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 28/Oct/16 10:10 AM

Updated:: 10/Apr/22 6:35 PM

Resolved:: 08/Nov/16 12:11 PM