2010-08-29 Adam Barth <abarth@webkit.org>
authorabarth@webkit.org <abarth@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Mon, 30 Aug 2010 06:31:08 +0000 (06:31 +0000)
committerabarth@webkit.org <abarth@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Mon, 30 Aug 2010 06:31:08 +0000 (06:31 +0000)
commit92f00ba317a2ea756d9edc1f449240bf37d5ff9f
tree413980208702e36130581b01222d710b530467c2
parentca921eccc4cb2f4b3c98e62942c9ca069ffd77df
2010-08-29  Adam Barth  <abarth@webkit.org>

        Reviewed by Darin Adler.

        Move UTF16 LEAD/TRAIL logic into the HTMLEntityParser
        https://bugs.webkit.org/show_bug.cgi?id=44790

        We now block this attack.

        * http/tests/security/xssAuditor/javascript-link-HTML-entities-null-char-expected.txt:

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@66359 268f45cc-cd09-0410-ab3c-d52691b4dbfc
LayoutTests/ChangeLog
LayoutTests/http/tests/security/xssAuditor/javascript-link-HTML-entities-null-char-expected.txt
WebCore/html/parser/HTMLEntityParser.cpp
WebCore/html/parser/HTMLEntityParser.h
WebCore/html/parser/HTMLEntitySearch.h
WebCore/html/parser/HTMLEntityTable.h
WebCore/html/parser/HTMLTokenizer.cpp
WebCore/page/XSSAuditor.cpp