[hibernate-issues] [JIRA] (HHH-13960) Add SAXReader sec features to match the defaults
Panagiotis Sotiropoulos (JIRA)
jira at hibernate.atlassian.net
Mon Apr 20 09:17:28 EDT 2020
Panagiotis Sotiropoulos ( https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Aa4ef16bb-9b7f-41b1-944f-78e2fbf3c82f ) *created* an issue
Hibernate ORM ( https://hibernate.atlassian.net/browse/HHH?atlOrigin=eyJpIjoiY2ZlN2M2OTFjYzI1NGI5ZmEzNWE2NjA0NWU0Yzc0YTUiLCJwIjoiaiJ9 ) / Improvement ( https://hibernate.atlassian.net/browse/HHH-13960?atlOrigin=eyJpIjoiY2ZlN2M2OTFjYzI1NGI5ZmEzNWE2NjA0NWU0Yzc0YTUiLCJwIjoiaiJ9 ) HHH-13960 ( https://hibernate.atlassian.net/browse/HHH-13960?atlOrigin=eyJpIjoiY2ZlN2M2OTFjYzI1NGI5ZmEzNWE2NjA0NWU0Yzc0YTUiLCJwIjoiaiJ9 ) Add SAXReader sec features to match the defaults ( https://hibernate.atlassian.net/browse/HHH-13960?atlOrigin=eyJpIjoiY2ZlN2M2OTFjYzI1NGI5ZmEzNWE2NjA0NWU0Yzc0YTUiLCJwIjoiaiJ9 )
Issue Type: Improvement Assignee: Panagiotis Sotiropoulos ( https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Aa4ef16bb-9b7f-41b1-944f-78e2fbf3c82f ) Created: 20/Apr/2020 06:17 AM Priority: Major Reporter: Panagiotis Sotiropoulos ( https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Aa4ef16bb-9b7f-41b1-944f-78e2fbf3c82f )
Add SAXReader sec features to match the defaults ...
In relevance to https://github.com/dom4j/dom4j/commit/a8228522a99a02146106672a34c104adbda5c658
the default SAXReader contains the following features :
reader.setFeature("http://apache.org/xml/features/nonvalidating/load-external-dtd", false);
reader.setFeature("http://xml.org/sax/features/external-general-entities", false);
reader.setFeature("http://xml.org/sax/features/external-parameter-entities", false);
( https://hibernate.atlassian.net/browse/HHH-13960#add-comment?atlOrigin=eyJpIjoiY2ZlN2M2OTFjYzI1NGI5ZmEzNWE2NjA0NWU0Yzc0YTUiLCJwIjoiaiJ9 ) Add Comment ( https://hibernate.atlassian.net/browse/HHH-13960#add-comment?atlOrigin=eyJpIjoiY2ZlN2M2OTFjYzI1NGI5ZmEzNWE2NjA0NWU0Yzc0YTUiLCJwIjoiaiJ9 )
Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core&referrer=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495&ct=EmailNotificationLink&mt=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100125- sha1:af682b6 )
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/hibernate-issues/attachments/20200420/d347eb74/attachment-0001.html
More information about the hibernate-issues
mailing list