SAX::Parser constructors check types (v1.13.x branch) #2530

flavorjones · 2022-05-07T14:38:00Z

What problem is this PR intended to solve?

HTML4::SAX::Parser, HTML4::SAX::ParserContext, XML::SAX::Parser, and XML::SAX::ParserContext now properly check the types of the arguments to their various constructor methods.

Previously, passing arguments of unexpected types might cause a segfault or other less-obvious exceptions.

This is a backport of #2529

Have you included adequate test coverage?

Yes! Added test coverage for these cases.

Does this change affect the behavior of either the C or the Java implementations?

Both the C and Java implementations have been updated to behave identically in this circumstance.

Previously, arguments of the wrong type might cause segfault on CRuby.

fix: {HTML4,XML}::SAX::{Parser,ParserContext} check arg types

83cc451

Previously, arguments of the wrong type might cause segfault on CRuby.

flavorjones added topic/security backport Backport of a PR to the current release branch labels May 7, 2022

flavorjones added this to the v1.13.x patch releases milestone May 7, 2022

flavorjones changed the base branch from main to v1.13.x May 7, 2022 14:38

flavorjones force-pushed the flavorjones-check-parse-memory-types_v1.13.x branch from 9ec9d3b to 83cc451 Compare May 7, 2022 14:38

flavorjones merged commit 61b1a39 into v1.13.x May 7, 2022

flavorjones deleted the flavorjones-check-parse-memory-types_v1.13.x branch May 7, 2022 16:05

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SAX::Parser constructors check types (v1.13.x branch) #2530

SAX::Parser constructors check types (v1.13.x branch) #2530

flavorjones commented May 7, 2022

SAX::Parser constructors check types (v1.13.x branch) #2530

SAX::Parser constructors check types (v1.13.x branch) #2530

Conversation

flavorjones commented May 7, 2022