Univention Bugzilla – Full Text Bug Listing |
Summary: | HTML not escaped | ||
---|---|---|---|
Product: | UCS | Reporter: | Philipp Hahn <hahn> |
Component: | UMC - Univention Configuration Registry | Assignee: | Philipp Hahn <hahn> |
Status: | CLOSED FIXED | QA Contact: | Florian Best <best> |
Severity: | normal | ||
Priority: | P5 | CC: | best, walkenhorst |
Version: | UCS 4.0 | ||
Target Milestone: | UCS 4.0-1-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Bug Depends on: | |||
Bug Blocks: | 37442 | ||
Attachments: |
UMC Screenshot
Patch v2 |
Description
Philipp Hahn
2015-03-13 11:46:53 CET
Created attachment 6758 [details]
Patch v2
Tool-tip also need escaping.
The following UCRV descriptions use [<&>] and thus are currently shown broken: $ git grep -c '[<&>]' -- \*.univention-config-registry-variables base/univention-base-files/debian/univention-base-files.univention-config-registry-variables:2 base/univention-firewall/debian/univention-firewall.univention-config-registry-variables:4 base/univention-grub/debian/univention-grub.univention-config-registry-variables:10 base/univention-heimdal/debian/univention-heimdal-common.univention-config-registry-variables:2 base/univention-ssl/debian/univention-ssl.univention-config-registry-variables:2 base/univention-system-setup/debian/univention-system-setup.univention-config-registry-variables:2 mail/univention-antivir-mail/debian/univention-antivir-mail.univention-config-registry-variables:2 mail/univention-mail-postfix/debian/univention-mail-postfix.univention-config-registry-variables:14 management/univention-directory-reports/debian/univention-directory-reports.univention-config-registry-variables:4 management/univention-ldap/debian/univention-ldap-server.univention-config-registry-variables:16 nagios/univention-nagios/debian/univention-nagios-server.univention-config-registry-variables:2 services/univention-ad-connector/debian/univention-ad-connector.univention-config-registry-variables:2 services/univention-apache/debian/univention-apache.univention-config-registry-variables:22 services/univention-bind/debian/univention-bind.univention-config-registry-variables:4 services/univention-dhcp/debian/univention-dhcp.univention-config-registry-variables:2 services/univention-net-installer/debian/univention-net-installer.univention-config-registry-variables:2 services/univention-nfs/debian/univention-nfs-server.univention-config-registry-variables:4 services/univention-squid/debian/univention-squid.univention-config-registry-variables:8 virtualization/univention-virtual-machine-manager-node/debian/univention-virtual-machine-manager-node-common.univention-config-registry-variables:2 r58948 | Bug #38036 UMC_UCR: Encode HTML entities in description and tool-tip Patch applied Package: univention-management-console-module-ucr Version: 4.1.1-4.59.201503160950 Branch: ucs_4.0-0 Scope: errata4.0-1 r59040 | Bug #38036 UMC_UCR: Encode HTML entities in description and tool-tip YAML 2015-03-16-univention-management-console-module-ucr.yaml OK: the links / details in '<' are shown again OK: Code review OK: YAML OK: tooltips are also shown correctly |