tika-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Luis Filipe Nassif (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (TIKA-1896) Invalid closing script tag not handled gracefully by HtmlParser
Date Tue, 08 Nov 2016 00:58:58 GMT

    [ https://issues.apache.org/jira/browse/TIKA-1896?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15646027#comment-15646027
] 

Luis Filipe Nassif commented on TIKA-1896:
------------------------------------------

Yes, we had to set SecureContentHandler maximumDepth to a much higher value to protect against
false zip bombs.

> Invalid closing script tag not handled gracefully by HtmlParser
> ---------------------------------------------------------------
>
>                 Key: TIKA-1896
>                 URL: https://issues.apache.org/jira/browse/TIKA-1896
>             Project: Tika
>          Issue Type: Improvement
>          Components: parser
>    Affects Versions: 1.12
>            Reporter: Matthew Caruana Galizia
>            Priority: Minor
>         Attachments: test.html
>
>
> When an HTML file contains an invalid closing script tag, all content after that tag
is interpreted as script data and therefore ignored.
> Reduced test case file attached.
> To reproduce:
> 1) create a file with the following HTML
> {code:html}
> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
> <html>
> 	<head>
> 		<script lang="javascript"></script language>
> 	</head>
> 	<body>
> 		<p>This is a test.</p>
> 	</body>
> </html>
> {code}
> 2) {{java -jar tika-app-1.12.jar -t test.html}}
> Expected result:
> {{This is a test.}}
> What is actually returned:
> Nothing.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message