[BATIK-1276] Allow blocking of external resources - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.13
Component/s: None
Labels:
None

Description

java -cp batik/lib/*:batik/batik-1.13.0-SNAPSHOT/lib/batik-all-1.13.0-SNAPSHOT.jar org.apache.batik.apps.rasterizer.Main -scriptSecurityOff -blockExternalResources test.svg

Should stop xlink:href value being read

Fixes CVE-2019-17566

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

test.svg
09/Dec/19 12:23
0.3 kB
Simon Steiner

Activity

People

Assignee:: Simon Steiner

Reporter:: Simon Steiner

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 09/Dec/19 12:22

Updated:: 15/Jun/20 08:37

Resolved:: 09/Dec/19 12:29