Uploaded image for project: 'Batik'
  1. Batik
  2. BATIK-1276

Allow blocking of external resources

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 1.13
    • None
    • None

    Description

      java -cp batik/lib/*:batik/batik-1.13.0-SNAPSHOT/lib/batik-all-1.13.0-SNAPSHOT.jar org.apache.batik.apps.rasterizer.Main -scriptSecurityOff -blockExternalResources test.svg

       

      Should stop xlink:href value being read

       

      Fixes CVE-2019-17566

      Attachments

        1. test.svg
          0.3 kB
          Simon Steiner

        Activity

          People

            ssteiner Simon Steiner
            ssteiner Simon Steiner
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: