Improper handling of stream ending with malformed attribute

Brought to you by: andyc2, mguillem

#154 Improper handling of stream ending with malformed attribute

Milestone: 1.9.15

Status: closed-fixed

Owner: Marc Guillemot

Labels: None

Priority: 5

Updated: 2014-02-13

Created: 2014-01-09

Creator: Steve McKay

Private: No

Tested version is 1.9.19, not 1.9.15.

A stream ending with an incomplete attribute can result in ArrayIndexOutOfBoundsException. This occurs when the last character in the stream is \r. The problem seems to be in HTMLScanner lines 2989 through 2997, where the return value of fCurrentEntity.read() isn't checked for -1.

<a href="\r (hex: 3C 61 20 68 72 65 66 3D 22 0D) will reproduce the issue.

Discussion

Marc Guillemot - 2014-02-13

status: open --> closed-fixed

assigned_to: Marc Guillemot
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Guillemot - 2014-02-13

Now fixed in SVN. Thanks for the tiny example.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Improper handling of stream ending with malformed attribute

Group

Searches

Help

#154 Improper handling of stream ending with malformed attribute

Discussion