You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by lu...@apache.org on 2003/11/12 00:19:30 UTC
cvs commit: jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler PageDataImpl.java
luehe 2003/11/11 15:19:29
Modified: jasper2/src/share/org/apache/jasper/compiler
PageDataImpl.java
Log:
Fixed Bugtraq 4952390 ('<' operator used in simple Math throws an error: When used with taglib)
Revision Changes Path
1.36 +4 -4 jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler/PageDataImpl.java
Index: PageDataImpl.java
===================================================================
RCS file: /home/cvs/jakarta-tomcat-jasper/jasper2/src/share/org/apache/jasper/compiler/PageDataImpl.java,v
retrieving revision 1.35
retrieving revision 1.36
diff -u -r1.35 -r1.36
--- PageDataImpl.java 26 Aug 2003 00:08:32 -0000 1.35
+++ PageDataImpl.java 11 Nov 2003 23:19:29 -0000 1.36
@@ -356,7 +356,7 @@
buf.append(jspId++).append("\">");
}
buf.append("${");
- buf.append(n.getText());
+ buf.append(JspUtil.escapeXml(n.getText()));
buf.append("}");
if (!n.getRoot().isXmlSyntax()) {
buf.append(JSP_TEXT_ACTION_END);
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org