https://bz.apache.org/bugzilla/show_bug.cgi?id=63899
--- Comment #1 from PJ Fanning <fannin...@yahoo.com> --- That DTD is benign. If you use XSSFWorkbook, XMLBeans is used to load the sharedstrings.xml. XMLBeans can be configured to control some of the XML Parser behaviours (org.apache.poi.ooxml.POIXMLTypeLoader.DEFAULT_XML_OPTIONS). The XML parser secure processing flags are enabled by default so malicious DTDs should be rejected. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org For additional commands, e-mail: dev-h...@poi.apache.org
