https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
Jonathan Druart changed:
What|Removed |Added
Resolution|--- |WONTFIX
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
--- Comment #12 from David Cook ---
(In reply to didier from comment #11)
> Hi,
> WON'T FIX make sense.
>
> Are you going to remove ENTITY in xls or should I make a report?
>
I've already reported it as Bug 25381. I'm rather busy
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
--- Comment #11 from didier ---
(In reply to David Cook from comment #9)
> (In reply to Jonathan Druart from comment #8)
> > Yes but it's not recommended, then you are vulnerable to what is described
> > in bug 23290. The easiest
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
--- Comment #10 from David Cook ---
I'd argue that we should mark this as "WON'T FIX".
--
You are receiving this mail because:
You are watching all bug changes.
You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
--- Comment #9 from David Cook ---
(In reply to Jonathan Druart from comment #8)
> Yes but it's not recommended, then you are vulnerable to what is described
> in bug 23290. The easiest seems to replace nsbp in your xsl files.
I
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
--- Comment #8 from Jonathan Druart
---
Yes but it's not recommended, then you are vulnerable to what is described in
bug 23290. The easiest seems to replace nsbp in your xsl files.
--
You are receiving this mail because:
You are
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
--- Comment #7 from didier ---
(In reply to David Cook from comment #6)
> Actually, Didier, what OS are you using and which XML parser?
>
> If I recall correctly, the default XML parser in Debian should never have
> expanded
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25373
David Cook changed:
What|Removed |Added
Summary|Bug 23290 Security fix | entity usage no
