https://bugzilla.wikimedia.org/show_bug.cgi?id=27849
--- Comment #9 from Bryan Tong Minh <[email protected]> 2011-05-05 17:00:52 UTC --- (In reply to comment #6) > I could armor the from value to protect it from Unicode normalization (I've > written code for that before; I threw it out but I should be able to reproduce > it quickly), but that would allow the injection or arbitrary non-normalized > data into the result, which may be invalid UTF-8, which would break e.g. XML > parsers. > Invalid UTF-8 is essentially random binary data and should thus be encoded, for example in base64. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
