Red Hat Bugzilla – Bug 855112
Encode XML-unsafe characters from user input as XML entities
Last modified: 2014-10-14 00:12:06 EDT
In connection to case discussed in the public cluster ML , we need
to make sure the user input that makes its way into XML (either as
cluster.conf or XML-formatted requests towards ricci) is XML-ready.
That is, the "unsafe" characters are encoded as XML entities.
Otherwise, such requests have no effect and unfortunately, neither
ricci provides a sensible diagnostics about this. Example of such
input is the password for the initial authentization against ricci.
*** Bug 855121 has been marked as a duplicate of this bug. ***
*** Bug 858386 has been marked as a duplicate of this bug. ***
*** Bug 855117 has been marked as a duplicate of this bug. ***
*** Bug 855120 has been marked as a duplicate of this bug. ***
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.