diff options
author | Slávek Banko <slavek.banko@axis.cz> | 2018-07-26 18:33:03 +0200 |
---|---|---|
committer | Slávek Banko <slavek.banko@axis.cz> | 2018-07-26 18:33:03 +0200 |
commit | 878533ff2cc26df398e586ba989b64919a49103c (patch) | |
tree | 5e8eb7ac1c49dbdda9f7e612c00f960eee10a2e1 /src/xml | |
parent | a889f4346955fc3dcd3e3d57b84843226e361aae (diff) | |
download | tqt3-878533ff2cc26df398e586ba989b64919a49103c.tar.gz tqt3-878533ff2cc26df398e586ba989b64919a49103c.zip |
Fix security issue CVE-2016-10040
[taken from RedHat Qt3 patches]
Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
Diffstat (limited to 'src/xml')
-rw-r--r-- | src/xml/ntqxml.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/xml/ntqxml.h b/src/xml/ntqxml.h index f729b6abc..6f5f6046d 100644 --- a/src/xml/ntqxml.h +++ b/src/xml/ntqxml.h @@ -311,7 +311,7 @@ private: // for the DTD currently being parsed. static const uint dtdRecursionLimit = 2U; // The maximum amount of characters an entity value may contain, after expansion. - static const uint entityCharacterLimit = 65536U; + static const uint entityCharacterLimit = 4096U; const TQString &string(); void stringClear(); |