Bug 123914 - XMLSerializer does not escape '<' in script and style element in xhtml document
Summary: XMLSerializer does not escape '<' in script and style element in xhtml document
Alias: None
Product: WebKit
Classification: Unclassified
Component: DOM (show other bugs)
Version: 528+ (Nightly build)
Hardware: All All
: P2 Normal
Assignee: Nobody
Depends on:
Reported: 2013-11-06 12:38 PST by Victor Costan
Modified: 2013-11-14 19:22 PST (History)
5 users (show)

See Also:

Patch (18.37 KB, patch)
2013-11-06 12:52 PST, Victor Costan
no flags Details | Formatted Diff | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Victor Costan 2013-11-06 12:38:49 PST
The following Chromium bug documents the issue and has step-by-step repro steps.

I prepared a patch for Blink that is in the process of getting committed. This bug is for tracking my progress on porting the patch to WebKit.

I filed the bug under "HTML DOM", but the fix will go under WebCore/editing.
Comment 1 Victor Costan 2013-11-06 12:52:58 PST
Created attachment 216209 [details]
Comment 2 Victor Costan 2013-11-13 17:02:09 PST
Chris, I think this would help HTML5 compliance, so I'm cc-ing you on it.

Chromium already implements this behavior, as well as Firefox and IE10.
Comment 3 WebKit Commit Bot 2013-11-14 18:25:51 PST
Comment on attachment 216209 [details]

Clearing flags on attachment: 216209

Committed r159326: <http://trac.webkit.org/changeset/159326>
Comment 4 WebKit Commit Bot 2013-11-14 18:25:53 PST
All reviewed patches have been landed.  Closing bug.
Comment 5 Victor Costan 2013-11-14 19:22:24 PST
Thank you very much, Darin!