lynx-dev
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Lynx-dev] [pkg-lynx-maint] CVE-2016-9179 (invalid URL parsing with


From: David Woolley
Subject: Re: [Lynx-dev] [pkg-lynx-maint] CVE-2016-9179 (invalid URL parsing with '?')
Date: Wed, 16 Nov 2016 13:30:20 +0000
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Icedove/45.4.0

On 16/11/16 12:52, Ian Collier wrote:
On Wed, Nov 16, 2016 at 10:05:53AM +0000, David Woolley wrote:
user             =  1*( unreserved / escaped / user-unreserved )
user-unreserved  =  "&" / "=" / "+" / "$" / "," / ";" / "?" / "/"

That seems to be a quote from RFC 3261?  The relevant RFC here is 3986:

Oops. I'm too used to looking things up in that (3621) that I went to it on auto-pilot. Ignore my comment.



reply via email to

[Prev in Thread] Current Thread [Next in Thread]