HomePhabricator

SECURITY: Don't allow entities in XMP with HHVM

Authored by csteipp.

Description

SECURITY: Don't allow entities in XMP with HHVM

Test for, and refuse to parse, XMP chunks with a doctype declaration
when parsing XMP under HHVM.

Bug: T85848
Change-Id: Iea4feb077ee85a35509a920153daaa9321ee69f3

Details