encoding/xml: invalid characters in comments, processing instructions, or directives [1.23 backport]

golang / go

The Go programming language

https://go.dev

BSD 3-Clause "New" or "Revised" License

122.85k stars 17.52k forks source link

encoding/xml: invalid characters in comments, processing instructions, or directives [1.23 backport] #68656

Closed gopherbot closed 1 week ago

gopherbot commented 1 month ago

@maceonthompson requested issue #68654 to be considered for backport to the next 1.21 minor release.

@gopherbot please open backport issues, this is a minor security issue.

dmitshur commented 1 month ago

Re-targeted this cherrypick issue to track the backport to Go 1.23. (Go 1.21 is now outside of its support window and won't have further minor releases.)

dmitshur commented 1 week ago

This backport issue has been in WaitingForInfo state because it's not actionable until the upstream issue has a resolution. Closing for now, it's easy enough to re-open or create new backport issues as needed.