[Webkit-unassigned] [Bug 124128] [regression] foreign content not displayed in MathML
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jan 9 16:54:11 PST 2014
https://bugs.webkit.org/show_bug.cgi?id=124128
--- Comment #14 from David Carlisle <davidc at nag.co.uk> 2014-01-09 16:51:53 PST ---
(In reply to comment #13)
> The HTML5 (In reply to comment #9)
> > Mixing arbitrary markup with MathML was introducing a case where non-MathML nodes were being interpreted as MathML. This could pose a security risk.
> >
>
> The HTML5 spec is explicit that this should be allowed.
Someone queried off list whether I meant that a security bug should not be fixed. Sorry if I gave that impression: that is not what I meant.
I just meant to point out that the points at which mathml and html can be nested is specified in detail in the normative html(5) parsing spec and not just in the non normative schema as used in the validator.nu based validators (as is often the case the validator is in fact stricter than the implementation requirements and declares invalid constructs that are defined to parse without error, in particular it tries to guide authors to use mtext or annotation-xml as the integration points for nesting html, but the parser spec allows any of the token elements, such as mi).
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list