[Webkit-unassigned] [Bug 147445] New: Validation in isValidHTTPHeaderValue is too sensitive.

Thu Jul 30 07:58:40 PDT 2015

https://bugs.webkit.org/show_bug.cgi?id=147445

            Bug ID: 147445
           Summary: Validation in isValidHTTPHeaderValue is too sensitive.
    Classification: Unclassified
           Product: WebKit
           Version: 528+ (Nightly build)
          Hardware: Macintosh
                OS: All
            Status: NEW
          Severity: Major
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: chrism at taopix.com

The changes for Bug 128593 were made to make the validation of the HTTP header tighter as per suggestions RFC 7230.
Looking at the changes made, extra validation has been implement namely classing a single SPACE character as invalid.
RFC 7230 doesn't not specify that this is an invalid value.

I am reporting this since we utilites the ablility to set the "Content-Type" to a space character and these changes have broken our site.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150730/21073588/attachment-0001.html>