Project

General

Profile

Actions
Copy link

Bug #11275

closed

RFC3986_Parser accepts invalid URIs containing %

Bug #11275: RFC3986_Parser accepts invalid URIs containing %

Added by jimpo (Jim Posen) over 10 years ago. Updated about 6 years ago.

Status:
Closed
Assignee:
akira (akira yamada)
Target version:
-
ruby -v:
ruby 2.2.2p95 (2015-04-13 revision 50295) [x86_64-darwin13]
Backport:
2.0.0: UNKNOWN, 2.1: UNKNOWN, 2.2: UNKNOWN
[ruby-core:69637]

Description

URI.parse('https://www.example.com/search?q=%XX') does not raise an error despite being an invalid URI. A % in a URI must be followed by exactly two hex digits, but the RFC3986 parser does not check that in the URI query. Ruby 2.1 correctly raises an error.

Files

uri-parse-query-pct-encoded.patch (1.41 KB) uri-parse-query-pct-encoded.patch jeremyevans0 (Jeremy Evans), 07/05/2019 10:00 PM

Related issues 1 (0 open1 closed)

Related to Ruby - Bug #10402: URI regression in 2.2.0-preview1 (bad URI(is not URI?): URI::InvalidURIError)Closednaruse (Yui NARUSE)Actions
Actions
Copy link

Also available in: PDF Atom