diff options
| author | Jeremy Evans <[email protected]> | 2019-07-05 14:45:19 -0700 |
|---|---|---|
| committer | Jeremy Evans <[email protected]> | 2019-10-08 07:30:55 -0700 |
| commit | 7909f06212ae8df6ba7203f8152292a190b2b33a () | |
| tree | 339f267dae1220e0c60b74bfb560371a88869833 /lib/uri/generic.rb | |
| parent | 8feb8c9bb7e9036ee2014b0f532677635a16893e (diff) | |
Check for invalid hex escapes in URI#query=
Fixes [Bug #11275]
Notes: Merged: https://.com/ruby/ruby/pull/2535
| -rw-r--r-- | lib/uri/generic.rb | 1 |
1 files changed, 1 insertions, 0 deletions
@@ -836,6 +836,7 @@ module URI v.encode!(Encoding::UTF_8) rescue nil v.delete!("\t\r\n") v.force_encoding(Encoding::ASCII_8BIT) v.gsub!(/(?!%\h\h|[!$-&(-;=?-_a-~])./n.freeze){'%%%02X' % $&.ord} v.force_encoding(Encoding::US_ASCII) @query = v |