From c33d392958d65d349720651f03ed6d189f5992b8 Mon Sep 17 00:00:00 2001 From: litetex <40789489+litetex@users.noreply.github.com> Date: Mon, 16 May 2022 21:09:50 +0200 Subject: [PATCH] =?UTF-8?q?Fixed=20typo=20XEE=20=E2=86=92=20XXE=20(Xml=20e?= =?UTF-8?q?Xternal=20Entity=20attack)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit See also: https://en.wikipedia.org/wiki/XML_external_entity_attack https://owasp.org/www-community/vulnerabilities/XML_External_Entity_(XXE)_Processing --- .../YoutubeDashManifestCreatorsUtils.java | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/extractor/src/main/java/org/schabi/newpipe/extractor/services/youtube/dashmanifestcreators/YoutubeDashManifestCreatorsUtils.java b/extractor/src/main/java/org/schabi/newpipe/extractor/services/youtube/dashmanifestcreators/YoutubeDashManifestCreatorsUtils.java index 48b0bf41a..7f3c52323 100644 --- a/extractor/src/main/java/org/schabi/newpipe/extractor/services/youtube/dashmanifestcreators/YoutubeDashManifestCreatorsUtils.java +++ b/extractor/src/main/java/org/schabi/newpipe/extractor/services/youtube/dashmanifestcreators/YoutubeDashManifestCreatorsUtils.java @@ -696,11 +696,11 @@ public final class YoutubeDashManifestCreatorsUtils { } /** - * Generate a new {@link DocumentBuilder} secured from XEE attacks, on platforms which + * Generate a new {@link DocumentBuilder} secured from XXE attacks, on platforms which * support setting {@link XMLConstants#ACCESS_EXTERNAL_DTD} and * {@link XMLConstants#ACCESS_EXTERNAL_SCHEMA} in {@link DocumentBuilderFactory} instances. * - * @return an instance of {@link Document} secured against XEE attacks on supported platforms, + * @return an instance of {@link Document} secured against XXE attacks on supported platforms, * that should then be convertible to an XML string without security problems */ private static Document newDocument() throws ParserConfigurationException { @@ -718,13 +718,13 @@ public final class YoutubeDashManifestCreatorsUtils { } /** - * Generate a new {@link TransformerFactory} secured from XEE attacks, on platforms which + * Generate a new {@link TransformerFactory} secured from XXE attacks, on platforms which * support setting {@link XMLConstants#ACCESS_EXTERNAL_DTD} and * {@link XMLConstants#ACCESS_EXTERNAL_SCHEMA} in {@link TransformerFactory} instances. * * @param document the document to convert, which must have been created using - * {@link #newDocument()} to properly prevent XEE attacks - * @return the document converted to an XML string, making sure there can't be XEE attacks + * {@link #newDocument()} to properly prevent XXE attacks + * @return the document converted to an XML string, making sure there can't be XXE attacks */ // Sonar warning is suppressed because it is still shown even if we apply its solution @SuppressWarnings("squid:S2755")