mirror of
https://github.com/VSadov/Satori.git
synced 2025-06-09 17:44:48 +09:00
Obsolete XmlSecureResolver (#73676)
- Add XmlResolver.ThrowingResolver - Migrate all call sites to the new API - Improve error messages on failure Resolves CVE-2022-34716.
This commit is contained in:
Levi Broderick
parent
f44da5225f
commit
d2afae4fb0
GPG key ID:
4AEE18F83AFDEB23
36 changed files with 474 additions and 124 deletions
|
|
@ -101,6 +101,7 @@ The PR that reveals the implementation of the `<IncludeInternalObsoleteAttribute
|
|||
| __`SYSLIB0044`__ | AssemblyName.CodeBase and AssemblyName.EscapedCodeBase are obsolete. Using them for loading an assembly is not supported. |
|
||||
| __`SYSLIB0045`__ | Cryptographic factory methods accepting an algorithm name are obsolete. Use the parameterless Create factory method on the algorithm type instead. |
|
||||
| __`SYSLIB0046`__ | ControlledExecution.Run method may corrupt the process and should not be used in production code. |
|
||||
| __`SYSLIB0047`__ | XmlSecureResolver is obsolete. Use XmlResolver.ThrowingResolver instead when attempting to forbid XML external entity resolution. |
|
||||
|
||||
## Analyzer Warnings
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue