PR#3450: convert data to string in escapeHTML first

Merges #3450 https://pagure.io/koji/pull-request/3450 Fixes: #3449 https://pagure.io/koji/issue/3449 Fix html escaping for non-strings
2022-08-17 11:16:21 +02:00 · 2022-08-17 11:16:21 +02:00 · 37b207cf44
commit 37b207cf44
parent 3cf8cc50ed 9d289bc336
1 changed files with 1 additions and 1 deletions
--- a/www/lib/kojiweb/util.py
+++ b/www/lib/kojiweb/util.py
@ -625,7 +625,7 @@ def escapeHTML(value):
    if not value:
        return value

-    value = koji.fixEncoding(value)
+    value = koji.fixEncoding(str(value))
    return re.sub(r'&(?![a-zA-Z0-9#]+;)', '&amp;', value).\
        replace('<', '&lt;').\
        replace('>', '&gt;').\