On 3/4/15, 6:10 PM, "Michael Glavassevich" <mrgla...@ca.ibm.com> wrote:
> >The defect you're referring to had nothing to do with DTDs or entities. Which I acknowledged. You still have an unreleased security fix that is *not* a function of "applications configuring the parser correctly". -- Scott
