Edit Book: Fix handling of XML unsafe characters (like <, > and &) inside <style> tags

2025-07-09 03:04:10 -04:00 · 2014-11-10 21:03:13 +05:30 · 2014-11-10 21:03:13 +05:30 · facf3e1f30
commit facf3e1f30
parent cbf75e1a7d
1 changed files with 6 additions and 1 deletions
--- a/src/calibre/ebooks/oeb/base.py
+++ b/src/calibre/ebooks/oeb/base.py
@ -349,8 +349,13 @@ def xml2text(elem):

 def serialize(data, media_type, pretty_print=False):
    if isinstance(data, etree._Element):
+        is_oeb_doc = media_type in OEB_DOCS
+        if is_oeb_doc:
+            for style in data.iterfind('.//{http://www.w3.org/1999/xhtml}style'):
+                if style.text and re.search(r'[<>&]', style.text) is not None:
+                    style.text = etree.CDATA(style.text)
        ans = xml2str(data, pretty_print=pretty_print)
-        if media_type in OEB_DOCS:
+        if is_oeb_doc:
            # Convert self closing div|span|a|video|audio|iframe|etc tags
            # to normally closed ones, as they are interpreted
            # incorrectly by some browser based renderers