From a094533751c786204a5fd39c1ae76891086d5b7e Mon Sep 17 00:00:00 2001
From: Gijs Kruitbosch <gijskruitbosch@gmail.com>
Date: Fri, 6 Jan 2017 15:39:16 +0000
Subject: [PATCH] Bug 1321247, sanitize forms out of the RSS reader, r=dveditz

MozReview-Commit-ID: DOPHvrYv3wJ

--HG--
extra : rebase_source : 8f717e1cb660103be4eb8b3f479252fb95050a41
---
 toolkit/components/feeds/FeedProcessor.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/toolkit/components/feeds/FeedProcessor.js b/toolkit/components/feeds/FeedProcessor.js
index 88e2f0def2a3..c4e8828e6e8b 100644
--- a/toolkit/components/feeds/FeedProcessor.js
+++ b/toolkit/components/feeds/FeedProcessor.js
@@ -625,7 +625,8 @@ TextConstruct.prototype = {
     else
       return null;
 
-    return this.parserUtils.parseFragment(this.text, 0, isXML,
+    let flags = Ci.nsIParserUtils.SanitizerDropForms;
+    return this.parserUtils.parseFragment(this.text, flags, isXML,
                                           this.base, element);
   },