From 4c244879af2b9e8c0055968d7ffb054646cb7607 Mon Sep 17 00:00:00 2001
From: Don Armstrong <don@donarmstrong.com>
Date: Wed, 5 Nov 2014 20:26:32 -0800
Subject: [PATCH] Stop URLs at &quot; too. Thanks to Vincent Lefevre (Closes:
 #766354).

---
 Debbugs/CGI/Bugreport.pm | 2 +-
 debian/changelog         | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/Debbugs/CGI/Bugreport.pm b/Debbugs/CGI/Bugreport.pm
index d085ed4..00619fc 100644
--- a/Debbugs/CGI/Bugreport.pm
+++ b/Debbugs/CGI/Bugreport.pm
@@ -271,7 +271,7 @@ sub display_entity {
 	 # We don't html escape here because we escape above;
 	 # wierd terminators are because of that
 	 $body =~ s{((?:ftp|http|https|svn|ftps|rsync)://[\S~-]+?/?) # Url
-		    ((?:\&gt\;)?[)]?(?:'|\&\#39\;)?[:.\,]?(?:\s|$)) # terminators
+		    ((?:\&gt\;)?[)]?(?:'|\&\#39\;|\&quot\;)?[:.\,]?(?:\s|$)) # terminators
 	      }{<a href=\"$1\">$1</a>$2}gox;
 	 # Add links to bug closures
 	 $body =~ s[((?:closes|see):\s* # start of closed/referenced bugs
diff --git a/debian/changelog b/debian/changelog
index 7f8ef53..24d2014 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -27,6 +27,7 @@ debbugs (2.4.2~exp2) UNRELEASED; urgency=low
     #412815). Thanks to martin krafft, Paul Wise, and Julien Valroff.
   * Fix XSS in version.cgi, thanks to Vlad Constantin (Closes: #762967).
   * Add affects to bugreport.cgi package info header (Closes: #609687).
+  * Stop URLs at &quot; too. Thanks to Vincent Lefevre (Closes: #766354).
 
   [Thanks to Arnout Engelen: ]
   * Add Homepage (closes: #670555).
-- 
2.39.2