Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2019-0228 - Apache PDFBox #349

Closed
BryceMehring opened this issue Apr 24, 2019 · 3 comments
Closed

CVE-2019-0228 - Apache PDFBox #349

BryceMehring opened this issue Apr 24, 2019 · 3 comments

Comments

@BryceMehring
Copy link

https://nvd.nist.gov/vuln/detail/CVE-2019-0228

Please upgrade Apache PDFBox to the latest version to fix this CVE
@danfickle
Copy link
Owner

@rototor - can you do a release of pdfbox-graphics with 2.0.15 please?

@rototor
Copy link
Contributor

rototor commented Apr 25, 2019

@danfickle I did (should be on maven central in some minutes), but you can and should always set the version to used by openhtmltopdf yourself. And this should also override the setting I did in pdfbox-graphics2d.

danfickle added a commit that referenced this issue Apr 26, 2019
@danfickle
#349 - Upgrade PDF-BOX to 2.0.15 to avoid CVE in 2.0.14.
afe9590
danfickle added a commit that referenced this issue Apr 26, 2019
@danfickle
#8 #349 Update REAMDE and CHANGELOG with RC20 release. [ci skip]
b7decfb
@danfickle danfickle mentioned this issue Apr 26, 2019
Open
@danfickle
Copy link
Owner

RC20 released with PDFBOX 2.0.15 fix. Thanks everyone.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@rototor @danfickle @BryceMehring