Skip to content

Commit

Permalink
Fixed an XML external entity (XXE) vulnerability.
Browse files Browse the repository at this point in the history
  • Loading branch information
ravibpatel committed Oct 31, 2019
1 parent 9ef1de7 commit 1dc25f2
Show file tree
Hide file tree
Showing 4 changed files with 6 additions and 7 deletions.
3 changes: 1 addition & 2 deletions AutoUpdater.NET/AutoUpdater.cs
Original file line number Diff line number Diff line change
Expand Up @@ -462,8 +462,7 @@ private static void BackgroundWorkerDoWork(object sender, DoWorkEventArgs e)
}
else
{
XmlDocument receivedAppCastDocument = new XmlDocument();

XmlDocument receivedAppCastDocument = new XmlDocument {XmlResolver = null};
try
{
receivedAppCastDocument.Load(appCastStream);
Expand Down
4 changes: 2 additions & 2 deletions AutoUpdater.NET/Properties/AssemblyInfo.cs
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,6 @@
// You can specify all the values or you can default the Build and Revision Numbers
// by using the '*' as shown below:
// [assembly: AssemblyVersion("1.0.*")]
[assembly: AssemblyVersion("1.5.7.0")]
[assembly: AssemblyFileVersion("1.5.7.0")]
[assembly: AssemblyVersion("1.5.8.0")]
[assembly: AssemblyFileVersion("1.5.8.0")]
[assembly: NeutralResourcesLanguageAttribute("en")]
2 changes: 1 addition & 1 deletion AutoUpdater.NET/build/Autoupdater.NET.Official.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2011/08/nuspec.xsd">
<metadata>
<id>Autoupdater.NET.Official</id>
<version>1.5.7</version>
<version>1.5.8</version>
<title>AutoUpdater.NET</title>
<authors>RBSoft</authors>
<owners>RBSoft</owners>
Expand Down
4 changes: 2 additions & 2 deletions appveyor.yml
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
version: 1.5.7.{build}
version: 1.5.8.{build}
environment:
my_version: 1.5.7
my_version: 1.5.8
my_secret:
secure: vbPRaZLQYpGPr4BrZZ4p6TofpSZMud+FKtlpqjgO8aA=
skip_branch_with_pr: true
Expand Down

0 comments on commit 1dc25f2

Please sign in to comment.