CVE-2019-0228 - Apache PDFBox

Question

CVE-2019-0228 - Apache PDFBox

BryceMehring opened this issue 5 years ago · 3 comments

BryceMehring commented 5 years ago

https://nvd.nist.gov/vuln/detail/CVE-2019-0228

Please upgrade Apache PDFBox to the latest version to fix this CVE

Answer 1 · 2019-04-25T02:16:58.000Z

@rototor - can you do a release of pdfbox-graphics with 2.0.15 please?

Answer 2 · 2019-04-25T08:19:56.000Z

@danfickle I did (should be on maven central in some minutes), but you can and should always set the version to used by openhtmltopdf yourself. And this should also override the setting I did in pdfbox-graphics2d.

Answer 3 · 2019-04-26T03:49:05.000Z

RC20 released with PDFBOX 2.0.15 fix. Thanks everyone.