Security Vulnerabilities with 7Zip DLLs

Question

Security Vulnerabilities with 7Zip DLLs

Closed this issue 5 years ago · 6 comments

Looking at the 7Zip4Powershell repo indicates that the included 7Zip DLLs are about 5 years old. Since then there have been many security vulnerabilities identified with 7Zip. Can the 7Zip DLLs included in this project be updated to their latest available versions?

Answer 1 · 2017-07-18T13:37:56.000Z

Are there any plans to incorporate the latest 7Zip DLLs into this project?

Answer 2 · 2017-07-18T14:25:25.000Z

Yes, I'll include them in the next release (no date yet though)

Answer 3 · 2017-07-24T12:49:14.000Z

Thanks thoemmi.

Answer 4 · 2017-07-28T20:51:37.000Z

Fixed in fdaaa06. However, due to time constraints I won't be able to release it before September.

Answer 5 · 2019-02-06T13:19:30.000Z

This probably needs another verison bump. The list of vulnerabilities has grew a lot since mid 2017

Answer 6 · 2020-03-29T21:32:37.000Z

Fixed in #56