2025 Feb 12 3:35 PM - edited 2025 Feb 12 4:12 PM
Hello
Looks like there are some vulnerabilities in Crystal Report Runtime Engine For Eclipse SP31 in the xmlconnector.jar file:
bouncycastle: xmlconnector.jar/lib/bcprov-jdk18on-171.jar Vulnerabilties: https://mvnrepository.com/artifact/org.bouncycastle/bcprov-jdk18onRemediation version: 1.8
Apache Santuario: lib/xmlconnector.jar/lib/xmlsec-2.2.3.jarVulnerabilties: https://mvnrepository.com/artifact/org.apache.santuario/xmlsecRemediation version: 4.0.3
Is there any chance this can be added to the roadmap?
Thank you!
Apologies, these were the vulnerabilities for sp30, which have been addressed in SP31
Thank you for confirming they were fixed
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Bluesky
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.