Community
    • Login

    Notepad++ release 8.7

    Scheduled Pinned Locked Moved
    Announcements
    9
    22
    6.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • donhoD
      donho @Kingslin Charles
      last edited by

      @Kingslin-Charles said in Notepad++ release 8.7:

      We are using Notepad++ 8.6.2 and Nessus scan identifies a HIGH vulnerability - CVE-2014-9456 on the updater\libcurl.dll

      CVE-2014-9456 is a Notepad++ issue, and it’s been fixed by commit:
      https://github.com/notepad-plus-plus/notepad-plus-plus/commit/a9b5235402af6dc8e1290a29089456a3ced415bd

      If you’re talking about the issue of the updater\libcurl.dll, I guess you’re meaning CVE-2024-7264, which is fixed by commit in wingup:
      https://github.com/notepad-plus-plus/wingup/commit/2ee34a8283bb3d9df811d290c67461956d49e2ca

      The new version of WinGup which cotains above fix will be included in next Notepad++ release v8.7.1.

      Kingslin CharlesK 1 Reply Last reply Reply Quote 5
      • Kingslin CharlesK
        Kingslin Charles @donho
        last edited by

        @donho Thank you. Yes. Sorry for the confusion. I meant the CVE-2024-7264 present in updater/libcurl.dll. When is it possible to get v8.7.1 released?

        1 Reply Last reply Reply Quote 0
        • donhoD donho unpinned this topic on
        • First post
          Last post
        The Community of users of the Notepad++ text editor.
        Powered by NodeBB | Contributors