![]() ![]() We appreciate the professionalism and completeness of his security report. The vulnerability was first reported to us by Devin Casadey of Secureworks. Users are unable to upload a business logo or choose any specific shape. Furthermore, Wix offers significantly fewer customization options in comparison to other providers. There are no other changes in WiX v3.11.2. vCard Email Even though most common forms of QR codes are included, Wix misses out on a handful of QR code options (e.g., Facebook QR code, LinkedIn QR code, etc.). ![]() Again, if your project references .dll or .dll then you will want to upgrade to WiX v3.11.2. We developed a targeted fix in the shared functionality for cabinet and zip file compression and decompression. \) such that vulnerable decompression code could overwrite files unexpectedly. "Zip Slip" occurs when a malicious archive (cabinet or zip) file contains a filename with traversal paths (. This security release addresses a "Zip Slip" vulnerability in the decompression code provided by DTF, specifically: .dll and .dll. Otherwise, feel free to stay with WiX v3.11.1. If your application directly references .dll or .dll to decompress cabinet or zip files to a folder, you should upgrade to this release. WiX v3.11.2 is a minor security release of WiX. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |