webPDF security update version r2376 regarding log4j vulnerability CVE-2021-45105

Minimum technical requirements

  • Java version: 11
  • webPDF version: 8 (revision 2376)

This current update contains security updates and fixes to the found vulnerability CVE-2021-45105 in the third-party library log4j.

We would like to inform you as follows regarding webPDF:

  • webPDF 7 uses the above library in version 1 and is therefore not affected.
  • webPDF 8 uses the above library in version 2 and is therefore affected.

An update of webPDF 8 to log4j 2.17 is available on theĀ download page with revision 2376. The packages and the container “softvisiondev/webpdf” on Docker Hub were also updated accordingly.

We recommend that customers update their webPDF 8 installation to this version.

Note: This update builds on the update from the article https://www.webpdf.de/blog/en/webpdf-security-update-version-r2374-regarding-log4j-vulnerability/ and updates the affected library to version 2.17.

This update can be installed directly and stand alone.

If you have any further questions or need technical support please do not hesitate to contact us

Your SoftVision Team