webPDF security update version r2374 regarding log4j vulnerability CVE-2021-45046

This update contains security fixes for vulnerability CVE-2021-45046 in the third-party library log4j.

Current status for webPDF:

• webPDF 7 uses log4j version 1 and is not affected.
• webPDF 8 uses log4j version 2 and is affected.

An update of webPDF 8 to log4j 2.16 is available with revision 2374:

• Download page
• Linux packages

We recommend updating all webPDF 8 installations to this version.

Note: this update builds on the previous update (revision 2372) and upgrades the affected library to log4j 2.16.

This update can be installed directly as a standalone update.

If you have any questions or need technical support, please contact us.

Your SoftVision team