webPDF security update version r2376 regarding log4j vulnerability CVE-2021-45105
This update contains security fixes for vulnerability CVE-2021-45105 in the third-party library log4j.
Current status for webPDF:
- webPDF 7 uses log4j version 1 and is not affected.
- webPDF 8 uses log4j version 2 and is affected.
An update of webPDF 8 to log4j 2.17 is available with revision 2376:
- Download page
- Linux packages
- Docker image
softvisiondev/webpdfon Docker Hub
We recommend updating all webPDF 8 installations to this version.
Note: this update builds on the previous update (revision 2374) and upgrades the affected library to log4j 2.17.
This update can be installed directly as a standalone update.
If you have any questions or need technical support, please contact us.
Your SoftVision team