[xsde-users] Information about xsde-3.3.0.a8
Boris Kolpackov
boris at codesynthesis.com
Thu Aug 15 01:57:06 EDT 2024
Hi Chitra,
Sunnapu, Chitra <Chitra.Sunnapu at philips.com> writes:
> In addition to this, could you please confirm if there are any
> known security vulnerabilities associated with this pre-release
> version?
There are no known security vulnerabilities in XSD/e itself but
several were discovered in Expat (which is bundled with the XSD/e
runtime). You have two options to resolve them:
1. Use external Expat, for example, from your system or by building
the latest version from source.
2. Apply the cumulative patch to the bundled Expat:
https://codesynthesis.com/~boris/tmp/xsde/xsde-genx-expat-patch-7.zip
Naturally, this patch will be included in the final release.
More information about the xsde-users
mailing list