PdfSharpCore icon indicating copy to clipboard operation
PdfSharpCore copied to clipboard
verified publisher icon ststeiger

Update SixLabors.ImageSharp package version

Open MSkladanowski opened this issue 7 months ago • 6 comments

Hi, I updated SixLabors.ImageSharp to patched version 2.1.10. Version 1.0.4 has number of known vulnerabilities:

  • https://github.com/advisories/GHSA-65x7-c272-7g7r
  • https://github.com/advisories/GHSA-g85r-6x2q-45w7
  • https://github.com/advisories/GHSA-5x7m-6737-26cr
  • https://github.com/advisories/GHSA-63p8-c4ww-9cg7
  • https://github.com/advisories/GHSA-2cmq-823j-5qj8

MSkladanowski avatar May 14 '25 09:05 MSkladanowski

+1, would be nice to get merged and fix the vulnerability

cedricmendelin avatar May 15 '25 09:05 cedricmendelin

+1, we are getting warnings in our projects for these known security vulnerabilities.

brinehart avatar May 28 '25 16:05 brinehart

+1, please merge

kemmis avatar Jun 05 '25 19:06 kemmis

+1 :-)

hacktick avatar Jun 19 '25 06:06 hacktick

+1, please merge

gmyrzamuratov avatar Jul 28 '25 06:07 gmyrzamuratov

The current package includes High rated vulns. Please merge.

tjl-jg avatar Sep 12 '25 14:09 tjl-jg