What's new in iTextSharp 5.5.13.3
Feb 25, 2022
- For this particular release, we’ve backported a security bug fix from iText 7.2.0 and 7.1.17 to resolve a vulnerability that allowed the use of GhostScript in an unpredictable manner. See CVE-2021-43113 for more information.
- In addition, we have updated the Apache XML Security for Java (org.apache.santuario:xmlsec) dependency to version 1.5.8 from version 1.5.6.
- We have also updated the C# Bouncy Castle dependency to 1.8.9 due to a Timing Attack vulnerability present in version 1.8.6.1.
New in iTextSharp 5.5.13.2 (Sep 14, 2020)
- Security update of bouncy castle dependency
New in iTextSharp 5.5.13.1 (Sep 3, 2020)
- Core:
- Security fix for clearer signatures validation
- Security improvement around decompression bombs
New in iTextSharp 5.5.11 (Jan 8, 2020)
- iText 5.5.11 is a maintenance release that rolls up 28 bugfixes from the past 5 months. No new functionality has been added since 5.5.10.