search

plutext / docx4j

JAXB-based Java library for Word docx, Powerpoint pptx, and Excel xlsx files
https://www.docx4java.org/
2.13k stars 1.2k forks source link

FOP Resolve vulnerability SNYK-JAVA-ORGAPACHEXMLGRAPHICS-8179276 #599

Open bgrabow opened 1 month ago

bgrabow commented 1 month ago

This vulnerability was published on 2024 Oct 10. A new version of org.apache.xmlgraphics:fop was released to fix the vulnerability. org.docx4j:docx4j-export-fo currently uses version 2.7 which includes the vulnerability.

I would like to kindly request that org.docx4j:docx4j-export-fo be upgraded to use version 2.10.

plutext commented 3 days ago

FOP 2.10 doesn't work for me https://issues.apache.org/jira/browse/FOP-3223

Have you had better luck?