Notepad++ users may want to update to the new version asap to fix the security issues in the text editor. Fixed the display of the product version value in the file's properties.Fixed an issue that activated incorrect files after loading session files.Fixed a file session saving issue if the file is read-only.Fixed a cloned document disassociation issue after relaunch of the application.Superrss 2GB file warning option for 圆4 added.Tab dragging performance fixed while the document list is displayed.Fixed a potential memory leak while reading UTF8-16 files.The remaining changes are the following ones: Notepad++'s uninstall.exe application has been signed, which, by definition, is a security improvement. The non-security changes in Notepad++ 8.5.7 The exploitability of the issue "is not clear", according to the researcher, but these could also "be used to leak internal memory allocation information". The security researcher, who reported the issue, suggested that it had the potential of leaking "internal memory allocation information".ĬVE-2023-40036 and CVE-2023-40164 do describe buffer overflow issues as well. The loading of a specially crafted file could result "in the reading past the bounds of a globally allocated object buffer". Successful exploitation of the issue may lead to arbitrary code execution.ĬVE-2023-40031 describes a global buffer read overflow issue. The issue rated high is a heap buffer write overflow security issue in Utf8_16_Read::convert, which handles conversions between UTF8 and UTF16. The security issues were reported to the project some time ago and made public recently. The project website hosts the portable version as well. New users and those who prefer to download the latest version manually find them, as usual, on the official GitHub project website. Existing users may install the update by selecting the question-mark icon in the Notepad++ interface and then Update Notepad++ from the menu that opens.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |