Skip to content

warning NU1903: Package 'System.Formats.Asn1' 8.0.0 has a known high severity vulnerability

Jump to bottom
ThomasHoevel edited this page Nov 14, 2024 · 1 revision

After updating Visual Studio and Windows, we saw this warning while compiling:

warning NU1903: Package 'System.Formats.Asn1' 8.0.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-447r-wph3-92pm

To resolve this issue when compiling PDFsharp, go to Directory.Packages.prop and locate this line:

<Cryptography_PackageVersion>8.0.0</Cryptography_PackageVersion>

Change the version to 8.0.1 and the warning disappears.

This change will be included with PDFsharp 6.2.0 Preview 2 coming this or next month.

Clone this wiki locally