Microsoft.SemanticKernel.Plugings.Document package must be updated

Exists a high vulnerability in the System.IO.Packaging 8.0.1 used by Microsoft.SemanticKernel.Plugings.Document in the Encamina.Enmarcha.SemanticKernel.Connectors.Document projecy library.

Vulnerability info:
- [Microsoft Security Advisory CVE-2024-43484 | .NET Denial of Service Vulnerability](https://github.com/advisories/GHSA-f32c-w444-8ppv)
- [Microsoft Security Advisory CVE-2024-43483 | .NET Denial of Service Vulnerability](https://github.com/advisories/GHSA-qj66-m88j-hmgj)

This problem was detected on Smart Connection V3 template:

<img width="1884" height="931" alt="Image" src="https://github.com/user-attachments/assets/8be473ea-8d83-4de2-9161-bf80923622a3" />

<img width="1893" height="964" alt="Image" src="https://github.com/user-attachments/assets/a24cf5dd-f58c-4107-9d78-c51b1d090eea" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Microsoft.SemanticKernel.Plugings.Document package must be updated #153

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Microsoft.SemanticKernel.Plugings.Document package must be updated #153

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions