jreinsch

Xerces vulnerabilities

Discussion created by jreinsch on Jul 10, 2017
Latest reply on Jul 14, 2017 by jreinsch

Product and version: FileMaker Pro Advanced 15.0.3.305

OS and version: Windows 10.0.14393

Description: Filemaker Pro Advanced 15 includes, and requires, xerces-c_3_0.dll (version 3.0.1), which has security vulnerabilities: see Security Advisories

We tried replacing the dll with a version 3.1.4 dll we built from source, but on startup of our runtime program got:

So it appears the xerces 3.1.4 interface is incompatible with FileMaker 15. We have users who will not use software with any vulnerabilities whatsoever.

Outcomes