Notepad++ v8.8.9 release: Vulnerability-fix
21 hours ago
- #Notepad++
- #Update
- #Security
- Security vulnerability in Notepad++ v8.8.9 updater (WinGUp) allowed traffic hijacking, leading to malicious downloads.
- New security enhancement: Notepad++ & WinGUp now verify signatures & certificates of downloaded installers during updates.
- Ongoing investigation into the exact method of traffic hijacking; users will be updated with findings.
- Notepad++ binaries (since v8.8.7) are digitally signed by GlobalSign; root certificate installation is no longer needed.
- This release includes bug-fixes and additional enhancements alongside the security update.