Notepad++ has unveiled version 8.9.3, focusing on crucial security upgrades, performance optimization, and fixing recurring crash issues. This update signifies the completion of the text editor’s transition to a more efficient XML parser, addressing recent software regressions and strengthening the auto-update feature against known vulnerabilities.
Key Security Enhancements
A significant highlight of this release is the resolution of a security flaw within the application’s auto-update framework. The development team has updated the cURL component in WinGUp to version 8.19.0, effectively mitigating the identified CVE-2025-14819 vulnerability. Additionally, the update addresses a previous bug that led to unintended privilege escalation during plugin installation or removal, ensuring standard user permissions are maintained.
Core System Improvements
In pursuit of better performance, Notepad++ has completed its shift from TinyXML to the pugixml parser for configuration file handling. This structural change not only boosts performance but also resolves several regressions, such as localized text errors and incorrect non-UTF8 document displays. Furthermore, core interface components like Scintilla and Lexilla have been upgraded to versions 5.6.0 and 5.4.7, respectively.
Efforts to enhance system stability have led to the rectification of a persistent issue where initiating a print job resulted in application crashes. Problems related to User Defined Languages (UDL) and a memory leak during application exit have also been addressed, improving the overall reliability of the software.
Tools for System Administrators
This release introduces tools beneficial for enterprise system administrators. A new disableNppAutoUpdate.xml file allows IT teams to disable auto-updates regardless of the presence of the WinGUp executable. Additional protective measures ensure XML configuration files remain intact during portable package updates via the copy-and-paste method.
Other significant fixes include addressing the “Find in Files” function’s inability to search file content on disk and preventing Notepad++ from creating unnecessary Windows Explorer processes in Task Manager. The update also introduces native Autocompletion and Function List support for the D programming language, enhancing developer productivity.
Stay informed on the latest cybersecurity developments by following us on Google News, LinkedIn, and X. Contact us to share your stories and insights.
