Information on source package lucene-solr

Available versions

ReleaseVersion
wheezy3.6.0+dfsg-1+deb7u1
wheezy (security)3.6.0+dfsg-1+deb7u2
jessie3.6.2+dfsg-5
stretch3.6.2+dfsg-10
buster3.6.2+dfsg-10
sid3.6.2+dfsg-10

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-3163fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableWhen using the Index Replication feature, Apache Solr nodes can pull ...
CVE-2017-12629undeterminedundeterminedundeterminedundeterminedundeterminedRemote code execution occurs in Apache Solr before 7.1 with Apache ...

Resolved issues

BugDescription
CVE-2017-9803Solr's Kerberos plugin can be configured to use delegation tokens, ...
CVE-2017-7660Apache Solr uses a PKI based mechanism to secure inter-node ...
CVE-2015-8797Cross-site scripting (XSS) vulnerability in ...
CVE-2015-8796Cross-site scripting (XSS) vulnerability in ...
CVE-2015-8795Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in ...
CVE-2014-3628Cross-site scripting (XSS) vulnerability in the Admin UI Plugin / ...
CVE-2013-6408The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does ...
CVE-2013-6407The UpdateRequestHandler for XML in Apache Solr before 4.1 allows ...
CVE-2013-6397Directory traversal vulnerability in SolrResourceLoader in Apache Solr ...
CVE-2012-6612The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in ...

Security announcements

DSA / DLADescription
DLA-1046-1lucene-solr - security update
DSA-2963-1lucene-solr - security update

Search for package or bug name: Reporting problems