[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lucene-solr DSA

Tue Feb 27 19:34:20 UTC 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f9372731 by Moritz Muehlenhoff at 2018-02-27T20:33:52+01:00
lucene-solr DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -62958,8 +62958,6 @@ CVE-2017-3164
 CVE-2017-3163 (When using the Index Replication feature, Apache Solr nodes can pull ...)
 	{DLA-1046-1}
 	- lucene-solr 3.6.2+dfsg-11 (bug #867712)
-	[stretch] - lucene-solr <no-dsa> (Minor issue)
-	[jessie] - lucene-solr <no-dsa> (Minor issue)
 	NOTE: https://issues.apache.org/jira/browse/SOLR-10031
 	NOTE: https://github.com/apache/lucene-solr/commit/ae789c252687dc8a18bfdb677f2e6cd14570e4db
 CVE-2017-3162 (HDFS clients interact with a servlet on the DataNode to browse the ...)


=====================================
data/DSA/list
=====================================
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,3 +1,7 @@
+[27 Feb 2018] DSA-4124-1 lucene-solr - security update
+	{CVE-2017-3163 CVE-2017-12629}
+	[jessie] - lucene-solr 3.6.2+dfsg-5+deb8u1
+	[stretch] - lucene-solr 3.6.2+dfsg-10+deb9u1
 [24 Feb 2018] DSA-4123-1 drupal7 - security update
 	{CVE-2017-6927 CVE-2017-6928 CVE-2017-6929 CVE-2017-6932}
 	[jessie] - drupal7 7.32-1+deb8u10


=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -44,8 +44,6 @@ libvpx
 linux
   Wait until more issues have piled up
 --
-lucene-solr
---
 mbedtls (seb)
 --
 mercurial



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f937273107add266e9ee90a9b3d5d663c57ad888

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f937273107add266e9ee90a9b3d5d663c57ad888
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180227/917672fd/attachment.html>
