[Git][security-tracker-team/security-tracker][master] Add CVE-2017-3164/lucene-solr
Salvatore Bonaccorso
carnil at debian.org
Wed Feb 13 05:42:28 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e2e75870 by Salvatore Bonaccorso at 2019-02-13T05:40:48Z
Add CVE-2017-3164/lucene-solr
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -117058,8 +117058,10 @@ CVE-2017-3166 (In Apache Hadoop versions 2.6.1 to 2.6.5, 2.7.0 to 2.7.3, and ...
- hadoop <itp> (bug #793644)
CVE-2017-3165 (In Apache Brooklyn before 0.10.0, the REST server is vulnerable to ...)
NOT-FOR-US: Apache Brooklyn
-CVE-2017-3164
+CVE-2017-3164 [SSRF issue]
RESERVED
+ - lucene-solr <unfixed>
+ NOTE: https://issues.apache.org/jira/browse/SOLR-12770
CVE-2017-3163 (When using the Index Replication feature, Apache Solr nodes can pull ...)
{DSA-4124-1 DLA-1046-1}
- lucene-solr 3.6.2+dfsg-11 (bug #867712)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e2e758703cfa2a65fa7e2d1e5d05c0c6174b2ab4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e2e758703cfa2a65fa7e2d1e5d05c0c6174b2ab4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190213/ffafb837/attachment.html>
More information about the debian-security-tracker-commits
mailing list