You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@lucene.apache.org by "Vijay Telu (Jira)" <ji...@apache.org> on 2019/09/10 21:51:00 UTC

[jira] [Created] (SOLR-13754) vulnerable derby-10.9.1.0.jar

Vijay Telu created SOLR-13754:
---------------------------------

             Summary: vulnerable derby-10.9.1.0.jar
                 Key: SOLR-13754
                 URL: https://issues.apache.org/jira/browse/SOLR-13754
             Project: Solr
          Issue Type: Bug
      Security Level: Public (Default Security Level. Issues are Public)
            Reporter: Vijay Telu


The Solr 7.7.2 and 8.2 having the the vulnerable derby-10.9.1.0.jar 

org.apache.solr-7.7.1/example/example-DIH/solr/db/lib/derby-10.9.1.0.jar

org.apache.solr-8.2.0/example/example-DIH/solr/db/lib/derby-10.9.1.0.jar

*CVE-2015-1832* 
*CVSSv3: 9.1*



*CVE-2018-1313* 
*CVSSv3: 5.3*



--
This message was sent by Atlassian Jira
(v8.3.2#803003)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org