You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@solr.apache.org by ANNAMANENI RAVEENDRA <a....@gmail.com> on 2021/12/19 13:14:53 UTC

Re: How to mitigate CVE-2021-45105 in Solr

Please refer below link.

https://solr.apache.org/security.html



On Sun, 19 Dec 2021 at 8:10 AM, Kashif Mumtaz
<ka...@yahoo.com.invalid> wrote:

> Hi ,We are using Solr 7.7.3. How to apply fix for log4j third
> vulnerability  CVE-2021-45105 in Solr ?
> Regards,
>
>
>

Re: How to mitigate CVE-2021-45105 in Solr

Posted by Kashif Mumtaz <ka...@yahoo.com.INVALID>.

 Thanks for mentioning ! I was checking the subject line only before. It is stating

Apache Solr releases are not vulnerable to the followup CVE-2021-45046 and CVE-2021-45105..

    On Sunday, December 19, 2021, 10:27:44 PM GMT+4, Jan Høydahl <ja...@cominvent.com> wrote:  
 
 Read again. It is explicitly mentioned:

https://solr.apache.org/security.html#apache-solr-affected-by-apache-log4j-cve-2021-44228

Jan Høydahl

> 19. des. 2021 kl. 18:16 skrev Kashif Mumtaz <ka...@yahoo.com.invalid>:
> 
> 
> https://solr.apache.org/security.html page is not mentioning anything about CVE-2021-45105
> 
>    On Sunday, December 19, 2021, 05:15:15 PM GMT+4, ANNAMANENI RAVEENDRA <a....@gmail.com> wrote:  
> 
> Please refer below link.
> 
> https://solr.apache.org/security.html
> 
> 
> 
>> On Sun, 19 Dec 2021 at 8:10 AM, Kashif Mumtaz
>> <ka...@yahoo.com.invalid> wrote:
>> 
>> Hi ,We are using Solr 7.7.3. How to apply fix for log4j third
>> vulnerability  CVE-2021-45105 in Solr ?
>> Regards,
>> 
>> 
>>

Re: How to mitigate CVE-2021-45105 in Solr

Posted by Jan Høydahl <ja...@cominvent.com>.

Read again. It is explicitly mentioned:

https://solr.apache.org/security.html#apache-solr-affected-by-apache-log4j-cve-2021-44228

Jan Høydahl

> 19. des. 2021 kl. 18:16 skrev Kashif Mumtaz <ka...@yahoo.com.invalid>:
> 
> 
> https://solr.apache.org/security.html page is not mentioning anything about CVE-2021-45105
> 
>    On Sunday, December 19, 2021, 05:15:15 PM GMT+4, ANNAMANENI RAVEENDRA <a....@gmail.com> wrote:  
> 
> Please refer below link.
> 
> https://solr.apache.org/security.html
> 
> 
> 
>> On Sun, 19 Dec 2021 at 8:10 AM, Kashif Mumtaz
>> <ka...@yahoo.com.invalid> wrote:
>> 
>> Hi ,We are using Solr 7.7.3. How to apply fix for log4j third
>> vulnerability  CVE-2021-45105 in Solr ?
>> Regards,
>> 
>> 
>>

Re: How to mitigate CVE-2021-45105 in Solr

Posted by Kashif Mumtaz <ka...@yahoo.com.INVALID>.

 
https://solr.apache.org/security.html page is not mentioning anything about CVE-2021-45105

    On Sunday, December 19, 2021, 05:15:15 PM GMT+4, ANNAMANENI RAVEENDRA <a....@gmail.com> wrote:  
 
 Please refer below link.

https://solr.apache.org/security.html



On Sun, 19 Dec 2021 at 8:10 AM, Kashif Mumtaz
<ka...@yahoo.com.invalid> wrote:

> Hi ,We are using Solr 7.7.3. How to apply fix for log4j third
> vulnerability  CVE-2021-45105 in Solr ?
> Regards,
>
>
>