You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@solr.apache.org by "Kevin Risden (Jira)" <ji...@apache.org> on 2022/10/20 21:19:00 UTC

[jira] [Reopened] (SOLR-16285) [CVE-2022-33980] Apache Commons Configuration performs variable interpolation, allowing properties to be dynamically evaluated and expanded

     [ https://issues.apache.org/jira/browse/SOLR-16285?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Kevin Risden reopened SOLR-16285:
---------------------------------
      Assignee: Kevin Risden

> [CVE-2022-33980] Apache Commons Configuration performs variable interpolation, allowing properties to be dynamically evaluated and expanded
> -------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: SOLR-16285
>                 URL: https://issues.apache.org/jira/browse/SOLR-16285
>             Project: Solr
>          Issue Type: Bug
>      Security Level: Public(Default Security Level. Issues are Public) 
>            Reporter: zhao tao
>            Assignee: Kevin Risden
>            Priority: Major
>              Labels: security
>
> Apache Commons Configuration performs variable interpolation, allowing properties to be dynamically evaluated and expanded
> [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33980]
> org.apache.commons:commons-configuration2:2.7 should be update to 2.8.0



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org