A contributor to docker-solr has a straight-forward patch[1] setting the system property that remediates the Log4j2 vulnerability. I plan to test this, merge it, and publish these. This will update all our images that you can see here: https://hub.docker.com/_/solr (spans 5x thru 8x). If anyone has concerns that I shouldn't do this now then let me know.
[1] https://github.com/docker-solr/docker-solr/pull/396 ~ David Smiley Apache Lucene/Solr Search Developer http://www.linkedin.com/in/davidwsmiley
