[
https://issues.apache.org/jira/browse/OAK-11274?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Nitin Gupta resolved OAK-11274.
-------------------------------
Fix Version/s: 1.74.0
Resolution: Fixed
> Upgrade solr to 8.11.3 | CVE-2023-50298
> ---------------------------------------
>
> Key: OAK-11274
> URL: https://issues.apache.org/jira/browse/OAK-11274
> Project: Jackrabbit Oak
> Issue Type: Bug
> Reporter: Nitin Gupta
> Assignee: Nitin Gupta
> Priority: Major
> Fix For: 1.74.0
>
>
> [https://solr.apache.org/security.html#cve-2023-50298-apache-solr-can-expose-zookeeper-credentials-via-streaming-expressions]
> Currently we use solr version 8.11.1 in trunk which is vulnurable to the
> above CVE.
> We need to upgrade it to 8.11.3
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
