CVE-2016-6809: Java code execution for serialized objects embedded in
MATLAB files parsed by Apache Solr using Tika
Severity: Important
Vendor:
The Apache Software Foundation
Versions Affected:
Solr 5.0.0 to 5.5.4
Solr 6.0.0 to 6.6.1
Solr 7.0.0 to 7.0.1
Description:
Apache Solr uses Apache Tik
The Apache Jackrabbit community is pleased to announce the release of
Apache Jackrabbit 2.15.7. The release is available for download at:
https://jackrabbit.apache.org/jcr/downloads.html#v2.15
See the full release notes below for details about this release:
Release Notes -- Apache Jackrabbi