[jira] [Updated] (SOLR-16517) Solr export 8.11.2-slim Vulnerabilities

[Ritchie Gu (Jira)]

     [ 
https://issues.apache.org/jira/browse/SOLR-16517?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Ritchie Gu updated SOLR-16517:
------------------------------
    Description: 
I have a question regarding the solr exporter 
[https://hub.docker.com/layers/library/solr/8.11.2-slim/images/sha256-e2e7e8fddb75ec8055c2745bbaf784cd7608ea5898f17144312f316ef0a1f488?context=explore]

Our twistlock scan result showing that it has 95 vulnerabilities. We are going 
through an auditing process and would like to get some answers from Apache Solr 
team since it's officially supported. 

Also is there any plan that Solr team will address these vulnerabilities?

I will attach the scan result here in the ticket.

  was:
I have a question regarding the solr exporter 
[https://hub.docker.com/layers/library/solr/8.11.2-slim/images/sha256-e2e7e8fddb75ec8055c2745bbaf784cd7608ea5898f17144312f316ef0a1f488?context=explore]

Our twistlock scan result showing that it has 95 vulnerabilities. We are going 
through an auditing process and would like to get some answers from Apache Solr 
team since it's officinally supported. 

Also is there any plan that Solr team will address these vulnerabilities?

I will attach the scan result here in the ticket.


> Solr export 8.11.2-slim Vulnerabilities 
> ----------------------------------------
>
>                 Key: SOLR-16517
>                 URL: https://issues.apache.org/jira/browse/SOLR-16517
>             Project: Solr
>          Issue Type: Bug
>      Security Level: Public(Default Security Level. Issues are Public) 
>          Components: security
>    Affects Versions: 8.11.2
>            Reporter: Ritchie Gu
>            Priority: Critical
>         Attachments: twistlock_images-Solr-Exporter.csv
>
>
> I have a question regarding the solr exporter 
> [https://hub.docker.com/layers/library/solr/8.11.2-slim/images/sha256-e2e7e8fddb75ec8055c2745bbaf784cd7608ea5898f17144312f316ef0a1f488?context=explore]
> Our twistlock scan result showing that it has 95 vulnerabilities. We are 
> going through an auditing process and would like to get some answers from 
> Apache Solr team since it's officially supported. 
> Also is there any plan that Solr team will address these vulnerabilities?
> I will attach the scan result here in the ticket.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org
For additional commands, e-mail: issues-h...@solr.apache.org