Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-13506

Upgrade carrot2-guava-*.jar

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Won't Fix
    • 7.7.1, 8.0, 8.1
    • None
    • contrib - Clustering
    • None

    Description

      The Solr package contains /contrib/clustering/lib/carrot2-guava-18.0.jar.

      cpe:/a:google:guava:18.0 has know security vulnerabilities. 

      Can you please upgrade the library or remove if not needed.

      Thanks.

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. SOLR-14960 Solr-clustering is bringing in CVE-2018-10237 vulnerable guava

          • Major - Major loss of function.
          • Resolved
          is part of

          Improvement - An improvement or enhancement to an existing feature or task. SOLR-14926 Modernize and clean up document clustering contrib

          • Major - Major loss of function.
          • Closed

          Activity

            People

              dweiss Dawid Weiss
              dawinter DW
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: