Uploaded image for project: 'Lucene - Core'
  1. Lucene - Core
  2. LUCENE-8456

Upgrade Apache Commons Compress to v1.18

    XMLWordPrintableJSON

    Details

    • Type: Task
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 7.5, 8.0
    • Component/s: None
    • Labels:
      None
    • Lucene Fields:
      New

      Description

      CVE-2018-11771: Apache Commons Compress 1.7 to 1.17 denial of service vulnerability

      Announcement:
      https://lists.apache.org/thread.html/3f01b7315c83156875741faa56263adaf104233c6b7028092896a62c@%3Cdev.commons.apache.org%3E

        Attachments

        1. LUCENE-8456.patch
          3 kB
          Steve Rowe

          Activity

            People

            • Assignee:
              sarowe Steve Rowe
              Reporter:
              sarowe Steve Rowe
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: