[SOLR-17283] CVE-2024-25710: Upgrade Apache Commons Compress to 1.26 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 9.4
Fix Version/s: 9.7
Component/s: security
Labels:
None

Description

CVE-2024-25710: Upgrade Apache Commons Compress to 1.26

Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress. This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue.

Attachments

Issue Links

links to

https://github.com/apache/solr/pull/2308

Activity

People

Assignee:: Jan Høydahl

Reporter:: Sujeet Hinge

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 08/May/24 08:48

Updated:: 29/May/24 23:51

Resolved:: 08/May/24 22:42