[
https://issues.apache.org/jira/browse/SOLR-17906?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jan Høydahl updated SOLR-17906:
-------------------------------
Fix Version/s: 9.10
> CVE-2025-5115: vulnerability in the http2-common dependency
> -----------------------------------------------------------
>
> Key: SOLR-17906
> URL: https://issues.apache.org/jira/browse/SOLR-17906
> Project: Solr
> Issue Type: Bug
> Affects Versions: 9.9.0
> Reporter: Alexander Veit
> Priority: Major
> Labels: security
> Fix For: 9.10
>
>
> {{org.eclipse.jetty.http2:http2-common:11.0.22}} which is included in Solr
> 9.9.0 comes with CVE-2025-5115 (Score 7.7).
> [https://nvd.nist.gov/vuln/detail/CVE-2025-5115]
> Possible solution: {{http2-common:11.0.26}}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
