Details
-
Improvement
-
Status: Resolved
-
Minor
-
Resolution: Fixed
-
None
Description
SolrJ 8.11.1 depends on Woodstox 6.2.4 for XML parsing. Woodstox should be upgraded to 6.5.0 to mitigate CVE-2022-40152, related to potential resource exhaustion when DTD parsing is enabled.
Attachments
Issue Links
- links to
