Thanks for reporting. Both CVE Jira issues from this recent release should now be public.
- Houston On Mon, Oct 21, 2024 at 3:52 PM Isabelle Giguere <igigu...@opentext.com.invalid> wrote: > Hello Solr devs; > > I'm looking for a patch or PR to fix this CVE : > https://solr.apache.org/security.html#cve-2024-45216-apache-solr-authentication-bypass-possible-using-a-fake-url-path-ending > > ASF Jira says the ticket was deleted, or I don't have permissions to view > it. > https://issues.apache.org/jira/browse/SOLR-17417 > > I am logged in and I can view other issues. So why not this one ? > > Isabelle Giguère > > > >