The move to the latest is of course usually a good idea, but sometimes
beyond risk tolerance for some customers. If the fixes are already
committed and will be in future releases, a one-off custom build that is
effectively but not officially 9.1.2 might be worth considering. Don't give
it that numb
Adding some discussions I had with @jan...@apache.org over
slack:
"Your client should be aware that they are vulnerable to a bunch of CVEs if
they stay on 9.1. See
https://solr.apache.org/security.html#cve-2023-50292-apache-solr-schema-designer-blindly-trusts-all-configsets-possibly-leading-to-rc
Hi all,
I managed to secure a sponsorship to work on a bug that impacted the
Learning To Rank module (re-scoring was ignoring query limits and time
allowed, causing outages and crashes).
The contribution has been merged already in 10, 9.x and 9.1:
https://issues.apache.org/jira/browse/SOLR-17018
I
