20 at 7:35 PM Shawn Heisey wrote:
> On 7/24/2020 2:35 PM, Man with No Name wrote:
> > This version of jackson is pulled in as a shadow jar. Also solr is using
> > io.netty version 4.1.29.Final which has critical vulnerabilities which
> > are fixed in 4.1.44.
>
> It looks
Any help on this.?
On Wed, Jul 22, 2020 at 4:25 PM Man with No Name
wrote:
> The image is pulled from docker hub. After scanning the image from docker
> hub, without any modification, this is the list of CVE we're getting.
>
>
> Image ID CVE
aded to 2.10.0 in Solr 8.4.
>
> > On Jul 21, 2020, at 2:59 PM, Man with No Name
> wrote:
> >
> > Hey Guys,
> > Our team is using Solr 8.4.1 in a kubernetes cluster using the public
> image
> > from docker hub. The containers before getting deployed to the clust
Hey Guys,
Our team is using Solr 8.4.1 in a kubernetes cluster using the public image
from docker hub. The containers before getting deployed to the cluster
get whitescanned and it lists all the CVEs in the container. This is list
of CVE we have for Solr
CVE-2020-11619, CVE-2020-11620, CVE-2020-88
