Apache Solr

The Solr PMC is pleased to announce the release of Apache Solr 9.9.0. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …

The Solr PMC is pleased to announce the release of Apache Solr 9.8.1. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …

Severity moderate Versions Affected Apache Solr through 9.7 Description Core creation allows users to replace "trusted" configset files with arbitrary configuration Solr instances that (1) use the "FileSystemConfigSetService" component (the default ... [More] in "standalone" or "user-managed" mode), and (2) are running without authentication and authorization are vulnerable to a sort … [Less]

Severity moderate Versions Affected Apache Solr 6.6 through 9.7.0 Description Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API. Commonly known as a "zipslip", maliciously constructed ZIP …

The Solr PMC is pleased to announce the release of Apache Solr 9.8.0. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and docker …

With Lucene 10 having been released, and therefore Lucene 8 reaching EOL, the Apache Lucene and Solr PMCs are no longer able to provide new releases for Solr 8. Solr 8.11.4 will be the last release of Solr 8. Users are strongly recommended to upgrade to Solr 9 …

Severity: Critical Versions Affected: Apache Solr 5.3.0 before 8.11.4 Apache Solr 9.0.0 before 9.7.0 Description: Improper Authentication vulnerability in Apache Solr. Solr instances using the PKIAuthenticationPlugin, which is enabled by default when Solr Authentication is used, are vulnerable to Authentication bypass. A …

Severity: Moderate Versions Affected: Apache Solr 6.6.0 before 8.11.4 Apache Solr 9.0.0 before 9.7.0 Description: Insecure Default Initialization of Resource vulnerability in Apache Solr. New ConfigSets that are created via a Restore command, which copy a configSet from the backup and give …

The Lucene and Solr PMCs are pleased to announce the release of Apache Solr 8.11.4. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes and …

The Lucene and Solr PMCs are pleased to announce the release of Apache Solr 8.11.4. Solr is the blazing-fast, open source, multi-modal search platform built on Apache Lucene. It powers full-text, vector, analytics, and geospatial search at many of the world's largest organizations. Other major features include Kubernetes …