Multiple vulnerabilities were found in Solr, an open source enterprise search server based on Lucene, resulting in information disclosure or code execution.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2963-1                   This email address is being protected from spambots. You need JavaScript enabled to view it.
http://www.debian.org/security/                        Moritz Muehlenhoff
June 17, 2014                          http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : lucene-solr
CVE ID         : CVE-2013-6397 CVE-2013-6407 CVE-2013-6408

Multiple vulnerabilities were found in Solr, an open source enterprise 
search server based on Lucene, resulting in information disclosure or 
code execution.

For the stable distribution (wheezy), these problems have been fixed in
version 3.6.0+dfsg-1+deb7u1.

For the testing distribution (jessie), these problems have been fixed in
version 3.6.2+dfsg-2.

For the unstable distribution (sid), these problems have been fixed in
version 3.6.2+dfsg-2.

We recommend that you upgrade your lucene-solr packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.