Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 27 High Severity: lucene4 Code Execution Fix Advisory

fedora
Calendar Grey November 29, 2017
Dist Fedora Esm H88
Urgent security patch for lucene4 in Fedora released to address potential code execution vulnerabilities and enhance your system's defenses efficiently.
Security fix for CVE-2017-12629

Summary

Apache Lucene is a high-performance, full-featured text search

engine library written entirely in Java. It is a technology suitable

for nearly any application that requires full-text search, especially

cross-platform.

Security fix for CVE-2017-12629

[ 1 ] Bug #1501529 - CVE-2017-12629 Solr: Code execution via entity expansion

https://bugzilla.redhat.com/show_bug.cgi?id=1501529

su -c 'dnf upgrade lucene4' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Topics%20covered

Topics Covered

security advisory high severity Fedora code execution lucene4

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 27
Version: 4.10.4
Release: 11.fc27
URL: https://lucene.apache.org/
Summary: High-performance, full-featured text search engine

Topics%20covered

Topics Covered

security advisory high severity Fedora code execution lucene4

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here