This is an automated email from the ASF dual-hosted git repository.
git-site-role pushed a commit to branch asf-staging
in repository https://gitbox.apache.org/repos/asf/solr-site.git
The following commit(s) were added to refs/heads/asf-staging by this push:
new 8148d4c97 Automatic Site Publish by Buildbot
8148d4c97 is described below
commit 8148d4c9712b4da307346edb600edecd933b08ba
Author: buildbot <[email protected]>
AuthorDate: Thu May 16 10:48:14 2024 +0000
Automatic Site Publish by Buildbot
---
output/security.html | 11 ++++
output/solr.vex.json | 146 ++++++++++++++++++++++++++++++---------------------
2 files changed, 96 insertions(+), 61 deletions(-)
diff --git a/output/security.html b/output/security.html
index af101b8e5..c2fc4e231 100644
--- a/output/security.html
+++ b/output/security.html
@@ -997,6 +997,17 @@ Github user <code>s00py</code></p>
<td>not affected</td>
<td>Only used in Lucene Benchmarks and Solr tests.</td>
</tr>
+ <tr>
+ <td>
+<a href="https://nvd.nist.gov/vuln/detail/CVE-2023-51074";>CVE-2023-51074</a>,
GHSA-pfh2-hfmq-phg5 </td>
+ <td>
+ all
+ </td>
+ <td>
+ json-path-2.8.0.jar </td>
+ <td>not affected</td>
+ <td>The only places we use json-path is for querying (via Calcite) and
for transforming/indexing custom JSON. Since the advisory describes a problem
that is limited to the current thread, and users that are allowed to
query/transform/index are already trusted to cause load to some extent, this
advisory does not appear to have impact on the way json-path is used in
Solr.</td>
+ </tr>
</table>
</div>
</div>
diff --git a/output/solr.vex.json b/output/solr.vex.json
index d7e3fe61c..7b7ccd7c7 100644
--- a/output/solr.vex.json
+++ b/output/solr.vex.json
@@ -7,7 +7,7 @@
"name": "solr",
"version": "SNAPSHOT",
"type": "application",
- "bom-ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "bom-ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
},
"vulnerabilities": [
@@ -19,7 +19,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -31,7 +31,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -43,7 +43,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -55,7 +55,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -67,7 +67,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -79,7 +79,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -91,7 +91,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -103,7 +103,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -115,7 +115,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -127,7 +127,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -139,7 +139,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -151,7 +151,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -163,7 +163,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -175,7 +175,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -187,7 +187,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -199,7 +199,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -211,7 +211,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -223,7 +223,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -235,7 +235,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -247,7 +247,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -259,7 +259,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -271,7 +271,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -283,7 +283,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -295,7 +295,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -307,7 +307,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -319,7 +319,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -331,7 +331,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -343,7 +343,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -355,7 +355,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -367,7 +367,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -379,7 +379,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -391,7 +391,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -403,7 +403,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -415,7 +415,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -427,7 +427,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -439,7 +439,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -451,7 +451,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -463,7 +463,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -475,7 +475,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -487,7 +487,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -499,7 +499,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -511,7 +511,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -523,7 +523,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -535,7 +535,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -547,7 +547,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -559,7 +559,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -571,7 +571,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -583,7 +583,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -595,7 +595,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -607,7 +607,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -619,7 +619,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -631,7 +631,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -643,7 +643,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -655,7 +655,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -667,7 +667,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -679,7 +679,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -691,7 +691,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -703,7 +703,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -715,7 +715,7 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
},
@@ -730,7 +730,31 @@
},
"affects": [
{
- "ref": "5a7000a5-0de2-516f-8fcd-099b7cf4510b"
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
+ }
+ ]
+ },
+ {
+ "id": "CVE-2023-51074",
+ "analysis": {
+ "state": "not_affected",
+ "detail": "The only places we use json-path is for querying (via
Calcite) and for transforming/indexing custom JSON. Since the advisory
describes a problem that is limited to the current thread, and users that are
allowed to query/transform/index are already trusted to cause load to some
extent, this advisory does not appear to have impact on the way json-path is
used in Solr."
+ },
+ "affects": [
+ {
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
+ }
+ ]
+ },
+ {
+ "id": "GHSA-pfh2-hfmq-phg5",
+ "analysis": {
+ "state": "not_affected",
+ "detail": "The only places we use json-path is for querying (via
Calcite) and for transforming/indexing custom JSON. Since the advisory
describes a problem that is limited to the current thread, and users that are
allowed to query/transform/index are already trusted to cause load to some
extent, this advisory does not appear to have impact on the way json-path is
used in Solr."
+ },
+ "affects": [
+ {
+ "ref": "24c354b2-068e-5094-8552-fd058faed8dc"
}
]
}
