Candidate: CVE-2021-27905
PublicDate: 2021-04-13 07:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27905
 https://lists.apache.org/thread.html/r0ddc3a82bd7523b1453cb7a5e09eb5559517145425074a42eb326b10%40%3Cannounce.apache.org%3E
Description:
 The ReplicationHandler (normally registered at "/replication" under a Solr
 core) in Apache Solr has a "masterUrl" (also "leaderUrl" alias) parameter
 that is used to designate another ReplicationHandler on another Solr core
 to replicate index data into the local core. To prevent a SSRF
 vulnerability, Solr ought to check these parameters against a similar
 configuration it uses for the "shards" parameter. Prior to this bug getting
 fixed, it did not. This problem affects essentially all Solr versions prior
 to it getting fixed in 8.8.2.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_lucene-solr:
upstream_lucene-solr: needs-triage
precise/esm_lucene-solr: DNE
trusty_lucene-solr: ignored (out of standard support)
trusty/esm_lucene-solr: DNE
xenial_lucene-solr: ignored (end of standard support, was needs-triage)
bionic_lucene-solr: needs-triage
focal_lucene-solr: needs-triage
groovy_lucene-solr: ignored (reached end-of-life)
hirsute_lucene-solr: ignored (reached end-of-life)
impish_lucene-solr: needs-triage
jammy_lucene-solr: needs-triage
devel_lucene-solr: needs-triage