Candidate: CVE-2012-6612
PublicDate: 2013-12-07 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6612
 https://issues.apache.org/jira/browse/SOLR-3895
 http://svn.apache.org/viewvc/lucene/dev/branches/branch_4x/solr/CHANGES.txt?view=markup
Description:
 The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache
 Solr before 4.1 allows remote attackers to have an unspecified impact via
 XML data containing an external entity declaration in conjunction with an
 entity reference, related to an XML External Entity (XXE) issue, different
 vectors than CVE-2013-6407.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_lucene-solr:
upstream_lucene-solr: needs-triage
lucid_lucene-solr: DNE
precise_lucene-solr: DNE
precise/esm_lucene-solr: DNE
quantal_lucene-solr: ignored (reached end-of-life)
raring_lucene-solr: ignored (reached end-of-life)
saucy_lucene-solr: ignored (reached end-of-life)
trusty_lucene-solr: not-affected (3.6.2+dfsg-2)
trusty/esm_lucene-solr: DNE (trusty was not-affected [3.6.2+dfsg-2])
utopic_lucene-solr: ignored (reached end-of-life)
vivid_lucene-solr: ignored (reached end-of-life)
vivid/stable-phone-overlay_lucene-solr: DNE
vivid/ubuntu-core_lucene-solr: DNE
wily_lucene-solr: ignored (reached end-of-life)
xenial_lucene-solr: not-affected (3.6.2+dfsg-2)
yakkety_lucene-solr: ignored (reached end-of-life)
zesty_lucene-solr: ignored (reached end-of-life)
artful_lucene-solr: not-affected (3.6.2+dfsg-2)
devel_lucene-solr: not-affected (3.6.2+dfsg-2)