CVE-2020-27223, GHSA-m394-8rww-3jr7
maven/org.apache.solr/solr-core
Uncontrolled Resource Consumption
When Jetty handles a request containing multiple Accept
headers with a large number of quality
(i.e., q
) parameters, the server may enter a denial of service (DoS) state due to high CPU usage processing those quality values, resulting in minutes of CPU time exhausted processing those quality values.
Version 8.8.1
Upgrade to version 8.8.2 or above.
2021-09-20
source |