Bug 1789513 (CVE-2019-12401) - CVE-2019-12401 solr: XML resource consumption attack via update handler
Summary: CVE-2019-12401 solr: XML resource consumption attack via update handler
Keywords:
Status: CLOSED WONTFIX
Alias: CVE-2019-12401
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1789514
Blocks: 1789515
TreeView+ depends on / blocked
 
Reported: 2020-01-09 18:11 UTC by Pedro Sampaio
Modified: 2020-01-10 16:46 UTC (History)
46 users (show)

Fixed In Version: solr 5.0
Clone Of:
Environment:
Last Closed: 2020-01-09 20:09:27 UTC
Embargoed:

Attachments (Terms of Use)

Description Pedro Sampaio 2020-01-09 18:11:54 UTC 
Solr versions 1.3.0 to 1.4.1, 3.1.0 to 3.6.2 and 4.0.0 to 4.10.4 are vulnerable to an XML resource consumption attack (a.k.a. Lol Bomb) via it's update handler. By leveraging XML DOCTYPE and ENTITY type elements, the attacker can create a pattern that will expand when the server parses the XML causing OOMs.

Upstream issue:

https://issues.apache.org/jira/browse/SOLR-13750
Comment 1 Pedro Sampaio 2020-01-09 18:12:49 UTC 
Created solr3 tracking bugs for this issue:

Affects: fedora-all [bug 1789514]
Comment 3 Product Security DevOps Team 2020-01-09 20:09:27 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2019-12401
Note You need to log in before you can comment on or make changes to this bug.