solr: Fix CVE-2024-23944

Signed-off-by: Philippe Deslauriers <[email protected]>
wolfi-dev · Apr 5, 2024 · 7f08e10 · 7f08e10
1 parent fdada2c
commit 7f08e10
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/solr.yaml b/solr.yaml
@@ -1,7 +1,7 @@
 package:
   name: solr
   version: 9.5.0
-  epoch: 1
+  epoch: 2
   description: Apache Solr open-source search software
   copyright:
     - license: Apache-2.0
@@ -29,6 +29,7 @@ pipeline:
       tag: releases/solr/${{package.version}}
 
   - runs: |
+      sed -i -e 's|org.apache.zookeeper:\*=3.9.1|org.apache.zookeeper:\*=3.9.2|g' versions.props
       sed -i -e 's|com.jayway.jsonpath:json-path=2.8.0|com.jayway.jsonpath:json-path=2.9.0|g' versions.props
       # Resolve CVE-2024-22201
       sed -i -e 's|org.eclipse.jetty\*:\*=10.0.19|org.eclipse.jetty\*:\*=10.0.20|g' versions.props