CVE-2017-9803

Name	CVE-2017-9803
Description	Apache Solr's Kerberos plugin can be configured to use delegation tokens, which allows an application to reuse the authentication of an end-user or another application. There are two issues with this functionality (when using SecurityAwareZkACLProvider type of ACL provider e.g. SaslZkACLProvider). Firstly, access to the security configuration can be leaked to users other than the solr super user. Secondly, malicious users can exploit this leaked configuration for privilege escalation to further expose/modify private data and/or disrupt operations in the Solr cluster. The vulnerability is fixed from Apache Solr 6.6.1 onwards.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
lucene-solr (PTS)	jessie, jessie (lts)	3.6.2+dfsg-5+deb8u3	fixed
	stretch (security), stretch (lts), stretch	3.6.2+dfsg-10+deb9u3	fixed
	buster	3.6.2+dfsg-20+deb10u2	fixed
	bullseye	3.6.2+dfsg-24	fixed
	sid, trixie, bookworm	3.6.2+dfsg-26	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
lucene-solr	source	(unstable)	(not affected)

- lucene-solr <not-affected> (Introduced in 6.2)