Fixed issues in Search

This section lists the issues that have been fixed since the previous version.

HBase Lily indexer might fail to write role log files

In certain scenarios the HBase Lily Indexer (Key-Value Store Indexer) fails to write its role log files.

Workaround: None.

Cloudera Bug ID:

CDH-82599

Processing UpdateRequest with delegation token throws NullPointerException

When using the Spark Crunch Indexer or another client application which utilizes the SolrJ API to send Solr Update requests with delegation token authentication, the server side processing of the request might fail with a NullPointerException.

Workaround:

None.

Apache Issue:

SOLR-13921

CDPD-10532: Update log4j to address CVE-2019-17571

Replaced log4j with an internal version to fix CVE-2019-17571.

CDPD-7713: Upgrade to Guava 28.1 to avoid CVE-2018-10237

Solr has been upgraded to use Guava version 28.1 to avoid CVE-2018-10237.

CDPD-4731: Upgrade hbase-indexer, Solr, and Search jetty to 9.4.x

Search now uses Jetty 9.4.26, which addresses the following CVEs: CVE‑2017‑7656, CVE‑2017‑7657,CVE‑2017‑7658, CVE‑2018‑12536, CVE‑2017‑9735, CVE‑2019‑10247.