Lucene Package Update to Address CVE-2024-43383 (#17942)

* Update Lucene Package to 4.8.0-beta00017 * Add Package Reference --------- Co-authored-by: Sebastiaan Janssen <sebastiaan@umbraco.com>
2025-01-20 03:04:02 -06:00
parent 7552e315fb
commit 25628a8b76
2 changed files with 5 additions and 1 deletions
--- a/src/Umbraco.Examine.Lucene/Umbraco.Examine.Lucene.csproj
+++ b/src/Umbraco.Examine.Lucene/Umbraco.Examine.Lucene.csproj
@@ -10,6 +10,8 @@
    <PackageReference Include="Examine" />
    <!-- Take top-level depedendency on System.Security.Cryptography.Xml, because Examine depends on a vulnerable version -->
    <PackageReference Include="System.Security.Cryptography.Xml" />
+    <!-- Take top-level depedendency on Lucene.Net.Replicator-->
+    <PackageReference Include="Lucene.Net.Replicator" />
  </ItemGroup>

  <ItemGroup>