[RELEASE] 12.1.1

This is a security release for TYPO3 12 LTS, containing an
update of Apache Solr.

Apache Solr 9.10.1 fixes several security issues, please upgrade
your Apache Solr instance!

- CVE-2025-54988
- CVE-2026-22444
- CVE-2026-22022

Please read the release notes:
* https://docs.typo3.org/p/apache-solr-for-typo3/solr/12.1/en-us/Releases/solr-release-12-1.html
* https://github.com/TYPO3-Solr/ext-solr/releases/tag/12.1.1

---

How to Get Involved

There are many ways to get involved with Apache Solr for TYPO3:

* Submit bug reports and feature requests on GitHub
* Ask or help or answer questions in our Slack channel
* Provide patches through pull requests or review and comment on
  existing pull requests
* Go to www.typo3-solr.com or call dkd to sponsor the ongoing
development of Apache Solr for TYPO3

Support us by becoming an EB partner:
https://shop.dkd.de/Produkte/Apache-Solr-fuer-TYPO3/

or call:
+49 (0)69 - 2475218 0

Author: dkd-friedrich

Documentation/Appendix/VersionMatrix.rst

@@ -15,7 +15,7 @@ List of EXT:solr versions and the matching versions of Apache Solr and TYPO3 tha
 =========  =============  ================  =============  =================  ====================  =======================  ================================  ===============  =================
 TYPO3      EXT:solr (↻)   EXT:solrmlt (↻)   EXT:tika (↻)   EXT:solrfal ($)    EXT:solrconsole ($)   EXT:solrdebugtools ($)   EXT:solrfluidgrouping ($↺)        Apache Solr      Configset
 =========  =============  ================  =============  =================  ====================  =======================  ================================  ===============  =================
-12.4       12.1           12.0 (Ø)          12.1           12.0               12.0                  12.0                     N/A (integrated in EXT:solr)      9.10.0¹           ext_solr_12_1_0
+12.4       12.1           12.0 (Ø)          12.1           12.0               12.0                  12.0                     N/A (integrated in EXT:solr)      9.10.1¹           ext_solr_12_1_0
 =========  =============  ================  =============  =================  ====================  =======================  ================================  ===============  =================
 
 | $ - Funding contribution extensions. See: https://www.typo3-solr.com/solr-for-typo3/open-source-version/

Documentation/Releases/solr-release-11-2.rst

@@ -8,6 +8,173 @@ Releases 11.2
 ..  include:: HintAboutOutdatedChangelog.rst.txt
 
 
+Apache Solr for TYPO3 11.2.7 ELTS
+=================================
+
+This is a non-public a security release for TYPO3 10.4 ELTS.
+
+!!! Upgrade to Apache Solr 9.10.1
+---------------------------------
+
+Apache Solr 9.10.1 fixes several security issues, please upgrade your Apache Solr instance!
+
+*   CVE-2025-54988: Apache Solr extraction module vulnerable to XXE attacks via XFA content in PDFs
+*   CVE-2026-22444: Apache Solr: Insufficient file-access checking in standalone core-creation requests
+*   CVE-2026-22022: Apache Solr: Unauthorized bypass of certain "predefined permission" rules in the RuleBasedAuthorizationPlugin
+
+
+Apache Solr for TYPO3 11.2.6 ELTS
+=================================
+
+This is a non-public maintenance release for TYPO3 10.4 ELTS, containing:
+
+*   [FEATURE] Add arm64 platforms to docker-images and push to registry.dkd.de by Rafael Kähm (9a56f004a)
+*   [TASK] Allow Apache Solr 9.8.1 by Rafael Kähm (d6d6de2c7)
+*   [TASK] Set proper retention-days on actions/upload-artifact by Rafael Kähm (96b119381)
+*   Revert "[TASK] Integrate TYPO3 10.4 ELTS" by Rafael Kähm (20a596125)
+
+Apache Solr for TYPO3 11.2.5 ELTS
+=================================
+
+This is a non-public security release for TYPO3 10.4 ELTS, containing:
+
+!!![SECURITY] Update to Apache Solr 9.8.0 : CVE-2025-24814
+----------------------------------------------------------
+
+Updates EXT:solr to Apache Solr 9.8.0.
+
+Apache Solr 9.8.0 disables the possibility to load the `jar` files with `lib` directive by default,
+which was used to load jar files within the EXT:solr configsets. Apache Solr 10.0.0 will drop that functionality.
+All Apache Solr libs, modules or plugins must be configured within the main server configuration files.
+See: https://issues.apache.org/jira/browse/SOLR-16781
+
+Impact:
+~~~~~~~
+
+Docker
+""""""
+
+You can wipe the volume and start the container with v. 11.2.5+ image, but that method will wipe the index as well.
+
+See the script `EXT:solr/Docker/SolrServer/docker-entrypoint-initdb.d-as-sudo/fix-CVE-2025-24814.sh`
+
+
+Other server setups
+"""""""""""""""""""
+
+You have 2 possibilities to fix that issue in your Apache Solr Server:
+
+
+(PREFERRED) Migrate the EXT:solr's Apache Solr configuration
+''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
+
+
+Refer to https://github.com/TYPO3-Solr/ext-solr/pull/4290/files .
+
+Following 3 files are relevant:
+
+*   Changes in `<Apache-Solr data dir>/configsets/ext_solr_11_2_0_elts/conf/solrconfig.xml`
+*   Changes in `<Apache-Solr data dir>/solr.xml`
+*   Movement from `<Apache-Solr data dir>/configsets/ext_solr_11_2_0_elts/typo3lib/solr-typo3-plugin-6.0.0.jar`
+
+    *   to `<Apache-Solr data dir>/typo3lib/solr-typo3-plugin-6.0.0.jar`
+
+Steps:
+
+#.  Remove all occurrences of `<lib dir=".*` from `<Apache-Solr data dir>/configsets/ext_solr_11_2_0_elts/conf/solrconfig.xml` file.
+#.  Replace in `<Apache-Solr data dir>/solr.xml` file
+    the snipped
+
+    ..  code-block:: xml
+
+        <str name="modules">scripting</str>
+
+    by
+
+    ..  code-block:: xml
+
+         <str name="modules">scripting,analytics,analysis-extras,langid,clustering,extraction,${solr.modules:}</str>
+         <str name="allowPaths">${solr.allowPaths:}</str>
+         <str name="allowUrls">${solr.allowUrls:}</str>
+
+         <!-- TYPO3 Plugins -->
+         <str name="sharedLib">typo3lib/</str>
+#.  Move the directory from `<Apache-Solr data dir>/configsets/ext_solr_11_2_0_elts/typo3lib`
+
+    *   to `<Apache-Solr data dir>/typo3lib`
+
+
+(NOT-RECOMMENDED) Re-enable <lib> directives on Apache Solr >=9.8.0 <10.0.0
+'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
+
+
+Add following to `/etc/default/solr.in.sh` file
+
+..  code-block:: shell
+
+      SOLR_OPTS="$SOLR_OPTS -Dsolr.config.lib.enabled=true"
+
+Or do that in other ways to set the `solr.config.lib.enabled=true` to sys-props of Apache Solr Server.
+
+!!![FIX] Docker execution order issue for as-sudo tweaks
+--------------------------------------------------------
+
+This change renames the file
+
+*   from `/docker-entrypoint-initdb.d/as-sudo-tweaks.sh`
+*   to `/docker-entrypoint-initdb.d/0_as-sudo-tweaks.sh`
+
+and moves the folder
+
+*   from `/docker-entrypoint-initdb.d/as-sudo/`
+*   to `/docker-entrypoint-initdb.d-as-sudo/`
+
+to fix the execution order issue when setting the correct file permissions
+when starting the docker container, leading to a `Operation not permitted` errors.
+
+More details see:
+
+*   https://github.com/TYPO3-Solr/ext-solr/issues/3837#issuecomment-2461668377.
+*   https://github.com/TYPO3-Solr/ext-solr/pull/4219#issuecomment-2622600937
+
+Impact:
+~~~~~~~
+
+This change requires adjustments in your Docker setup, only if you modified:
+
+*   files in folder `/docker-entrypoint-initdb.d/as-sudo/`
+*   file `/docker-entrypoint-initdb.d/as-sudo-tweaks.sh`.
+
+Make sure to use:
+"""""""""""""""""
+
+*   `/docker-entrypoint-initdb.d/0_as-sudo-tweaks.sh` instead of
+
+    *   `/docker-entrypoint-initdb.d/as-sudo-tweaks.sh`
+
+*   `/docker-entrypoint-initdb.d-as-sudo` instead of
+
+    *   `/docker-entrypoint-initdb.d/as-sudo/`
+
+Upgrade to Apache Solr 9.7.0
+----------------------------
+
+This release requires Apache Solr v9.7.0+.
+
+Along with the compatibility to Solr 9.7 the dependency to SOLR_ENABLE_STREAM_BODY is removed.
+
+
+Minor changes & bugfixes
+------------------------
+
+*   [TASK] Update GitHub actions by @dkd-friedrich in #42
+*   [DOCS] Improve Solr core creation via API and other deployment parts by @dkd-kaehm & @dkd-friedrich in #42
+*   [TASK] Use relative path to typo3lib in Apache Solr config by @dkd-kaehm & @dkd-friedrich in #42
+*   [BUGFIX] Docker twaks as-sudo do not preserve the Docker image ENV by @dkd-kaehm & @dkd-friedrich in #42
+*   [BUGFIX] Docker tests suite does not contain all logs by @dkd-kaehm & @dkd-friedrich in #42
+*   [BUGFIX] docker image tests do not fail if core can not start by @dkd-kaehm & @dkd-friedrich in #42
+
+
 Release 11.2.4 ELTS
 ===================
 
@@ -172,15 +339,45 @@ awesome community. Here are the contributors to this release.
 Also a big thank you to our partners who have already concluded one of our new development participation packages such as Apache Solr EB for TYPO3 11 LTS (Feature), Apache Solr EB for TYPO3 10 LTS (Maintenance)
 or Apache Solr EB for TYPO3 9 ELTS (Extended):
 
-* ACO Ahlmann SE & Co. KG
-* avenit AG
-* b13 GmbH
-* cyperfection GmbH
-* in2code GmbH
-* Leitgab Gernot
-* medien.de mde GmbH
-* TOUMORØ
-* WIND Internet
+*   ACO Ahlmann SE & Co. KG
+*   AmedickSommer Neue Medien GmbH
+*   Causal Sarl
+*   Cobytes
+*   Columbus Interactive GmbH
+*   Connetation Web Engineering GmbH
+*   cyperfection GmbH
+*   FONDA GmbH
+*   Hochschule Niederrhein
+*   i-fabrik GmbH
+*   i-kiu motion, graphic, backend gmbh
+*   in2code
+*   Intersim AG
+*   jweiland
+*   Landeskriminalamtes Thüringen
+*   Leitgab Gernot
+*   medien.de mde GmbH
+*   MOSAIQ GmbH Glenn Kusardi
+*   NEW.EGO GmbH
+*   novotegra
+*   Pädagogische Hochschule Karlsruhe
+*   ProPotsdam GmbH
+*   proudnerds.com
+*   Provitex GmbH
+*   PSV NEO GmbH
+*   Québec.ca gouv.qc.ca
+*   Shopseam media group gmbh
+*   Shopwegewerk GmbH
+*   SOS Software Service GmbH
+*   Studio 9 GmbH
+*   techniconcept.ch
+*   tirol.gv.at Land Tirol, p.A. DVT-Daten-Verarbeitung-Tirol GmbH
+*   TOUMORØ
+*   visuellverstehen GmbH
+*   WACON Internet GmbH
+*   WE DO communication GmbH GWA
+*   we.byte GmbH
+*   webschuppen GmbH
+*   WIND Internet BV
 
 How to Get Involved
 ===================