Elasticseach JDK and sql-cli vulnerability mitigation

truptir · June 1, 2022, 12:37pm

Hi,

I'm using Elastic Version - 7.6.0, as per the vulnerability scan below 2 are impacted.

Is there a way to just upgrade only these 2 libs as a quick fix, not the whole elastic version coz it will take some time?

warkolm · June 1, 2022, 9:37pm

Also 7.6 is EOL, you need to upgrade.

truptir · June 2, 2022, 8:16am

Is this possible to upgrade only JDK and remove sql-cli lib?

system · June 30, 2022, 8:17am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Error with sql-cli jar Elasticsearch elastic-stack-sql	2	536	April 20, 2023
Elasticsearch Sql CLI Not working Elasticsearch elastic-stack-sql	3	23	August 28, 2024
Elasticsearch-sql-cli jar and log4j vulnerabilty Elasticsearch	2	769	March 17, 2022
Some vulnerabilities in Elasticsearch v7.16.3 x-pack, Elasticsearch sql cli 7.16.3, plugin cli, security cli Elasticsearch	4	264	April 20, 2022
151209 (4) - OpenJDK 7 <= 7u281 / 8 <= 8u272 / 11.0.0 <= 11.0.9 / 13.0.0 <= 13.0.5 / 15.0.0 <= 15.0.1 Vulnerability (2021-01-19) Elasticsearch	8	852	February 17, 2023