Elasticsearch Vulnerability Patches

(Vikas Gopal) #1

Hi Experts ,

I was checking below document

Here I saw Vulnerability Summary along with the Remediation. Generally it asks to upgrade to 6.X or to the latest release . My concern here is what if I am not in position to upgrade my entire stack can this CVE be separately installed as a patch ?

Just for an example CVE-2018-3827 is really important in my case but as a remediation I need to upgrade to 6.3 . Is there any other alternate ?


(Ioannis Kakavas) #2

Hello @vikas_gopal,

Thank you for raising this. The aforementioned issue is also fixed in 5.6.10, we will make sure to update our notes.

(system) #3

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.