Elasticsearch Vulnerability Patches

Hi Experts ,

I was checking below document
https://www.elastic.co/community/security

Here I saw Vulnerability Summary along with the Remediation. Generally it asks to upgrade to 6.X or to the latest release . My concern here is what if I am not in position to upgrade my entire stack can this CVE be separately installed as a patch ?

Just for an example CVE-2018-3827 is really important in my case but as a remediation I need to upgrade to 6.3 . Is there any other alternate ?

Regrads
Vikas

Hello @vikas_gopal,

Thank you for raising this. The aforementioned issue is also fixed in 5.6.10, we will make sure to update our notes.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.