[RANGER-4939] Upgrade Elasticsearch version to 7.17.24 - ASF JIRA

Agile Board

Attach files

Attach Screenshot

Add vote

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Patch Available
Priority: Major
Resolution: Unresolved
Affects Version/s: 2.5.0
Fix Version/s: 3.0.0, 2.5.0, 2.6.0
Component/s: audit
Labels:
- security

Language:
- Java

Description

Elasticsearch version 7.10.2 is affected by a high vulnerability CVE-2023-31418. You must upgrade to version 7.17.22 to fix this vulnerability.

For the moment, it is not easy to upgrade to a more current version than 7.17.22 since the Elastic API is not backwards compatible and changes the implementation a lot.

Attachments

0001-RANGER-4939-Upgrade-Elasticsearch-version-to-7.17.24.patch
27/Sep/24 09:05
3 kB
FerArribas

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: FerArribas

Reporter:: FerArribas

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 25/Sep/24 11:22

Updated:: 27/Sep/24 11:28

Time Tracking

Log work

Estimated:

336h

Remaining:

336h

Logged:

Upgrade Elasticsearch version to 7.17.24

Details

Description

Attachments

Attachments

Activity

People

Dates

Time Tracking

Agile

Slack

Issue deployment