FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
23232028-1ba4-11e5-b43d-002590263bf5	elasticsearch -- security fix for shared file-system repositories Elastic reports: Vulnerability Summary: All Elasticsearch versions from 1.0.0 to 1.5.2 are vulnerable to an attack that uses Elasticsearch to modify files read and executed by certain other applications. Remediation Summary: Users should upgrade to 1.6.0. Alternately, ensure that other applications are not present on the system, or that Elasticsearch cannot write into areas where these applications would read. Discovery 2015-06-09 Entry 2015-06-26 elasticsearch ge 1.0.0 lt 1.6.0 CVE-2015-4165 ports/201008 https://www.elastic.co/community/security https://www.elastic.co/blog/elasticsearch-1-6-0-released

VuXML ID

Description

23232028-1ba4-11e5-b43d-002590263bf5

elasticsearch -- security fix for shared file-system repositories

Elastic reports:

Vulnerability Summary: All Elasticsearch versions from 1.0.0 to 1.5.2 are vulnerable to an attack that uses Elasticsearch to modify files read and executed by certain other applications.

Remediation Summary: Users should upgrade to 1.6.0. Alternately, ensure that other applications are not present on the system, or that Elasticsearch cannot write into areas where these applications would read.

Discovery 2015-06-09
Entry 2015-06-26
elasticsearch

ge 1.0.0 lt 1.6.0

CVE-2015-4165
ports/201008
https://www.elastic.co/community/security
https://www.elastic.co/blog/elasticsearch-1-6-0-released