FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
fbca6863-e2ad-11ea-9d39-00a09858faf5textproc/elasticsearch6 -- field disclosure flaw

Elastic reports:

A field disclosure flaw was found in Elasticsearch when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attacker gaining additional permissions against a restricted index.


Discovery 2020-08-19
Entry 2020-08-20
elasticsearch6
< 6.8.12

CVE-2020-7019
https://discuss.elastic.co/t/elastic-stack-7-9-0-and-6-8-12-security-update/245456
https://github.com/elastic/elasticsearch/pull/39490