You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The log4j DoS and data exfiltration vulnerability (CVE-2021-44228 and CVE-2021-45046) has been fixed in Elasticsearch versions 7.16.2 and newer. However the current version of search-highlighter requires Elasticsearch 7.10.2 which will likely not be updated to fix the vulnerability. Are there any plans to make such a huge version jump?
The text was updated successfully, but these errors were encountered:
The log4j DoS and data exfiltration vulnerability (CVE-2021-44228 and CVE-2021-45046) has been fixed in Elasticsearch versions 7.16.2 and newer. However the current version of search-highlighter requires Elasticsearch 7.10.2 which will likely not be updated to fix the vulnerability. Are there any plans to make such a huge version jump?
The text was updated successfully, but these errors were encountered: