FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
fbca6863-e2ad-11ea-9d39-00a09858faf5textproc/elasticsearch6 -- field disclosure flaw

Elastic reports:

A field disclosure flaw was found in Elasticsearch when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attacker gaining additional permissions against a restricted index.


Discovery 2020-08-19
Entry 2020-08-20
elasticsearch6
lt 6.8.12

CVE-2020-7019
https://discuss.elastic.co/t/elastic-stack-7-9-0-and-6-8-12-security-update/245456
https://github.com/elastic/elasticsearch/pull/39490