Opendistro exact version check?

General Feedback
,
1

Opendistro exact version check?

Is there a way to confirm exactly which version of OpenDistro we’re utilizing? I upgraded to latest yesterday, but none of the usual methods of version checking really make it clear I’m on the version that addresses CVE-2021-44228, which is 1.13.3, ala 7.10.2.

1.13.3 Adds security measures that patch the CVE-2021-44228 vulnerability, which affects the log4j library. 11 December 2021 7.10.2

1.13.2 Adds Trace Analytics plugin to Kibana. Includes bug fixes for ISM, Kibana reports, Kibana notebooks, and SQL. 7 April 2021 7.10.2

1.13.1 Fixes bugs with Performance Analyzer failing to start and the security plugin blocking requests to _cat/health. 4 March 2021 7.10.2

1.13.0 Adds ARM64 support, enhancements to SQL, asynchronous search plugin, and Historical Data Workbench for the anomaly detection plugin. Bumps Elasticsearch version. 17 February 2021 7.10.2

From kibana:

GET /_cluster/stats
“versions” : [
“7.10.2”
],

From repo:

[root@elk-stack-npr-1 ~]# yum --disablerepo=“*” --enablerepo=“elasticsearch-7.x” --showduplicates list elasticsearch-oss
Updating Subscription Management repositories.
Last metadata expiration check: 1 day, 21:35:37 ago on Tue 14 Dec 2021 01:16:35 PM CST.

Installed Packages
elasticsearch-oss.x86_64 7.10.2-1 @elasticsearch-7.x

Available Packages


elasticsearch-oss.aarch64 7.10.0-1 elasticsearch-7.x
elasticsearch-oss.x86_64 7.10.0-1 elasticsearch-7.x
elasticsearch-oss.aarch64 7.10.1-1 elasticsearch-7.x
elasticsearch-oss.x86_64 7.10.1-1 elasticsearch-7.x
elasticsearch-oss.aarch64 7.10.2-1 elasticsearch-7.x
elasticsearch-oss.x86_64 7.10.2-1 elasticsearch-7.x

2

From Kibana with the command

GET /

Output:

{
  "name" : "opensearch-48-54",
  "cluster_name" : "opensearch-dev",
  "cluster_uuid" : "mXVqNzesTySrY0wW1SwWUw",
  "version" : {
    "distribution" : "opensearch",
    "number" : "1.2.3",
    "build_type" : "tar",
    "build_hash" : "8a529d77c7432bc45b005ac1c4ba3b2741b57d4a",
    "build_date" : "2021-12-21T01:36:21.407473Z",
    "build_snapshot" : false,
    "lucene_version" : "8.10.1",
    "minimum_wire_compatibility_version" : "6.8.0",
    "minimum_index_compatibility_version" : "6.0.0-beta1"
  },
  "tagline" : "The OpenSearch Project: https://opensearch.org/"
}

With output above, I guess that is enough information for you :laughing:

3

How can we check this if we are using a legacy Elasticsearch version (e.g. 7.9.1) with OpenDisto? When I try this it doesn’t show the version

GET /

The results are

{
  "name" : "e57b0ddd2ac5c3738c42bf9dd5782b59",
  "cluster_name" : "12345678:my-test",
  "cluster_uuid" : "aT47rMgaS6mQfxGgKx_kNQ",
  "version" : {
    "number" : "7.9.1",
    "build_flavor" : "oss",
    "build_type" : "tar",
    "build_hash" : "unknown",
    "build_date" : "2022-07-20T08:02:21.076464Z",
    "build_snapshot" : false,
    "lucene_version" : "8.6.2",
    "minimum_wire_compatibility_version" : "6.8.0",
    "minimum_index_compatibility_version" : "6.0.0-beta1"
  },
  "tagline" : "You Know, for Search"
}

(this is a cluster on AWS-managed Elasticsearch)