OpenDistro for ES V 1.9.0 with vulnerable components

sudhapottipati · August 28, 2020, 2:13pm

Open Distro V 1.9.0 when scanned with OSS scanning tools is showing usage of some vulnerable components.
Apache CXF3.2.2
Apache Kafkav2.0.1
Bouncy Castle Provider - FIPS1.0.1
jQuery3.4.1

is there any plan to fix them and release upgraded version?

Topic		Replies	Views
Opendistro upgrade challenge from 7.7.0(sec 1.8.0) to 7.10.2 (1.13.1) Open Source Elasticsearch and Kibana discuss , troubleshoot	2	390	March 25, 2022
Security Issues - Open Distro 1.13.3 Security	3	107	January 5, 2024
ES v7.3 not installing General Feedback	1	451	December 18, 2019
Compatibility Check Open Distro with ElasticSearch General Feedback	1	1058	May 7, 2020
Is Open Distro production ready? Open Source Elasticsearch and Kibana	5	2265	April 29, 2020

OpenDistro for ES V 1.9.0 with vulnerable components

Related Topics