github-mirrors/kibana
1
0
Fork 0
mirror of https://github.com/elastic/kibana.git synced 2025-04-24 01:38:56 -04:00
Code Issues Projects Releases Packages Wiki Activity

[DOCS] Adds security update to 6.8.10 release notes (#68110)

Browse source 
* [DOCS] Adds security update to 6.8.10 release notes

* Changed fix to update

Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
This commit is contained in:
Kaarina Tungseth 2020-06-03 11:49:20 -05:00 committed by GitHub
parent bd51aa1d3a
commit 4a22cbc9bd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

9
docs/CHANGELOG.asciidoc
View file

@ -100,7 +100,14 @@ This section summarizes the changes in each release.
[[release-notes-6.8.10]]
== {kib} 6.8.10
There are no changes in this release.
[float]
[[security-update-6.8.10]]
=== Security update
In {kib} 5.4.0 and later, TSVB visualizations contain a stored XSS flaw. Attackers that can
edit and create TSVB visualizations can obtain sensitive information, or perform
destructive actions, on behalf of the {kib} users who edit the TSVB visualization, CVE-2020-7015.
You must upgrade to 6.8.10. If you are unable to upgrade, set `metrics.enabled:false` in your kibana.yml file to disable TSVB.
[[release-notes-6.8.9]]
== {kib} 6.8.9