github-mirrors/kibana
1
0
Fork 0
mirror of https://github.com/elastic/kibana.git synced 2025-04-24 17:59:23 -04:00
Code Issues Projects Releases Packages Wiki Activity

[DOCS] Adds security update to 7.7.1 release notes (#68114)

Browse source 
* [DOCS] Adds security update to 7.1.1 release notes

* Change 7.1.1 to 7.7.1
This commit is contained in:
Kaarina Tungseth 2020-06-03 11:53:00 -05:00 committed by GitHub
parent 01b2909fe2
commit a0df4d15c1
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

11
docs/CHANGELOG.asciidoc
View file

@ -10,7 +10,7 @@
This section summarizes the changes in each release.
*<<release-notes-7.7.1>>
* <<release-notes-7.7.1>>
* <<release-notes-7.7.0>>
* <<release-notes-7.6.2>>
* <<release-notes-7.6.1>>
@ -42,6 +42,15 @@ This section summarizes the changes in each release.
See <<breaking-changes-7.7,breaking changes in 7.7>>.
[float]
[[security-update-7.1.1]]
=== Security update
In {kib} 5.4.0 and later, TSVB visualizations contain a stored XSS flaw. Attackers that can
edit and create TSVB visualizations can obtain sensitive information, or perform
destructive actions, on behalf of the {kib} users who edit the TSVB visualization, CVE-2020-7015.
You must upgrade to 7.7.1. If you are unable to upgrade, set `metrics.enabled:false` in your kibana.yml file to disable TSVB.
[float]
[[bug-7.7.1]]
=== Bug fixes