FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

kibana4 -- XSS vulnerability

Affected packages
kibana4 < 4.1.4
kibana41 < 4.1.4
kibana42 < 4.2.2
kibana43 < 4.3.1

Details

VuXML ID a7a4e96c-ba50-11e5-9728-002590263bf5
Discovery 2015-12-17
Entry 2016-01-13

Elastic reports:

Fixes XSS vulnerability (CVE pending) - Thanks to Vladimir Ivanov for responsibly reporting.

References

FreeBSD PR ports/205961
FreeBSD PR ports/205962
FreeBSD PR ports/205963
URL https://www.elastic.co/blog/kibana-4-3-1-and-4-2-2-and-4-1-4