Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2015-08-05 elasticsearch -- directory traversal attack via snapshot API
elasticsearch -- remote code execution via transport protocol
2015-06-26 elasticsearch -- cross site scripting vulnerability in the CORS functionality
elasticsearch -- directory traversal attack with site plugins
elasticsearch -- remote OS command execution via Groovy scripting engine
elasticsearch -- security fix for shared file-system repositories
elasticsearch and logstash -- remote OS command execution via dynamic scripting