Tags: security upstream fixed-upstream
Justification: user security hole
the following vulnerabilities were published for elasticsearch.
Reporting them right now as severity grave since some details are
missed so feel free to downgrade.
Remote code execution vulnerability
Directory traversal vulnerability
If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
For further information see:
This is the maintainer address of Debian's Java team
debian-j...@lists.debian.org for discussions and questions.