CGA-9375-qwvv-6hqp

Published

Last updated

Package

logstash-jre-bcfips

Repository

Chainguard

Latest Update

Fixed

Fixed Version

8.14.2-r0

Aliases

Severity

4.5

Medium

CVSS V3

Status

Fixed

Fixed version

8.14.2-r0

Status

Pending upstream fix

Impact

Logstash bundles an upstream version of jruby. Upstream jruby should fix this vulnerability as it updates its default gems on the next release.

Status

Under investigation

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™