漏洞类别:Local
漏洞等级: 
漏洞信息
ElasticSearch Logstash is an open source, server-side data processing pipeline that ingests data from a multitude of sources simultaneously, transforms it, and then sends it to your favorite 'stash'.
In Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting malicious Netflow v5, Netflow v9 or IPFIX packets could perform a denial of service attack on the Logstash instance. The errors resulting from these crafted inputs are not handled by the codec and can cause the Logstash process to exit.
Affected Versions:
ElasticSearch Logstash versions prior to 2.3.3 QID Detection Logic (Authenticated):
This QID checks for the installed Logstash package
漏洞危害
A remote attacker could exploit this vulnerability to perform a denial of service attack on the Logstash instance.
解决方案
Customers are advised to upgrade to the latest version of Logstash. Refer to Logstash Downloads for more information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论