Instaclustr Has Released OpenSearch 2.7 to General Availability on the Instaclustr Managed Platform
OpenSearch version 2.7.0 has just been released to the Instaclustr Managed Platform. This version update includes a fix for CVE-2023-25806 as well as a few other enhancements.
CVE-2023-25806 relates to a vulnerability in the OpenSearch Security Plugin. This issue effects all version 2.x releases prior to 2.6.0, and all version 1 releases prior to 1.3.9 (version 1.3.9 has already been made available on the Instaclustr Managed Platform). You can find more information about this vulnerability here. For customers running OpenSearch, our Support team will be in contact to coordinate an upgrade to mitigate this CVE.
For more detail on enhancements included in OpenSearch version 2.7, you can read the full list of changes in the OpenSearch Project release notes. The team here at Instaclustr are particularly excited to see Searchable Snapshots move out from Experimental Features and into General Availability. We are currently building support for Searchable Snapshots and will have more news to share shortly about its release.
With the release of OpenSearch 2.7, the current OpenSearch version 2.5 will now move to “closed” as per our lifecycle policy. We recommend all customers use OpenSearch version 2.7 for their clusters on the Instaclustr Managed Platform moving forward. Customers can contact Support to arrange an upgrade today.
If you have any questions about OpenSearch, please contact our Support team who will be happy to assist you.