Elasticsearch version 8.19.17

edit
IMPORTANT: This documentation is no longer updated. Refer to Elastic's version policy and the latest documentation.

Elasticsearch version 8.19.17

edit

Also see Breaking changes in 8.19.

Known issues

edit
  • The create trained model API enforces overly restrictive input limits that may reject valid requests. A change in 8.19.17 introduced caps on description, tags, prefix_strings.ingest_prefix, prefix_strings.search_prefix, input.field_names, default_field_map, and metadata. These limits are too low for some existing use cases, including the Problemchild and DGA Security integrations, which require more than the 100-field cap on input.field_names.

Bug fixes

edit
Authentication
  • Move SAML metadata resolution to background thread #144381 (issue: #138031)
ES|QL
  • Catch StackOverflowError in deeply nested RLIKE patterns #150238 (issue: #149838)
  • Catch-and-rethrow TooComplexToDeterminizeException within ESQL #137024
  • Enforce limit for max nested functions #149971
  • Fix wrong warning in expressions with unrolled multivalues #145968
ILM
  • Truncate error for ILM’s step_info instead of string #150413
Inference
  • When a streaming inference request is canceled, immediately release apache client networking resources #149987
  • [Inference API] Fix Streaming publisher shutdown race condition #150789 (issue: #150742)
Infra/Core
  • Don’t apply time zones to epoch-based timestamps #148663
  • Filter _source field names by code point #151146
  • Fix OS stats for cgroup paths containing colons #151095
Ingest Node
  • Make enterprise IP location modified date consistent with non-enterprise databases #149638
Machine Learning
  • Add extra validation in trained_model creation #150227
  • Disable partial search results for the Inference API #132362
Query Languages
  • EQL/SQL: Enforce max expression depth checks #150003
Security
  • Make Automatons wildcard code-point aware #151143
Transform
  • Honor ClusterHealth timeout when waiting for transform internal index shards #149462 (issue: #149400)

Enhancements

edit
Authorization
  • Update the built-in kibana_system role to grant manage, create_index, read, index, write, and delete privileges on the axonius.alert_finding and axonius.incident indices, replacing the previous axonius.alert_and_incident index #149797
Security
Snapshot/Restore
  • Optionally always sign S3 requests #151196

Upgrades

edit
Inference
  • Upgrade commons-lang3 version for the inference plugin #150242
Network
  • Upgrade netty to 4.1.135.Final #151099