by @jakaba
18 Jun 2024

Linguistic Lumberjack - Memory corruption in Fluent Bit (CVE-2024-4323)

by @jakaba
18 Jun 2024

Linguistic Lumberjack - Memory corruption in Fluent Bit (CVE-2024-4323)

CVEs

9.8 Critical Severity

Screenshots from the blog posts

images/clxk78ti6lrsv1hokfvre37sq.jpgimages/clxk78ti6lrsv1hokfvre37sq.jpg

Summary

A critical vulnerability (CVE-2024-4323) in Fluent Bit versions 2.0.7-3.0.3, now fixed in 3.0.4, could cause memory corruption, leading to denial of service or data leaks. Widely used, Fluent Bit has over 13 billion downloads and is integral to logging in major cloud platforms.

Description

users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

64.3K

Social media links

Comments (0)