CVE-2021-36088

描述

Fluent Bit (aka fluent-bit) 1.7.0 through 1.7.4 has a double free in flb_free (called from flb_parser_json_do and flb_parser_do).

受影響套件(1)

• Bitnami/fluent-bit>= 1.7.0, < 1.7.5

CVSS 分數

參考連結(5)

• WEBhttps://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33750
• WEBhttps://github.com/fluent/fluent-bit/commit/22346a74c07ceb90296be872be2d53eb92252a54
• WEBhttps://github.com/fluent/fluent-bit/pull/3453
• WEBhttps://github.com/google/oss-fuzz-vulns/blob/main/vulns/fluent-bit/OSV-2021-702.yaml
• WEBhttps://nvd.nist.gov/vuln/detail/CVE-2021-36088