GHSA-5jrp-w8fr-mrww

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-5jrp-w8fr-mrww/GHSA-5jrp-w8fr-mrww.json
Aliases
  • CVE-2017-10906
Published
2022-05-13T01:07:35Z
Modified
2023-01-31T02:29:47.480946Z
Details

Escape sequence injection vulnerability in Fluentd versions 0.12.29 through 0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands on the device via unspecified vectors.

References

Affected packages

RubyGems / fluentd

fluentd

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0.12.29
Fixed
0.12.41

Affected versions

0.*

0.12.29
0.12.30
0.12.31
0.12.32
0.12.33
0.12.34
0.12.35
0.12.36
0.12.37
0.12.38
0.12.39
0.12.40