OSV-2021-838

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/fluent-bit/OSV-2021-838.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-838
Published
2021-06-07T00:00:33.275043Z
Modified
2022-04-13T03:04:38.291023Z
Summary
Heap-use-after-free in multiline_parser_conf_file
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34960

Crash type: Heap-use-after-free READ 8
Crash state:
multiline_parser_conf_file
flb_parser_conf_file
config_fuzzer.c
References

Affected packages

OSS-Fuzz / fluent-bit

Package

Name
fluent-bit
Purl
pkg:generic/fluent-bit

Affected ranges

Type
GIT
Repo
https://github.com/fluent/fluent-bit/
Events
Introduced
03f3339594bdb472315823db78ca209b7ba319fb
Fixed
8f653c34c0dd46c39e2a5ebf9ff3fe9ec932fc4f
Fixed
ed82460da17f5a029df74503d3a5f8f69d29d3ea

Ecosystem specific 

{
    "severity": "HIGH"
}