OSV-2022-1181

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-1181

Published

2022-11-18T13:02:20.167230Z

Modified

2022-11-28T00:14:28.341608Z

Summary

Heap-use-after-free in template_execute

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53469

Crash type: Heap-use-after-free READ 1
Crash state:
template_execute
msgpack_unpack_next
cb_stdout_flush

References

Affected packages

Type: GIT
Repo: https://github.com/fluent/fluent-bit/
Events: Introduced

145261858d0d7fd1bce4e7bd51c5a69dbce208cc

Fixed

b9846054287dd112e4229f24e73936c26a77e52c

Introduced

d14b203dd4108b4156acf3d9046a47c46da8f8ce

v1.*

v1.9.10

v1.9.7

v1.9.8

v1.9.9

v2.*

v2.0.0

v2.0.0-rc1

v2.0.0-rc2

v2.0.0-rc3

v2.0.0pre

v2.0.1

v2.0.2

v2.0.3

v2.0.4

v2.0.5

v2.0.6

{
    "severity": "HIGH"
}

introduced_range

"c0a764533e7087972dd75fb2f53f7350e3a983c0:9e3938ea23dd8b3d09a5ad0f6c12f3a1b6aa299c"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/fluent-bit/OSV-2022-1181.yaml"