OSV-2022-260

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/fluent-bit/OSV-2022-260.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-260
Published
2022-03-19T00:01:34.875264Z
Modified
2022-04-13T03:04:38.402999Z
Summary
Heap-double-free in read_config
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45687

Crash type: Heap-double-free
Crash state:
read_config
flb_cf_fluentbit_create
flb_cf_create_from_file
References

Affected packages

OSS-Fuzz / fluent-bit

Package

Name
fluent-bit
Purl
pkg:generic/fluent-bit

Affected ranges

Type
GIT
Repo
https://github.com/fluent/fluent-bit/
Events
Introduced
42b2d0ec7e8139b7e1f5724b18d83c4e7e450e5f
Fixed
cee783e53b96e445983a667ba51da087df14e472

Ecosystem specific 

{
    "severity": "HIGH"
}