OSV-2024-1186
See a problem?- Import Source
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/fluent-bit/OSV-2024-1186.yaml
- JSON Data
- https://api.osv.dev/v1/vulns/OSV-2024-1186
- Published
- 2024-10-08T00:15:47.433219Z
- Modified
- 2025-05-13T14:48:36.393777Z
- Summary
- UNKNOWN READ in cfl_sds_len
- Details
-
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=371659893
Crash type: UNKNOWN READ Crash state: cfl_sds_len unpack_meta_opts cmt_mpack_unpack_map - References
Affected packages
OSS-Fuzz / fluent-bit
Package
- Name
- fluent-bit
- Purl
- pkg:generic/fluent-bit
Affected ranges
- Type
- GIT
- Repo
- https://github.com/fluent/fluent-bit/
- Events
-
IntroducedIntroducedFixed
Affected versions
v2.*
v2.1.10
v2.1.5
v2.1.5-windows-artifact-fix
v2.1.6
v2.1.7
v2.1.8
v2.1.9
v2.2.0
v2.2.1
v2.2.2
v2.2.3
v3.*
v3.0.0
v3.0.1
v3.0.2
v3.0.3
v3.0.4
v3.0.5
v3.0.6
v3.0.7
v3.1.0
v3.1.1
v3.1.10
v3.1.2
v3.1.3
v3.1.4
v3.1.5
v3.1.6
v3.1.7
v3.1.8
v3.1.9
v3.2.0
v3.2.1
v3.2.10
v3.2.2
v3.2.3
v3.2.4
v3.2.5
v3.2.6
v3.2.7
v3.2.8
v3.2.9
v4.*
v4.0.0
v4.0.1
Database specific
fixed_range
"5905ddcb41839ba94ae430e8c10812bc89cde14b:3c8f9f27e3960de4d5ee937565943f724ff1a1e6"
introduced_range
"eabc1a10d817772dc04187201bd32d27bcc3dac6:a2105c2c2549f3a2a7e3fc61a9da72544dba2afa"
source
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/fluent-bit/OSV-2024-1186.yaml"