Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Feb 10, 2021· Updated Aug 3, 2024

CVE-2021-27186

CVE-2021-27186

Description

Fluent Bit 1.6.10 has a NULL pointer dereference when an flb_malloc return value is not validated by flb_avro.c or http_server/api/v1/metrics.c.

Affected products

2

Fluent Bit/Fluent Bitdescription
osv-coords
pkg:bitnami/fluent-bit
Range: >= 1.6.10, < 1.6.11

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

github.com/fluent/fluent-bit/issues/3044mitrex_refsource_MISC
github.com/fluent/fluent-bit/pull/3045mitrex_refsource_MISC
github.com/fluent/fluent-bit/pull/3047mitrex_refsource_MISC

News mentions

0

No linked articles in our index yet.