fluent bit

A low-level parsing bug in Fluent Bit’s HTTP input has been cataloged as CVE‑2024‑23722 and quietly but decisively demonstrates how a small string-validation lapse can turn a ubiquitous telemetry agent into a reliable denial‑of‑service trigger for observability pipelines. The vulnerability...

A critical heap-based memory corruption bug in Fluent Bit’s built-in HTTP server — tracked as CVE-2024-4323 — lets unauthenticated network actors trigger crashes, leak internal data, and, in specific environments, potentially execute code. Fluent Bit maintainers published a patch in Fluent Bit...

A newly cataloged vulnerability, CVE-2025-29478, in Fluent Bit v3.7.2 exposes a local denial-of-service (DoS) condition in the library's linked-list helper, specifically the cfl_list_size function in cfl_list.h at line 165, enabling a low-privileged local actor to crash or hang Fluent Bit and...

A stack-buffer overflow in Fluent Bit’s Docker input plugin has been cataloged as CVE-2025-12970, and it’s the kind of flaw that turns a seemingly innocuous container name into a potential foothold for attackers. The vulnerability stems from the in_docker plugin’s extract_name routine copying...

CVE-2025-12977 exposes a critical tag‑handling vulnerability in Fluent Bit that can let unauthenticated remote actors manipulate, reroute, and corrupt logging pipelines by supplying crafted tag values. Overview — the short story What it is: a flaw in Fluent Bit’s input plugins (notably in_http...

A critical unauthenticated data-injection flaw in Fluent Bit’s forward input plugin has been publicly cataloged as CVE-2025-12969; the bug lets an attacker who can reach a Fluent Bit forward listener send unauthenticated records by bypassing the configured security.users control, enabling forged...