CNNVD-202511-2648 Information

CNNVD ID

CNNVD-202511-2648

Related CVE

CVE-2025-12970

• CNNVD Published: 2025-11-24

Description (Chinese)

Fluent Bit是Fluent开源的一款使用C语言编写的开源日志处理和分析系统。 Fluent Bit存在安全漏洞，该漏洞源于未验证容器名称长度，可能导致缓冲区溢出，引发进程崩溃或执行任意代码。

Description (English)

Fluent Bit is an open source log processing and analysis system in the C language of the Fluent Open Source. There is a security loophole in Fluent Bit, which stems from the unverified length of the container name, which could lead to a spill over the buffer zone, trigger a process collapse or enforce any code.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Fluent

Published

2025-11-24

Last Modified

2026-02-24

References

https://fluentbit.io/announcements/v4.1.0/ https://access.redhat.com/security/cve/cve-2025-12970

Patch

https://github.com/fluent/fluent-bit/releases