A critical memory corruption vulnerability called 'Linguistic Lumberjack' has been discovered in Fluent Bit's HTTP server, posing risks like denial-of-service attacks, data loss, or remote code execution. This flaw affects Fluent Bit widely used in cloud and container environments like Kubernetes, Microsoft Azure, Google Cloud Platform, and Amazon Web Services. Tenable researchers identified the vulnerability (CVE-2024-4323), recommending upgrading to Fluent Bit 3
0.4 and restricting access to the vulnerable endpoint. The bug was reported on April 30 and fixed on May 15. Security experts emphasize the importance of patching and mitigation to safeguard cloud infrastructure and data against potential harm from these memory corruption vulnerabilities. ```https://www.scmagazine.com/news/memory-corruption-flaw-in-fluent-bit-could-disrupt-cloud-platforms