Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2025-12970
Vulnerability Description
The extract_name function in Fluent Bit in_docker input plugin copies container names into a fixed size stack buffer without validating length. An attacker who can create containers or control container names, can supply a long name that overflows the buffer, leading to process crash or arbitrary code execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fluent Bit 安全漏洞
Vulnerability Description
Fluent Bit是Fluent开源的一款使用C语言编写的开源日志处理和分析系统。 Fluent Bit存在安全漏洞,该漏洞源于未验证容器名称长度,可能导致缓冲区溢出,引发进程崩溃或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A