parser_apache2 plugin in Fluentd v0.14.14 to v1.14.1 suffers from a regular expression denial of service (ReDoS) vulnerability. A broken apache log with a certain pattern of string can spend too much time in a regular expression, resulting in the potential for a DoS attack.
v1.14.2
Either of the following:
FLUENT_PLUGIN
or --plugin
option of fluentd).{ "nvd_published_at": "2021-10-29T14:15:00Z", "cwe_ids": [ "CWE-400" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2021-10-29T13:44:13Z" }