Support for Fluent Bit 3.2.7
Users will now receive Fluent Bit version 3.2.7, which includes fixes for known vulnerabilities. For more details, refer https://fluentbit.io/announcements/.
Security
Previous versions of Fluent Bit in the 3.1 and 3.2 series are affected by two security vulnerabilities if customers use the OpenTelemetry input plugin or Prometheus Remote Write input. The identified vulnerabilities are: CVE-2024-50608, CVE-2024-50609.
By default, New Relic does not include these plugins in our distribution of the Fluent Bit packages in any of the instrumentation packages we provide. However, in order to support customers using these plugins and mitigate any potential impact, we recommend customers to upgrade to the latest available versions of these packages:
Hosts:
- Windows: Infrastructure Agent upgraded to v1.62.0 or later
- Linux: Infrastructure Agent upgraded to v1.62.0 or later
Kubernetes:
- newrelic-logging upgraded to v1.26.1
- nri-bundle upgraded to v5.0.115
Fluent Bit:
- New Relic Fluent Bit Output Docker Image upgraded to v2.3.0
Notes
To stay up to date with the most recent fixes and enhancements, subscribe to our Logs RSS feed.
Fluent Bit 3.2.7 지원
이제 사용자는 Fluent Bit 버전 3.2.7을 받게 됩니다. 알려진 취약점에 대한 수정 사항이 포함되어 있습니다. 자세한 내용은 https://fluentbit.io/announcements/를 참조하세요.
보안
Fluent Bit의 이전 버전 3.1 및 3.2 시리즈는 고객이 OpenTelemetry 입력 플러그인 이나 Prometheus Remote Write 입력을 사용할 경우 두 가지 보안 취약점의 영향을 받습니다. 식별된 취약점은 CVE-2024-50608, CVE-2024-50609 입니다.
기본적으로 뉴렐릭은 당사가 제공하는 모든 측정 및 데이터베이스 패키지의 Fluent Bit 패키지 배포에 이러한 플러그인을 포함하지 않습니다. 그러나 이러한 플러그인을 사용하는 고객을 지원하고 잠재적 영향을 완화하기 위해 고객에게 다음 패키지의 최신 버전으로 업그레이드하는 것이 좋습니다.
호스트:
- Windows: 에이전트 에이전트가 v1.62.0 이상으로 업그레이드되었습니다.
- Linux: 에이전트 에이전트가 v1.62.0 이상으로 업그레이드되었습니다.
쿠버네티스:
- newrelic-logging이 v1.26.1로 업그레이드되었습니다.
- nri-bundle이 v5.0.115로 업그레이드되었습니다.
Fluent Bit:
- 뉴렐릭 Fluent Bit Output 도커 이미지가 v2.3.0으로 업그레이드되었습니다.
Notes
최신 수정 사항과 개선 사항에 대한 최신 정보를 받으려면 로그 RSS 피드 를 구독하세요.
Support for Fluent Bit 3.2.2
Users will now receive Fluent Bit version 3.2.2, which includes fixes for known vulnerabilities. For more details, refer https://fluentbit.io/announcements/.
Changed
- Infrastructure agent recommends Fluent Bit 3.2.2 packages.
- Fluent Bit Output Plugin Docker image uses Fluent Bit 3.2.2.
- New Relic Logging Helm chart installs the new plugin image (newrelic-logging chart version 1.25.1)
Notes
To stay up to date with the most recent fixes and enhancements, subscribe to our Logs RSS feed.
Support for Fluent Bit 3.1.9
Users will now receive Fluent Bit version 3.1.9, which includes fixes for known vulnerabilities. For more details, refer https://fluentbit.io/announcements/.
Changed
- Infrastructure agent recommends Fluent Bit 3.1.9 packages.
- Fluent Bit Output Plugin Docker image uses Fluent Bit 3.1.9.
- New Relic Logging Helm chart installs the new plugin image (newrelic-logging chart version 1.24.0).
Notes
To stay up to date with the most recent fixes and enhancements, subscribe to our Logs RSS feed.
Support for Fluent Bit 3.1.2
Users will now receive Fluent Bit version 3.1.2, which includes fixes for known vulnerabilities. For more details, refer https://fluentbit.io/announcements/.
Changed
- Infrastructure agent recommends Fluent Bit 3.1.2 packages.
- Fluent Bit Output Plugin Docker image uses Fluent Bit 3.1.2.
- New Relic Logging Helm chart installs the new plugin image.
Notes
To stay up to date with the most recent fixes and enhancements, subscribe to our Logs RSS feed.