A new version of the Fluent Bit package has been released with a fix for CVE-2024-4323. Follow the recommended procedures to update the Infrastructure agent:
Windows Infrastructure agent | On Windows, the embedded version of Fluent Bit within the Windows Infrastructure Agent has been determined to not be impacted by CVE-2024-4323. |
Linux Infrastructure agent | Upgrade the Infrastructure agent to version 1.52.3 or later, AND update Fluent Bit to version 3.0.4 or later |
Changed
- Update Fluent Bit to version 3.0.4 as a fix for CVE-2024-4323, which impacted certain prior Fluent Bit versions contained in the Infra-agent log forwarder solution.
- Bump nri-flex to v1.13.0 (https://github.com/newrelic/infrastructure-agent/pull/1860)