Escape sequence injection vulnerability in Fluentd versions 0.12.29 through 0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands on the device via unspecified vectors.
access.redhat.com/errata/RHSA-2018:2225
github.com/fluent/fluentd
github.com/fluent/fluentd/blob/v0.12/CHANGELOG.md#bug-fixes
github.com/fluent/fluentd/pull/1733
github.com/rubysec/ruby-advisory-db/blob/master/gems/fluentd/CVE-2017-10906.yml
jvn.jp/en/vu/JVNVU95124098/index.html
nvd.nist.gov/vuln/detail/CVE-2017-10906