3 matches found
CVE-2026-41178 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-cloudsearch-fips, crossplane-provider-azure-network, velero, cluster-autoscaler, gitlab-rails-ce-fips, k8s-image-swapper, gcp-compute-persistent-disk-csi-driver-fips, seaweedfs, commercial-expanso-edge, crossplane-provider-azure-solutions,...
CVE-2026-41178 vulnerabilities
Vulnerabilities for packages: secrets-store-csi-driver, cadvisor, harbor-cli, hubble-ui, amazon-cloudwatch-agent-operator, fluent-operator, aws-otel-collector, kuberay-operator, cluster-api-gcp-controller, external-dns, tw, crossplane-provider-azure-sql, cluster-autoscaler, jaeger-operator,...
UBUNTU-CVE-2026-41178
OpenTelemetry-Go is the Go implementation of OpenTelemetry. Versions 1.41.0 and 1.43.0 removed raw-length rejection and it causes Parse to process arbitrarily large/invalid baggage headers and log errors, enabling DoS via oversized inputs. Versions 1.42.0 and 1.44.0 fix the issue...