234 matches found
CLEANSTART-2026-AV21509 Security fixes for CVE-2026-27145, CVE-2026-33816, CVE-2026-34986, CVE-2026-39821, CVE-2026-39824, CVE-2026-39883, CVE-2026-41602, CVE-2026-42504, CVE-2026-42507, CVE-2026-46595, ghsa-6g7g-w4f8-9c9x, ghsa-p77j-4mvh-x3m3, ghsa-xmrv-pmrh-hhx2 applied in versions: 0.144.0-r3, 0.144.0-r4, 0.150.0-r0, 0.150.0-r1
Multiple security vulnerabilities affect the opentelemetry-collector-contrib package. These issues are resolved in later releases. See references for individual vulnerability details...
opentelemetry-collector security update
An update is available for opentelemetry-collector. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Collector with the supported components for a Rocky Enterpri...
MiracleLinux 9 : opentelemetry-collector-0.144.0-2.el9_8 (AXSA:2026-1213:03)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2026-1213:03 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go:...
RHSA-2026:34359 Red Hat Security Advisory: opentelemetry-collector security update
Bulletin has no description...
RHSA-2026:34357 Red Hat Security Advisory: opentelemetry-collector security update
Bulletin has no description...
Important: Red Hat Security Advisory: opentelemetry-collector security update
An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Important: Red Hat Security Advisory: opentelemetry-collector security update
An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: frankenphp-8.5, telegraf, flux-fips, helm, flux-image-automation-controller-fips, aactl, etcd-fips, gatekeeper-fips, osv-scanner, seaweedfs-rocksdb, prometheus-elasticsearch-exporter, zarf, upwind-agent, k9s-fips, knative-kafka-broker-fips, rancher, containerd, kuma,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: flux, kots, kubernetes-dashboard, istio, chisel, kaf, k9s, trivy, gitea, vitess, cert-manager, rancher, snyk-cli, argo-cd, rancher-agent, zot, kubernetes, telegraf, osv-scanner, cloud-provider-aws, flux-image-automation-controller, containerd, loki, nerdctl,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure-sql, kubernetes-dashboard, age, kaf, gomplate, slsa-verifier, buildah, act, argo-events, cosign, docker-machine-driver-harvester, gptscript, nuclei, rancher, gatus, zot, cluster-api-azure-controller, grype, kubernetes, cloud-provider-aws,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: flux, kots, kubernetes-dashboard, istio, kaf, buildah, vitess, cert-manager, rancher, snyk-cli, argo-cd, rancher-agent, zot, kubernetes, cloud-provider-aws, containerd, loki, nerdctl, cilium-cli, k3s, kine, podman, helm, spire-server, external-dns, minio, gitlab-kas,...
GO-2026-5544 opentelemetry-collector-contrib's azureauthextension Authenticate method does not validate bearer tokens, allowing auth bypass via replay in github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension
opentelemetry-collector-contrib's azureauthextension Authenticate method does not validate bearer tokens, allowing auth bypass via replay in github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector-contrib: opentelemetry-collector-contrib-0.155.0-0.1.hum1 aarch64, x8664 opentelemetry-collector-contrib-0.155.0-0.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector-contrib: opentelemetry-collector-contrib-0.153.0-1.hum1 aarch64, x8664 opentelemetry-collector-contrib-0.153.0-1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector: opentelemetry-collector-0.153.0-1.hum1 aarch64, x8664 opentelemetry-collector-0.153.0-1.hum1.src src...
CLEANSTART-2026-MC76610 Security fixes for CVE-2026-27145, CVE-2026-33816, CVE-2026-34986, CVE-2026-39821, CVE-2026-39824, CVE-2026-39883, CVE-2026-41602, CVE-2026-42504, CVE-2026-42507, CVE-2026-46595, ghsa-6g7g-w4f8-9c9x, ghsa-p77j-4mvh-x3m3, ghsa-xmrv-pmrh-hhx2 applied in versions: 0.144.0-r3, 0.144.0-r4, 0.150.0-r0, 0.150.0-r1
Multiple security vulnerabilities affect the opentelemetry-collector-contrib package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-27136 vulnerabilities
Vulnerabilities for packages: step, flux, grafana-pyroscope, kots, istio, hydra, kubernetes-dashboard, gitea, gptscript, step-issuer, vale, vitess, karpenter, argo-cd, snyk-cli, zot, ingress-nginx-controller, kubernetes, traefik, fq, nerdctl, k3s, kine, terraform-provider-acme, hubble, helm, mini...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: step, flux, grafana-pyroscope, kots, istio, hydra, kubernetes-dashboard, gitea, gptscript, step-issuer, vale, vitess, karpenter, argo-cd, snyk-cli, zot, ingress-nginx-controller, kubernetes, traefik, fq, nerdctl, k3s, kine, terraform-provider-acme, hubble, helm, mini...
GHSA-5CV4-JP36-H3MW vulnerabilities
Vulnerabilities for packages: step, flux, grafana-pyroscope, kots, istio, hydra, kubernetes-dashboard, gitea, gptscript, step-issuer, vale, vitess, karpenter, argo-cd, snyk-cli, zot, ingress-nginx-controller, kubernetes, traefik, fq, nerdctl, k3s, kine, terraform-provider-acme, hubble, helm, mini...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: step, flux, grafana-pyroscope, kots, istio, hydra, kubernetes-dashboard, gitea, gptscript, step-issuer, vale, vitess, karpenter, argo-cd, snyk-cli, zot, ingress-nginx-controller, kubernetes, traefik, fq, nerdctl, k3s, kine, terraform-provider-acme, hubble, helm, mini...