231 matches found
RHSA-2026:34359 Red Hat Security Advisory: opentelemetry-collector security update
Bulletin has no description...
RHSA-2026:34357 Red Hat Security Advisory: opentelemetry-collector security update
Bulletin has no description...
Important: Red Hat Security Advisory: opentelemetry-collector security update
An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Important: Red Hat Security Advisory: opentelemetry-collector security update
An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: knative-serving, skaffold, flux-image-automation-controller-fips, frankenphp-8.4, cert-manager, kube-arangodb-fips, kyverno, argocd-image-updater-fips, kubescape-server, flux, mattermost-fips, flux-source-controller-fips, istio, terraform, tigera-operator, minio-fips...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: containerd, nerdctl, trivy, kyverno, fscrypt, mattermost, flux-source-controller, argocd-image-updater, kubernetes-dashboard, kubescape, knative-serving, zot, k9s, prometheus, minio, loki, gitea, prometheus-operator, argo-cd, vitess, gitlab-kas, chisel, aactl, cilium...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: containerd, nerdctl, mattermost, argocd-image-updater, kubescape, scorecard, cosign, k9s, neuvector-sigstore-interface, gitea, kargo, eksctl, syft, splunk-otel-collector, go-discover, cert-manager, step, external-secrets-operator, flux-notification-controller, glab,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: containerd, nerdctl, kyverno, fscrypt, mattermost, kubernetes-dashboard, knative-serving, buildah, docker-cli-buildx, zot, prometheus, minio, loki, vitess, prometheus-operator, argo-cd, gitlab-kas, aactl, cilium, istio, telegraf, k3s, kots, cert-manager, external-dns...
GO-2026-5544 opentelemetry-collector-contrib's azureauthextension Authenticate method does not validate bearer tokens, allowing auth bypass via replay in github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension
opentelemetry-collector-contrib's azureauthextension Authenticate method does not validate bearer tokens, allowing auth bypass via replay in github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector-contrib: opentelemetry-collector-contrib-0.155.0-0.1.hum1 aarch64, x8664 opentelemetry-collector-contrib-0.155.0-0.1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector-contrib: opentelemetry-collector-contrib-0.153.0-1.hum1 aarch64, x8664 opentelemetry-collector-contrib-0.153.0-1.hum1.src src...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector: opentelemetry-collector-0.153.0-1.hum1 aarch64, x8664 opentelemetry-collector-0.153.0-1.hum1.src src...
CLEANSTART-2026-MC76610 Security fixes for CVE-2026-27145, CVE-2026-33816, CVE-2026-34986, CVE-2026-39821, CVE-2026-39824, CVE-2026-39883, CVE-2026-41602, CVE-2026-42504, CVE-2026-42507, CVE-2026-46595, ghsa-6g7g-w4f8-9c9x, ghsa-p77j-4mvh-x3m3, ghsa-xmrv-pmrh-hhx2 applied in versions: 0.144.0-r3, 0.144.0-r4, 0.150.0-r0, 0.150.0-r1
Multiple security vulnerabilities affect the opentelemetry-collector-contrib package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...
GHSA-CG87-VWWH-XVGJ vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...
GHSA-M9X8-M34X-FJ9Q vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...
GHSA-W9P8-PVXH-RXPJ vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...
GHSA-5CV4-JP36-H3MW vulnerabilities
Vulnerabilities for packages: nerdctl, kyverno, traefik, terraform-provider-acme, kubernetes-dashboard, crossplane-provider-aws-elasticache, crossplane-provider-azure-authorization, hydra, step-issuer, vale, zot, prometheus, minio, vitess, gitea, prometheus-operator, argo-cd, caddy, cilium, istio...