2 matches found
AZL-35440 CVE-2023-47108 affecting package docker-compose for versions less than 2.27.0-1
OpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. Starting in version 0.37.0 and prior to version 0.46.0, the grpc Unary Server Interceptor out of the box adds labels net.peer.sock.addr and net.peer.sock.port that have unbound cardinality. It leads to the...
PT-2023-28999
Name of the Vulnerable Software and Affected Versions OpenTelemetry versions prior to 0.41b0 Description OpenTelemetry is a vendor-neutral open-source Observability framework for instrumenting, generating, collecting, and exporting telemetry data. The autoinstrumentation feature adds the label ht...