[ALSA-2025:12831] Moderate: opentelemetry-collector security update
Type:
security
Severity:
moderate
Release date:
2025-08-07
Description:
Collector with the supported components for a AlmaLinux build of OpenTelemetry Security Fix(es): * net/[http:](http:) Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 opentelemetry-collector-0.127.0-1.el9_6.aarch64.rpm c0c75ddcff1368cef037efa55d879c07efc9beba4d096caa2c3ce730109db1bc
ppc64le opentelemetry-collector-0.127.0-1.el9_6.ppc64le.rpm 6947582454334e4f0cba91f548a0a6a548443d71228e9e1dd9bf62833a41e935
s390x opentelemetry-collector-0.127.0-1.el9_6.s390x.rpm 5a18773f5bfa612f98378cdacd514db449c0b844960e24e649061eb01f088841
x86_64 opentelemetry-collector-0.127.0-1.el9_6.x86_64.rpm 214cb17429b01ad398a332f8a831174aa8db471b4d3ff86754dfe51c18bfb27b
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.