[ALSA-2025:15887] Moderate: opentelemetry-collector security update
Type:
security
Severity:
moderate
Release date:
2025-09-18
Description:
Collector with the supported components for a AlmaLinux build of OpenTelemetry Security Fix(es): * net/[http:](http:) Sensitive headers not cleared on cross-origin redirect in net/http (CVE-2025-4673) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 opentelemetry-collector-0.127.0-2.el9_6.aarch64.rpm 06ad78bbd46dd0581d590c18264f500ef53a36670c95fdbd8867771af953eba3
ppc64le opentelemetry-collector-0.127.0-2.el9_6.ppc64le.rpm 700dd6f4d3e2be291f448667173159802dfe766320c484a63e1c56a65deac5ab
s390x opentelemetry-collector-0.127.0-2.el9_6.s390x.rpm 40953f10987d323965ebae113a509e66f7256b047ff3491579f43e26f7f5de9a
x86_64 opentelemetry-collector-0.127.0-2.el9_6.x86_64.rpm c58b20393039264a92cb558ec2eece6430c0198dd1f204e2460bd6f55533fcf6
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.