Package impact
GO / go.opentelemetry.io/obi
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-45684 | medium | — | 5.5 | 10d ago | OpenTelemetry eBPF Instrumentation: Log enricher writev path can overread and overwrite user buffers | |
| CVE-2026-45682 | medium | — | 5.5 | 10d ago | OpenTelemetry eBPF Instrumentation: CappedConcurrentHashMap leaks keys after removals | |
| CVE-2026-45681 | medium | — | 5.5 | 10d ago | OpenTelemetry eBPF Instrumentation: CPU-mismatch fallback uses 256-byte buffer with 8KB size | |
| CVE-2026-45680 | medium | — | 5.5 | 10d ago | OpenTelemetry eBPF Instrumentation: Unbounded BPF internal metrics replay can exhaust CPU | |
| CVE-2026-45679 | medium | — | 5.5 | 10d ago | OpenTelemetry eBPF Instrumentation: Redis error text is exported in span status messages | |
| CVE-2026-45676 | medium | — | 5.5 | 10d ago | OpenTelemetry eBPF Instrumentation: Unsafe fastelf parsing allows malformed ELF to crash agent |