rpms/opentelemetry-collector
6
0
Fork 0
Code Issues Pull Requests Releases Activity

Bump revision and update tarball dependencies

Browse Source 
Fixes CVE-2024-45338 and CVE-2024-45337
Resolves: RHEL-78820
This commit is contained in:
Kseniia Nivnia 2025-02-11 15:31:57 +00:00
parent 34d0e9d47d
commit 557dd09aba
No known key found for this signature in database
GPG Key ID: A86AECC62C664324
2 changed files with 15 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
opentelemetry-collector.spec
View File

@ -12,7 +12,7 @@ Collector with the supported components for a Red Hat build of OpenTelemetry}
%global godocs README.md %global godocs README.md
Name: opentelemetry-collector Name: opentelemetry-collector
Release: 1%{?dist} Release: 2%{?dist}
Summary: Red Hat build of OpenTelemetry Summary: Red Hat build of OpenTelemetry
License: Apache-2.0 License: Apache-2.0
@ -102,6 +102,19 @@ fi
%{_bindir}/* %{_bindir}/*
%changelog %changelog
* Tue Feb 11 2025 Kseniia Nivnia <knivnia@redhat.com> - 0.107.0-2
- Bump revision
- Update tarball name to match upstream
- Upgrade the following tarball dependencies:
- x/sys v0.23.0 to v0.29.0
- x/crypto v0.26.0 to v0.32.0
- x/net v0.28.0 to v0.33.0
- x/sync v0.8.0 to v0.10.0
- x/term v0.23.0 to v0.28.0
- x/text v0.17.0 to v0.21.0
- Update addresses the following CVEs:
- CVE-2024-45338
- CVE-2024-45337
* Mon Sep 23 2024 Felix Kolwa <fkolwa@redhat.com> - 0.107.0-1 * Mon Sep 23 2024 Felix Kolwa <fkolwa@redhat.com> - 0.107.0-1
- Version bump to 0.107.0 - Version bump to 0.107.0
- Reset release to 1 - Reset release to 1

2
sources
View File

@ -1 +1 @@
SHA512 (redhat-opentelemetry-collector-0.107.0.tar.gz) = fcbcf8e6953b9106582bcfe787cab60faf3627064fd00bc18fe8be0c503d2a09b8a096fdc9e8f7d03a10fb93eb107d8c9a620ae196f7ed01c18b79c89bbac184 SHA512 (redhat-opentelemetry-collector-0.107.0.tar.gz) = bf77dabd24a18fc0f002af2e7d1f1ba2f42cd7a90e29be060b2885f1bfe7bde4144c14b894acf29a7725972505fc67c99eba03c2b35f5b780e8c269b64b92ff9