CLEANSTART-2026-MC76610

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-MC76610.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLEANSTART-2026-MC76610
Upstream
  • CVE-2026-27145
  • CVE-2026-39824
  • CVE-2026-42504
  • CVE-2026-42507
  • ghsa-6g7g-w4f8-9c9x
  • ghsa-p77j-4mvh-x3m3
  • ghsa-xmrv-pmrh-hhx2
Published
2026-06-08T14:01:30.633072Z
Modified
2026-06-22T09:45:14.055058382Z
Summary
Security fixes for CVE-2026-27145, CVE-2026-33816, CVE-2026-34986, CVE-2026-39821, CVE-2026-39824, CVE-2026-39883, CVE-2026-41602, CVE-2026-42504, CVE-2026-42507, CVE-2026-46595, ghsa-6g7g-w4f8-9c9x, ghsa-p77j-4mvh-x3m3, ghsa-xmrv-pmrh-hhx2 applied in versions: 0.144.0-r3, 0.144.0-r4, 0.150.0-r0, 0.150.0-r1
Details

Multiple security vulnerabilities affect the opentelemetry-collector-contrib package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / opentelemetry-collector-contrib

Package

Name
opentelemetry-collector-contrib

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.150.0-r1

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-MC76610.json"