Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

go

Package otelhttp provides an http.Handler and functions that are intended to be used to add tracing by wrapping existing handlers (with Handler) and routes WithRouteTag.

View on proxy.golang.org

Security Advisories for go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp in go

High
about 2 years ago

OpenTelemetry-Go Contrib vulnerable to denial of service in otelhttp due to unbound cardinality metrics GSA_kwCzR0hTQS1yY2p2LW1ncDgtcXZtcs4AA2eX

go go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace, go.opentelemetry.io/contrib/instrumentation/gopkg.in/macaron.v1/otelmacaron, go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho, go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/mux/otelmux, go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin, go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful, go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
High
over 2 years ago

otelhttp and otelbeego have DoS vulnerability for high cardinality metrics GSA_kwCzR0hTQS01cjVtLTY1Z3gtN3ZyaM4AAxfv

go go.opentelemetry.io/contrib/instrumentation/github.com/astaxie/beego/otelbeego, go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

Filter by Severity

High 2