CVE-2026-45681
EUVD-2026-3395502.06.2026, 16:16
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the per-CPU message-buffer fallback path uses a 256-byte backup buffer but preserves the original payload size, which can be up to 8KB. If a CPU mismatch occurs, OBI can read beyond the fallback buffer and leak adjacent memory into telemetry. This issue has been patched in version 0.9.0.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| opentelemetry | ebpf_instrumentation | 𝑥 < 0.9.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References