From b5f9b4b748c423b3dfe3c7932b7b988c46197481 Mon Sep 17 00:00:00 2001 From: Max Leonov Date: Fri, 23 Jan 2026 13:18:17 +0100 Subject: [PATCH] OBSDOCS-3018: Release notes for Distributed Tracing 3.8.2 --- modules/distr-tracing-tempo-about-rn.adoc | 2 +- modules/distr-tracing-tempo-rn-bug-fixes.adoc | 7 +++++++ modules/otel-about-rn.adoc | 8 +++++++- modules/otel-rn-bug-fixes.adoc | 16 ++++++++++++++++ modules/otel-rn-enhancements.adoc | 2 ++ modules/otel-rn-technology-preview-features.adoc | 2 ++ .../distr_tracing/distr-tracing-rn.adoc | 2 +- observability/otel/otel-rn.adoc | 2 +- 8 files changed, 37 insertions(+), 4 deletions(-) diff --git a/modules/distr-tracing-tempo-about-rn.adoc b/modules/distr-tracing-tempo-about-rn.adoc index b00b35681a..905fc7f093 100644 --- a/modules/distr-tracing-tempo-about-rn.adoc +++ b/modules/distr-tracing-tempo-about-rn.adoc @@ -7,7 +7,7 @@ = About this release [role="_abstract"] -{DTShortName} 3.8.1 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/tempo-operator-bundle/642c3e0eacf1b5bdbba7654a/history[{TempoOperator} 0.19.0] and based on the open source link:https://grafana.com/oss/tempo/[Grafana Tempo] 2.9.0. +{DTShortName} 3.8.2 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/tempo-operator-bundle/642c3e0eacf1b5bdbba7654a/history[{TempoOperator} 0.19.0] and based on the open source link:https://grafana.com/oss/tempo/[Grafana Tempo] 2.9.0. //// [NOTE] diff --git a/modules/distr-tracing-tempo-rn-bug-fixes.adoc b/modules/distr-tracing-tempo-rn-bug-fixes.adoc index f39f55a4b3..15f630c6bc 100644 --- a/modules/distr-tracing-tempo-rn-bug-fixes.adoc +++ b/modules/distr-tracing-tempo-rn-bug-fixes.adoc @@ -7,6 +7,13 @@ = Fixed issues [role="_abstract"] +The {TempoShortName} 3.8.2 patch release includes a fix for the following issue: + +CVE-2025-61729:: +Before this update, the `HostnameError.Error()` function in the Go `crypto/x509` package used string concatenation in a loop without limiting the number of printed hostnames. This behavior caused quadratic runtime when processing certificates with many hostnames, allowing attackers to consume excessive resources. With this update, the function uses the Go `strings.Builder` programming element for efficient string construction and limits the number of hostnames in an error message to 99. As a result, the function now runs efficiently even for certificates with many hostnames. ++ +link:https://access.redhat.com/security/cve/cve-2025-61729[CVE-2025-61729] + The {TempoShortName} 3.8.1 patch release includes a fix for the following issue: CVE-2025-58183:: diff --git a/modules/otel-about-rn.adoc b/modules/otel-about-rn.adoc index 17ca0a8d95..59f30b81f8 100644 --- a/modules/otel-about-rn.adoc +++ b/modules/otel-about-rn.adoc @@ -7,7 +7,13 @@ = About this release [role="_abstract"] -{OTELName} 3.8 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/opentelemetry-operator-bundle/615618406feffc5384e84400/history[{OTELOperator} 0.140.0] and based on the open source link:https://opentelemetry.io/docs/collector/[OpenTelemetry] release 0.140.0. +{OTELName} 3.8.2 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/opentelemetry-operator-bundle/615618406feffc5384e84400/history[{OTELOperator} 0.140.0] and based on the open source link:https://opentelemetry.io/docs/collector/[OpenTelemetry] release 0.140.0. + +[NOTE] +==== +There was no 3.8.1 patch release for {OTELName}. +Version 3.8.1 patch release was shipped only for {TempoShortName}. +==== //// [NOTE] diff --git a/modules/otel-rn-bug-fixes.adoc b/modules/otel-rn-bug-fixes.adoc index d617196034..785a59c02a 100644 --- a/modules/otel-rn-bug-fixes.adoc +++ b/modules/otel-rn-bug-fixes.adoc @@ -6,6 +6,22 @@ [id="fixed-issues_{context}"] = Fixed issues +[role="_abstract"] +The {OTELName} 3.8.2 patch release includes a fix for the following issue: + +CVE-2025-61729:: +Before this update, the `HostnameError.Error()` function in the Go `crypto/x509` package used string concatenation in a loop without limiting the number of printed hostnames. This behavior caused quadratic runtime when processing certificates with many hostnames, allowing attackers to consume excessive resources. With this update, the function uses the Go `strings.Builder` programming element for efficient string construction and limits the number of hostnames in an error message to 99. As a result, the function now runs efficiently even for certificates with many hostnames. ++ +link:https://access.redhat.com/security/cve/cve-2025-61729[CVE-2025-61729] + +[NOTE] +==== +There was no 3.8.1 patch release for {OTELName}. +Version 3.8.1 patch release was shipped only for {TempoShortName}. +==== + +The {OTELName} 3.8 release fixes the following issues: + Fixed BearerTokenAuth Extension errors:: Before this update, the BearerTokenAuth Extension might log errors when the service account token was refreshed. With this update, the extension correctly handles token file refresh without producing errors. + diff --git a/modules/otel-rn-enhancements.adoc b/modules/otel-rn-enhancements.adoc index 5bfb5f9d21..800d828831 100644 --- a/modules/otel-rn-enhancements.adoc +++ b/modules/otel-rn-enhancements.adoc @@ -6,6 +6,8 @@ [id="new-features-and-enhancements_{context}"] = New features and enhancements +The {OTELName} 3.8 release adds the following features and enhancements: + Operator network policy improvements:: With this update, the Operator network policy for the Kubernetes API server becomes more specific and uses the API Server namespace and pod labels. diff --git a/modules/otel-rn-technology-preview-features.adoc b/modules/otel-rn-technology-preview-features.adoc index d2dbb1be72..4c814b5dd1 100644 --- a/modules/otel-rn-technology-preview-features.adoc +++ b/modules/otel-rn-technology-preview-features.adoc @@ -6,6 +6,8 @@ [id="technology-preview-features_{context}"] = Technology Preview features +The {OTELName} 3.8 release adds the following Technology Preview features: + Google Cloud Exporter (Technology Preview):: This release introduces the Google Cloud Exporter as a Technology Preview feature for the Collector of the {OTELName}. You can use the Google Cloud Exporter to export metrics, logs, and traces to Google Cloud's observability services: Google Cloud Monitoring, Google Cloud Logging, and Google Cloud Trace. diff --git a/observability/distr_tracing/distr-tracing-rn.adoc b/observability/distr_tracing/distr-tracing-rn.adoc index 246794043a..b71634d4f6 100644 --- a/observability/distr_tracing/distr-tracing-rn.adoc +++ b/observability/distr_tracing/distr-tracing-rn.adoc @@ -1,7 +1,7 @@ :_mod-docs-content-type: ASSEMBLY include::_attributes/common-attributes.adoc[] [id="distr-tracing-rn"] -= Release notes for the {TempoName} 3.8.1 += Release notes for the {TempoName} 3.8.2 :context: distr-tracing-rn diff --git a/observability/otel/otel-rn.adoc b/observability/otel/otel-rn.adoc index c769d253ca..771a776aa2 100644 --- a/observability/otel/otel-rn.adoc +++ b/observability/otel/otel-rn.adoc @@ -1,7 +1,7 @@ :_mod-docs-content-type: ASSEMBLY include::_attributes/common-attributes.adoc[] [id="otel_rn"] -= Release notes for the {OTELName} 3.8 += Release notes for the {OTELName} 3.8.2 :context: otel-rn toc::[]