OBSDOCS-3018: Release notes for Distributed Tracing 3.8.2

2026-02-05 12:46:18 +01:00 · 2026-01-23 13:18:17 +01:00
parent cf21eca2fa
commit b5f9b4b748
8 changed files with 37 additions and 4 deletions
--- a/modules/distr-tracing-tempo-about-rn.adoc
+++ b/modules/distr-tracing-tempo-about-rn.adoc
@@ -7,7 +7,7 @@
 = About this release

 [role="_abstract"]
-{DTShortName} 3.8.1 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/tempo-operator-bundle/642c3e0eacf1b5bdbba7654a/history[{TempoOperator} 0.19.0] and based on the open source link:https://grafana.com/oss/tempo/[Grafana Tempo] 2.9.0.
+{DTShortName} 3.8.2 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/tempo-operator-bundle/642c3e0eacf1b5bdbba7654a/history[{TempoOperator} 0.19.0] and based on the open source link:https://grafana.com/oss/tempo/[Grafana Tempo] 2.9.0.

 ////
 [NOTE]
--- a/modules/distr-tracing-tempo-rn-bug-fixes.adoc
+++ b/modules/distr-tracing-tempo-rn-bug-fixes.adoc
@@ -7,6 +7,13 @@
 = Fixed issues

 [role="_abstract"]
+The {TempoShortName} 3.8.2 patch release includes a fix for the following issue:
+
+CVE-2025-61729::
+Before this update, the `HostnameError.Error()` function in the Go `crypto/x509` package used string concatenation in a loop without limiting the number of printed hostnames. This behavior caused quadratic runtime when processing certificates with many hostnames, allowing attackers to consume excessive resources. With this update, the function uses the Go `strings.Builder` programming element for efficient string construction and limits the number of hostnames in an error message to 99. As a result, the function now runs efficiently even for certificates with many hostnames.
+
+link:https://access.redhat.com/security/cve/cve-2025-61729[CVE-2025-61729]
+
 The {TempoShortName} 3.8.1 patch release includes a fix for the following issue:

 CVE-2025-58183::
--- a/modules/otel-about-rn.adoc
+++ b/modules/otel-about-rn.adoc
@@ -7,7 +7,13 @@
 = About this release

 [role="_abstract"]
-{OTELName} 3.8 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/opentelemetry-operator-bundle/615618406feffc5384e84400/history[{OTELOperator} 0.140.0] and based on the open source link:https://opentelemetry.io/docs/collector/[OpenTelemetry] release 0.140.0.
+{OTELName} 3.8.2 is provided through the link:https://catalog.redhat.com/software/containers/rhosdt/opentelemetry-operator-bundle/615618406feffc5384e84400/history[{OTELOperator} 0.140.0] and based on the open source link:https://opentelemetry.io/docs/collector/[OpenTelemetry] release 0.140.0.
+
+[NOTE]
+====
+There was no 3.8.1 patch release for {OTELName}.
+Version 3.8.1 patch release was shipped only for {TempoShortName}.
+====

 ////
 [NOTE]
--- a/modules/otel-rn-bug-fixes.adoc
+++ b/modules/otel-rn-bug-fixes.adoc
@@ -6,6 +6,22 @@
 [id="fixed-issues_{context}"]
 = Fixed issues

+[role="_abstract"]
+The {OTELName} 3.8.2 patch release includes a fix for the following issue:
+
+CVE-2025-61729::
+Before this update, the `HostnameError.Error()` function in the Go `crypto/x509` package used string concatenation in a loop without limiting the number of printed hostnames. This behavior caused quadratic runtime when processing certificates with many hostnames, allowing attackers to consume excessive resources. With this update, the function uses the Go `strings.Builder` programming element for efficient string construction and limits the number of hostnames in an error message to 99. As a result, the function now runs efficiently even for certificates with many hostnames.
+
+link:https://access.redhat.com/security/cve/cve-2025-61729[CVE-2025-61729]
+
+[NOTE]
+====
+There was no 3.8.1 patch release for {OTELName}.
+Version 3.8.1 patch release was shipped only for {TempoShortName}.
+====
+
+The {OTELName} 3.8 release fixes the following issues:
+
 Fixed BearerTokenAuth Extension errors::
 Before this update, the BearerTokenAuth Extension might log errors when the service account token was refreshed. With this update, the extension correctly handles token file refresh without producing errors.
 +
--- a/modules/otel-rn-enhancements.adoc
+++ b/modules/otel-rn-enhancements.adoc
@@ -6,6 +6,8 @@
 [id="new-features-and-enhancements_{context}"]
 = New features and enhancements

+The {OTELName} 3.8 release adds the following features and enhancements:
+
 Operator network policy improvements::
 With this update, the Operator network policy for the Kubernetes API server becomes more specific and uses the API Server namespace and pod labels.

--- a/modules/otel-rn-technology-preview-features.adoc
+++ b/modules/otel-rn-technology-preview-features.adoc
@@ -6,6 +6,8 @@
 [id="technology-preview-features_{context}"]
 = Technology Preview features

+The {OTELName} 3.8 release adds the following Technology Preview features:
+
 Google Cloud Exporter (Technology Preview)::
 This release introduces the Google Cloud Exporter as a Technology Preview feature for the Collector of the {OTELName}. You can use the Google Cloud Exporter to export metrics, logs, and traces to Google Cloud's observability services: Google Cloud Monitoring, Google Cloud Logging, and Google Cloud Trace.

--- a/observability/distr_tracing/distr-tracing-rn.adoc
+++ b/observability/distr_tracing/distr-tracing-rn.adoc
@@ -1,7 +1,7 @@
 :_mod-docs-content-type: ASSEMBLY
 include::_attributes/common-attributes.adoc[]
 [id="distr-tracing-rn"]
-= Release notes for the {TempoName} 3.8.1
+= Release notes for the {TempoName} 3.8.2
 :context: distr-tracing-rn


--- a/observability/otel/otel-rn.adoc
+++ b/observability/otel/otel-rn.adoc
@@ -1,7 +1,7 @@
 :_mod-docs-content-type: ASSEMBLY
 include::_attributes/common-attributes.adoc[]
 [id="otel_rn"]
-= Release notes for the {OTELName} 3.8
+= Release notes for the {OTELName} 3.8.2
 :context: otel-rn

 toc::[]