Opentelemetry.Exporter.Zipkin
Approved changes feed: RSS · Atom
cpe:2.3:a:opentelemetry:opentelemetry.exporter.zipkin:*:*:*:*:*:.net:*:*
part: a version: * update: *
| Vendor | Opentelemetry (39d78cb4-5c3d-536d-a86d-5fcb2abd36d8) |
|---|---|
| Product | Opentelemetry.Exporter.Zipkin (4f60a00d-ebe0-5d18-bc74-1420213e0fbf) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | .net |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/opentelemetry-beam/opentelemetry_zipkin |
purl2cpe | 2026-06-01 10:13:47.581453 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-41310 |
vulnerable | 2026-06-03 15:23:35.865033 |
OpenTelemetry .NET Zipkin exporter has unbounded remote endpoint cache leading to memory growth
MEDIUM (5.3)
OpenTelemetry.Exporter.Zipkin is the .NET Zipkin exporter for OpenTelemetry. In versions 1.15.2 and earlier, the Zipkin exporter remote endpoint cache accepts unbounded key growth derived from span attributes. In high-cardinality scenarios, a process using Zipkin export for client or producer spans could experience avoidable memory growth under sustained unique remote endpoint values, increasing process memory usage over time and degrading availability. This issue is fixed in version 1.15.3, which introduces a bounded, thread-safe LRU cache for remote endpoints with a fixed maximum size.
Published: 2026-05-06T20:54:37.492Z
Updated: 2026-05-07T13:19:12.396Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.