chore(deps): refresh rpm lockfiles [SECURITY]

[red-hat-konflux]

This PR contains the following updates:

File rpms.in.yaml:

Package	Change
kpartx	0.8.4-42.el8_10 -> 0.8.4-43.el8_10
libnghttp2	1.33.0-6.el8_10.1 -> 1.33.0-6.el8_10.2
sed	4.5-5.el8 -> 4.5-5.el8_10

---

nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination

CVE-2026-27135

More information

Details

A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service (DoS).

Severity

Important

References

• https://access.redhat.com/security/cve/CVE-2026-27135
• https://bugzilla.redhat.com/show_bug.cgi?id=2448754
• https://www.cve.org/CVERecord?id=CVE-2026-27135
• https://nvd.nist.gov/vuln/detail/CVE-2026-27135
• https://github.com/nghttp2/nghttp2/commit/5c7df8fa815ac1004d9ecb9d1f7595c4d37f46e1
• https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Configuration

📅 Schedule: Branch creation - "" in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[rhacs-bot]

Auto-approved by automation.

[rhacs-bot]

Auto-approved by automation.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 27.38%. Comparing base (77c6480) to head (d50e94c).
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@              Coverage Diff              @@
##           release-3.24    #3184   +/-   ##
=============================================
  Coverage         27.38%   27.38%           
=============================================
  Files                95       95           
  Lines              5427     5427           
  Branches           2548     2548           
=============================================
  Hits               1486     1486           
  Misses             3214     3214           
  Partials            727      727           

Flag	Coverage Δ
collector-unit-tests	27.38% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

/retest collector-on-push

[github-actions]

/retest collector-on-push

[github-actions]

/retest collector-on-push