[ALSA-2026:19136] Important: grafana-pcp security update
Type:
security
Severity:
important
Release date:
2026-05-26
Description:
The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fix(es): * golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282) * crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-pcp-5.3.0-5.el10_2.aarch64.rpm b4e919c4af11f775756c61cf15838f6d6eb1b85993cdd9fd1dcfbc2b215b73bf
ppc64le grafana-pcp-5.3.0-5.el10_2.ppc64le.rpm 2c69adc1f25bcddf0ee0d395563a0ced4e3f2aec525f70f4fe56be5e997cb5fd
s390x grafana-pcp-5.3.0-5.el10_2.s390x.rpm 7c353bc73600873278d8b65adb5f1c1381c2dd1f9305796f3aa53e456d7f2a4f
x86_64 grafana-pcp-5.3.0-5.el10_2.x86_64.rpm ef04b532f3c0efdc45bd37a02599b65bfdcc0842d2dabac2a08fd94c67609c45
x86_64_v2 grafana-pcp-5.3.0-5.el10_2.x86_64_v2.rpm 32a7a49ede63c19d91534417992f120b8dd43332a018f82fc1405a637805cc88
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.