ALSA-2024:1646

[ALSA-2024:1646] Important: grafana security and bug fix update

Type:

security

Severity:

important

Release date:

2024-04-03

Description:

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. 

Security Fix(es):

* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)

Bug Fix(es):

* TRIAGE CVE-2024-1394 grafana: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (JIRA:AlmaLinux-30543)

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	grafana-9.2.10-8.el8_9.alma.1.aarch64.rpm	e2ac837f76eafe510f41b019f04a40e654a1e33d9410873bc7f0807b620ab3b3
ppc64le	grafana-9.2.10-8.el8_9.alma.1.ppc64le.rpm	e2ac6b32936856ef591bd4b8b82db6f355c98219e8984d51fe27c5a69752fdcb
s390x	grafana-9.2.10-8.el8_9.alma.1.s390x.rpm	cd2869ce897749124f06b34e634e7a6d559e791e6d77045b83bb792de97a0e16
x86_64	grafana-9.2.10-8.el8_9.alma.1.x86_64.rpm	9e515593d8dd65d2d6ecb77320f2a69c331773a0ffa7aec8c548b9788cb95aa4

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.