[ALSA-2025:7894] Important: grafana security update
Type:
security
Severity:
important
Release date:
2025-05-19
Description:
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * grafana: Cross-site Scripting (XSS) in Grafana via Custom Frontend Plugins and Open Redirect (CVE-2025-4123) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-selinux-9.2.10-23.el8_10.aarch64.rpm 2a00294914a262edf2cd933a5535cd5566665cac22147d02a18e998ab8b52e14
aarch64 grafana-9.2.10-23.el8_10.aarch64.rpm 4f173e2d4033f70f7ea07d4aac0e8d7985896ff7352563f446170e057472b121
ppc64le grafana-9.2.10-23.el8_10.ppc64le.rpm cdb83df7544376931f7568789feaa8b37c5ceebe41fc80b681ef060c4e6e15e3
ppc64le grafana-selinux-9.2.10-23.el8_10.ppc64le.rpm de51ad50117e3edc210a765aa13030457aeabba04abc9e182a9b6927a41e9c7a
s390x grafana-9.2.10-23.el8_10.s390x.rpm 4bac17ae640843e503a2dd48500919a542a9d99844b3c334d00f0b2a471b506f
s390x grafana-selinux-9.2.10-23.el8_10.s390x.rpm 8b5c826aea47fa90bc88c431f99f567366851fa7b77f2df4045147648559be34
x86_64 grafana-9.2.10-23.el8_10.x86_64.rpm 29b17c7e140a39cc2562b5a3a4db16573b05526198445116ec0e1ca78f2c89c7
x86_64 grafana-selinux-9.2.10-23.el8_10.x86_64.rpm 5876499f70ffc3da1785d9dd20ec4c632daa75144bcf8ddc3b72b6d09ee1798c
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.