[ALSA-2026:1518] Important: grafana-pcp security update
Type:
security
Severity:
important
Release date:
2026-01-29
Description:
The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fix(es): * crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-pcp-5.1.1-11.el8_10.aarch64.rpm 9cb4e3a73aaca22579f4c20b6852120e05d0630b02d1489227a007984056c0a7
ppc64le grafana-pcp-5.1.1-11.el8_10.ppc64le.rpm a518f511fca57897bd1bf2e4d480769b522fe927aecf4408c1f7103b10c7f305
s390x grafana-pcp-5.1.1-11.el8_10.s390x.rpm 19e004dd1fc377c6c7c04b273001b980692452d6309829176ef096c85933c1bc
x86_64 grafana-pcp-5.1.1-11.el8_10.x86_64.rpm 06ff3bbfdc9fdca8903be4dd314bc4a6a6a9c577f39ef0a7360077c5475ede20
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.