[ALSA-2026:35831] Important: grafana-pcp security update
Type:
security
Severity:
important
Release date:
2026-07-06
Description:
The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fix(es): * golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing (CVE-2026-39821) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-pcp-5.1.1-16.el8_10.aarch64.rpm 246998108f288d5b4e187785d699146092d71d42f638c3049ce6e3f24c8ccda1
ppc64le grafana-pcp-5.1.1-16.el8_10.ppc64le.rpm cd1a91c59d40484e953b7bdbc543d3651b9717a812158d23b6bfc4dc5253ed9e
s390x grafana-pcp-5.1.1-16.el8_10.s390x.rpm 7859bc16d98a0120bf62315c30342b6788ce0a3db23dff333960c58eaa9fda78
x86_64 grafana-pcp-5.1.1-16.el8_10.x86_64.rpm 20c1e6efadad0c215f985686fcd95f60ae5a5d2c965735cb9e99dfc92d55b04e
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.