[ALSA-2024:2568] Moderate: grafana security update
Type:
security
Severity:
moderate
Release date:
2024-05-07
Description:
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * grafana: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394) * grafana: vulnerable to authorization bypass (CVE-2024-1313) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-selinux-9.2.10-16.el9_4.alma.1.aarch64.rpm 221ba386f2b53c730a0b42599e730c05ac3e40ef07339e7778dc86eaf2e3850a
aarch64 grafana-9.2.10-16.el9_4.alma.1.aarch64.rpm 5b0946695e36d301d5fd8d9d9cbe4d9c67dd347021006829852902dcd4e4f6a9
ppc64le grafana-9.2.10-16.el9_4.alma.1.ppc64le.rpm 108f7595acfcd0bcdce742ba93673be1dd02ffff86239ee11612b0073d124f0c
ppc64le grafana-selinux-9.2.10-16.el9_4.alma.1.ppc64le.rpm 732d227703d54ba1fb564d9bc649e2380255e89589dd607287c853acae57643f
s390x grafana-9.2.10-16.el9_4.alma.1.s390x.rpm 39a865347fee0f74c1c9102aab4044f3c5f3392c95f31a4780b208bd6021732f
s390x grafana-selinux-9.2.10-16.el9_4.alma.1.s390x.rpm e218b764ed3fb8a1bdce479a5f1bd4a2fa84da84f8e32932d7d8ae9033d34f1a
x86_64 grafana-9.2.10-16.el9_4.alma.1.x86_64.rpm 6f192e8f21f09a3c24ac21ad8788b640b72f18ac825a90c52f41f04faac0210d
x86_64 grafana-selinux-9.2.10-16.el9_4.alma.1.x86_64.rpm 8234863c34aff7c4e898fee5192f3f9926ca45184a72c64e18c6f48d355f6783
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.