[ALSA-2025:3344] Important: grafana security update
Type:
security
Severity:
important
Release date:
2025-03-31
Description:
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-10.2.6-9.el9_5.aarch64.rpm 3adbb6850271e0dc6d680ef0444968a4d289bdec7104f6a24ffcb88c4e0ec000
aarch64 grafana-selinux-10.2.6-9.el9_5.aarch64.rpm faab0822a483f285f1b9ed0a8b319197716f10b0c6de369b0644550b477fa36d
ppc64le grafana-selinux-10.2.6-9.el9_5.ppc64le.rpm 4d324eccc156fe423825c5fbf3b52b1419f933daec70682769162c7569b323f8
ppc64le grafana-10.2.6-9.el9_5.ppc64le.rpm 5e5d9ab52364269c313c98875c4f0788c2f5ff6e01dbddfa6c29355396cfa1e1
s390x grafana-10.2.6-9.el9_5.s390x.rpm 03c7a983550314707595946cc978aebe63827673c768a01f5af8436567835688
s390x grafana-selinux-10.2.6-9.el9_5.s390x.rpm a85290b7b0ab9ec29e931ee26785481374a534539476145e3f49500d39600924
x86_64 grafana-10.2.6-9.el9_5.x86_64.rpm 1250fbdc9af9e8807ab13ab1ae6e7d03636d9f89ca80ad2fc6eff5e9a037e513
x86_64 grafana-selinux-10.2.6-9.el9_5.x86_64.rpm e129cddb595f89f055b51784b7c857c05e6fe709aa97e919bca85bfbafe6ba3a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.