[ALSA-2025:7404] Important: grafana security update
Type:
security
Severity:
important
Release date:
2025-05-21
Description:
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-selinux-10.2.6-11.el9_6.aarch64.rpm 839509f274e9d46271568e494d28328c4b3d2892fcc6a44c79a1e90c8d15a3f5
aarch64 grafana-10.2.6-11.el9_6.aarch64.rpm a3aca00fc326f3a934853dd625094e8cb550bd14cccb12b9071754d2aedcab5a
ppc64le grafana-selinux-10.2.6-11.el9_6.ppc64le.rpm 52f7f4102d4fd408620c28104d1a8376915a804299f716bd2cdc7cc18934e68e
ppc64le grafana-10.2.6-11.el9_6.ppc64le.rpm 5f681d1daa4b5d11c327401134b16d95fe0afa1b2c41c7484f7623263715109c
s390x grafana-10.2.6-11.el9_6.s390x.rpm 5aed21a0fb7622ef9989fc25bf5ca01c6f52648fb50ac1d99d67f75109484d04
s390x grafana-selinux-10.2.6-11.el9_6.s390x.rpm 9b8eff2aa29c6990b717ec9b95b854e8dd36aeff83260eafd9423f3f537f521f
x86_64 grafana-10.2.6-11.el9_6.x86_64.rpm b4e7041b0d635f0d7ff23ab4a70eca6a69bb0859b816105a951e8dc2cc72cf48
x86_64 grafana-selinux-10.2.6-11.el9_6.x86_64.rpm f2783b919bc2d6184ecec8593abe5dee5e6675218f2f3fff4d472281636c315f
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.