[ALSA-2025:7893] Important: grafana security update
Type:
security
Severity:
important
Release date:
2025-05-26
Description:
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * grafana: Cross-site Scripting (XSS) in Grafana via Custom Frontend Plugins and Open Redirect (CVE-2025-4123) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-selinux-10.2.6-13.el9_6.aarch64.rpm 82c2f3e9095843f205b9e33392513528e3597ad639450423c3eeaacb3b89f508
aarch64 grafana-10.2.6-13.el9_6.aarch64.rpm 9369817336d24359aeeaa4764762c48d2694ffb88d156a58e3bc1b094f640cbe
ppc64le grafana-selinux-10.2.6-13.el9_6.ppc64le.rpm 480991c125c633b673ead18d2ffb25f1505e96ad94ed914bdc96c3058e771fc8
ppc64le grafana-10.2.6-13.el9_6.ppc64le.rpm bdc6f504931dc0e16fb79a56ec9b245d44ec3998f2bf000c071a3133f8016c22
s390x grafana-10.2.6-13.el9_6.s390x.rpm b154693acc522efe72503b635d0683df3c15a35553411e27e8769288aad8a33c
s390x grafana-selinux-10.2.6-13.el9_6.s390x.rpm b5ea7f5d7584d622c9306b8c2509d1d399e0aac5c7bf24bcbb436f107c0cd32e
x86_64 grafana-selinux-10.2.6-13.el9_6.x86_64.rpm 0b9ba7fc5ff15fab0ec19929ec147959696810c2bfa58c63941bcd9c42567391
x86_64 grafana-10.2.6-13.el9_6.x86_64.rpm f03ee2b279ac04919a2e999ecb16ffc87d2a5b979e16e542f782ff02b612d56b
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.