[ALSA-2026:35829] Important: grafana-pcp security update
Type:
security
Severity:
important
Release date:
2026-07-08
Description:
The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fix(es): * golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing (CVE-2026-39821) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 grafana-pcp-5.1.1-17.el9_8.aarch64.rpm 15792ff72d37cee85d210baf44c50f11a9f4aace3cbdfcf8a080f1fadf693c0e
ppc64le grafana-pcp-5.1.1-17.el9_8.ppc64le.rpm 0632cd9b5a3f04d54b5fe9e6100a5ec30a81642054a3eacf74e8a730a4904420
s390x grafana-pcp-5.1.1-17.el9_8.s390x.rpm 404cba94ae0cf7003f1ac05f36f3bd65a7d8da8c683e596c6da8d7f1325bd5f5
x86_64 grafana-pcp-5.1.1-17.el9_8.x86_64.rpm d33a1acbb9a4488a85746b0fb5c064bd08bbee835501feef8613770fa199fcb5
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.