Rocky Linux: RLSA-2024:1646 grafana security and bug fix update
Summary
An update is available for grafana. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394) Bug Fix(es): * TRIAGE CVE-2024-1394 grafana: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (JIRA:Rocky Linux-30543)
RPMs
grafana-0:9.2.10-8.el8_9.aarch64.rpm
grafana-0:9.2.10-8.el8_9.src.rpm
grafana-0:9.2.10-8.el8_9.x86_64.rpm
grafana-debuginfo-0:9.2.10-8.el8_9.aarch64.rpm
grafana-debuginfo-0:9.2.10-8.el8_9.x86_64.rpm
grafana-debugsource-0:9.2.10-8.el8_9.aarch64.rpm
grafana-debugsource-0:9.2.10-8.el8_9.x86_64.rpm
References
No References
CVEs
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1394
Fixes
https://bugzilla.redhat.com/show_bug.cgi?id=2262921