Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2024:1530-1 Moderate: Grafana And Mybatis Security Issues

suse
Calendar Grey May 6, 2024
Dist Suse Esm H88
Essential patches for grafana and mybatis resolve vulnerabilities affecting SUSE. Remain vigilant and updated.
* bsc#1219912 * bsc#1222155 * jsc#MSQA-760 Cross-References:

Summary

## This update for grafana and mybatis fixes the following issues: grafana was updated to version 9.5.18: * Grafana now requires Go 1.20 * Security issues fixed: * CVE-2024-1313: Require same organisation when deleting snapshots (bsc#1222155) * CVE-2023-6152: Add email verification when updating user email (bsc#1219912) * Other non-security related changes: * Version 9.5.17: * [FEATURE] Alerting: Backport use Alertmanager API v2 * Version 9.5.16: * [BUGFIX] Annotations: Split cleanup into separate queries and deletes to avoid deadlocks on MySQL * Version 9.5.15: * [FEATURE] Alerting: Attempt to retry retryable errors * Version 9.5.14: * [BUGFIX] Alerting: Fix state manager to not keep datasource_uid and ref_id labels in state after Error

Topics%20covered

Topics Covered

security advisory security issue moderate severity openSUSE grafana mybatis

References

* bsc#1219912

* bsc#1222155

* jsc#MSQA-760

Cross-

* CVE-2023-6152

* CVE-2024-1313

CVSS scores:

* CVE-2023-6152 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

* CVE-2024-1313 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products:

* openSUSE Leap 15.5

* SUSE Linux Enterprise Desktop 15 SP5

* SUSE Linux Enterprise High Performance Computing 15 SP5

* SUSE Linux Enterprise Micro 5.5

* SUSE Linux Enterprise Real Time 15 SP5

* SUSE Linux Enterprise Server 15 SP5

* SUSE Linux Enterprise Server for SAP Applications 15 SP5

* SUSE Package Hub 15 15-SP5

An update that solves two vulnerabilities and contains one feature can now be

installed.

##

* https://www.suse.com/security/cve/CVE-2023-6152.html

* https://www.suse.com/security/cve/CVE-2024-1313.html

Announcement ID: SUSE-SU-2024:1530-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory security issue moderate severity openSUSE grafana mybatis

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here