Lucene search
AlmaLinuxALSA-2024:1501HistoryMar 25, 2024 - 12:00 a.m.
Important: grafana security update
2024-03-2500:00:00
errata.almalinux.org
11
grafana
security fix
memory leaks
rsa payloads
cve-2024-1394
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.6 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.2%
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.
Security Fix(es):
- grafana: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 9 | x86_64 | grafana | < 9.2.10-8.el9_3.alma.1 | grafana-9.2.10-8.el9_3.alma.1.x86_64.rpm |
| almalinux | 9 | ppc64le | grafana | < 9.2.10-8.el9_3.alma.1 | grafana-9.2.10-8.el9_3.alma.1.ppc64le.rpm |
| almalinux | 9 | aarch64 | grafana | < 9.2.10-8.el9_3.alma.1 | grafana-9.2.10-8.el9_3.alma.1.aarch64.rpm |
| almalinux | 9 | s390x | grafana | < 9.2.10-8.el9_3.alma.1 | grafana-9.2.10-8.el9_3.alma.1.s390x.rpm |
Related
nessus
nessus
Rocky Linux 8 : grafana (RLSA-2024:1646)
2024-04-05 00:00:00
RHEL 9 : grafana-pcp (RHSA-2024:1502)
2024-03-25 00:00:00
RHEL 9 : grafana (RHSA-2024:1501)
2024-03-25 00:00:00
redhat
redhat
(RHSA-2024:1462) Important: golang security update
2024-03-21 08:05:03
(RHSA-2024:1644) Important: grafana-pcp security and bug fix update
2024-04-02 20:03:30
rocky
rocky
grafana-pcp security update
2024-05-10 14:32:42
grafana-pcp security and bug fix update
2024-04-05 14:56:07
grafana security and bug fix update
2024-04-05 14:56:07
osv
osv
Important: golang security update
2024-03-21 00:00:00
Important: grafana-pcp security and bug fix update
2024-04-02 00:00:00
Important: grafana-pcp security and bug fix update
2024-04-05 14:56:07
oraclelinux
oraclelinux
grafana-pcp security and bug fix update
2024-04-03 00:00:00
grafana security and bug fix update
2024-04-03 00:00:00
go-toolset:ol8 security update
2024-03-22 00:00:00
veracode
veracode
Memory Leak
2024-03-28 05:55:40
vulnrichment
vulnrichment
cvelist
cvelist
almalinux
almalinux
Important: grafana-pcp security update
2024-03-25 00:00:00
Important: grafana security and bug fix update
2024-04-02 00:00:00
Important: go-toolset:rhel8 security update
2024-03-21 00:00:00
cve
cve
CVE-2024-1394
2024-03-21 13:00:08
redhatcve
redhatcve
CVE-2024-1394
2024-03-20 18:01:24
github
github
Memory leaks in code encrypting and verifying RSA payloads
2024-03-20 18:10:36
nvd
nvd
CVE-2024-1394
2024-03-21 13:00:08
ibm
ibm
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.6 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.2%
Related for ALSA-2024:1501