[Apollo] Advisories Statistics light light Login

RLSA-2024:7349

Security Mirrored from RHSA-2024:7349
Issued at: 2024-10-25
Updated at: 2024-10-25

Synopsis

Moderate: grafana security update



Description

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.

Security Fix(es):

* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2295310

CVEs

CVE-2024-24791

Affected packages

Rocky Linux 8 aarch64 - AppStream

grafana-0:9.2.10-18.el8_10.aarch64.rpm grafana-0:9.2.10-18.el8_10.src.rpm grafana-debuginfo-0:9.2.10-18.el8_10.aarch64.rpm grafana-debugsource-0:9.2.10-18.el8_10.aarch64.rpm grafana-selinux-0:9.2.10-18.el8_10.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

grafana-0:9.2.10-18.el8_10.src.rpm grafana-0:9.2.10-18.el8_10.x86_64.rpm grafana-debuginfo-0:9.2.10-18.el8_10.x86_64.rpm grafana-debugsource-0:9.2.10-18.el8_10.x86_64.rpm grafana-selinux-0:9.2.10-18.el8_10.x86_64.rpm