ALSA-2022:5716

See a problem?

Source

https://errata.almalinux.org/9/ALSA-2022-5716.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2022:5716.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2022:5716

Related

CVE-2022-31107

Published

2022-07-26T00:00:00Z

Modified

2022-07-28T09:25:59Z

Summary

Important: grafana security update

Details

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * grafana: OAuth account takeover (CVE-2022-31107) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

https://access.redhat.com/errata/RHSA-2022:5716
https://access.redhat.com/security/cve/CVE-2022-31107
https://bugzilla.redhat.com/2104367
https://errata.almalinux.org/9/ALSA-2022-5716.html

Affected packages

AlmaLinux:9 / grafana

Package

Name: grafana

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.5.11-5.el9_0