Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2024:6947

Опубликовано: 30 сент. 2024
Источник: rocky
Оценка: Important

Описание

Important: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.

Security Fix(es):

  • encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
grafanax86_6417.el9_4grafana-9.2.10-17.el9_4.x86_64.rpm
grafana-selinuxx86_6417.el9_4grafana-selinux-9.2.10-17.el9_4.x86_64.rpm

Показывать по

Связанные CVE

CVE-2024-34156

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2024-34156

CVSS3: 7.5
ubuntu
10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

redhat логотип

CVE-2024-34156

CVSS3: 7.5
redhat
10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

nvd логотип

CVE-2024-34156

CVSS3: 7.5
nvd
10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

debian логотип

CVE-2024-34156

CVSS3: 7.5
debian
10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested struc ...

rocky логотип

RLSA-2024:8111

rocky
8 месяцев назад

Important: skopeo security update