Lucene search
OracleLinuxELSA-2023-2177HistoryMay 15, 2023 - 12:00 a.m.
grafana-pcp security and enhancement update
2023-05-1500:00:00
linux.oracle.com
10
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
53.0%
[5.1.1-1]
- update to 5.1.1 tagged upstream community sources, see CHANGELOG
- resolve CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY
[5.0.0-4] - update to 5.0.0 tagged upstream community sources, see CHANGELOG
- install plugin in /usr/share and create symlink from /var using
systemd-tmpfiles to work on rpm-ostree based distributions - revert the breaking change (change of internal plugin IDs) of upstream v5.0.0,
i.e. there are no breaking changes when performing this upgrade - enable Go modules in build process
- make vendor and webpack tarballs reproducible
- drop makefile in favor of create_bundles.sh script
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | grafana-pcp | <ย 5.1.1-1.el9 | grafana-pcp-5.1.1-1.el9.src.rpm |
| oracle linux | 9 | aarch64 | grafana-pcp | <ย 5.1.1-1.el9 | grafana-pcp-5.1.1-1.el9.aarch64.rpm |
| oracle linux | 9 | src | grafana-pcp | <ย 5.1.1-1.el9 | grafana-pcp-5.1.1-1.el9.src.rpm |
| oracle linux | 9 | x86_64 | grafana-pcp | <ย 5.1.1-1.el9 | grafana-pcp-5.1.1-1.el9.x86_64.rpm |
Related
nessus
nessus
Oracle Linux 9 : grafana-pcp (ELSA-2023-2177)
2023-05-15 00:00:00
EulerOS 2.0 SP10 : golang (EulerOS-SA-2022-2822)
2022-12-21 00:00:00
RHCOS 4 : OpenShift Container Platform 4.13.10 (RHSA-2023:4734)
2024-01-24 00:00:00
oraclelinux
oraclelinux
grafana-pcp security update
2023-05-24 00:00:00
grafana security update
2023-05-24 00:00:00
Image Builder security, bug fix, and enhancement update
2023-05-24 00:00:00
redhat
redhat
ibm
ibm
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 16:46:13
github
github
golang.org/x/net/http2 Denial of Service vulnerability
2022-09-07 00:01:51
cbl_mariner
cbl_mariner
CVE-2022-27664 affecting package golang 1.17.13-2
2024-04-28 03:18:17
CVE-2022-27664 affecting package kured 1.9.1-15
2023-11-15 20:12:47
CVE-2022-27664 affecting package golang for versions less than 1.18.8-1
2024-02-25 03:00:06
alpinelinux
alpinelinux
CVE-2022-27664
2022-09-06 18:15:00
osv
osv
golang.org/x/net/http2 Denial of Service vulnerability
2022-09-07 00:01:51
BIT-golang-2022-27664
2024-03-06 11:01:48
CVE-2022-27664
2022-09-06 18:15:12
amazon
amazon
Medium: golang
2022-09-30 07:04:00
Important: amazon-ssm-agent
2023-08-30 18:41:00
Important: amazon-ssm-agent
2023-08-31 22:30:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:3325-1)
2022-09-22 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-2822)
2022-12-22 00:00:00
openSUSE: Security Advisory for go1.18 (SUSE-SU-2022:3325-1)
2022-09-22 00:00:00
gitlab
gitlab
golang.org/x/net/http2 Denial of Service vulnerability
2022-09-07 00:00:00
golang.org/x/net/http2 Denial of Service vulnerability
2022-09-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-09-07 08:33:55
debiancve
debiancve
CVE-2022-27664
2022-09-06 18:15:00
cve
cve
CVE-2022-27664
2022-09-06 18:15:00
wolfi
wolfi
CVE-2022-27664 vulnerabilities
2024-04-28 03:51:41
almalinux
almalinux
Moderate: grafana-pcp security update
2023-05-16 00:00:00
Moderate: grafana-pcp security and enhancement update
2023-05-09 00:00:00
Moderate: butane security, bug fix, and enhancement update
2023-05-09 00:00:00
redhatcve
redhatcve
CVE-2022-27664
2022-09-08 00:18:20
suse
suse
Security update for go1.18 (important)
2022-09-21 00:00:00
Security update for go1.19 (important)
2022-09-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.18.6-alt1
2022-09-14 00:00:00
prion
prion
Code injection
2022-09-06 18:15:00
ubuntucve
ubuntucve
CVE-2022-27664
2022-09-06 00:00:00
cgr
cgr
CVE-2022-27664 vulnerabilities
2024-04-28 03:20:57
freebsd
freebsd
go -- multiple vulnerabilities
2022-09-06 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: golang-1.18.6-1.fc36
2022-09-13 01:30:19
[SECURITY] Fedora 37 Update: golang-1.19.1-1.fc37
2022-09-16 00:17:41
mageia
mageia
Updated golang packages fix security vulnerability
2022-10-05 08:23:49
photon
photon
Important Photon OS Security Update - PHSA-2022-0519
2022-09-20 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0455
2022-09-20 00:00:00
gentoo
gentoo
Go: Multiple Vulnerabilities
2022-09-29 00:00:00
rocky
rocky
git-lfs security and bug fix update
2022-10-25 07:32:51
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
53.0%
Related for ELSA-2023-2177