Lucene search
RedHatRHSA-2024:1502HistoryMar 25, 2024 - 7:27 p.m.
(RHSA-2024:1502) Important: grafana-pcp security update
2024-03-2519:27:15
access.redhat.com
9
grafana-pcp
security fix
memory leaks
rsa payloads
cve-2024-1394
unix
open source
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
Low
EPSS
0.001
Percentile
30.8%
grafana-pcp is an open source Grafana plugin for PCP.
Security Fix(es):
- grafana-pcp: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | ppc64le | grafana-pcp-debuginfo | < 5.1.1-2.el9_3 | grafana-pcp-debuginfo-5.1.1-2.el9_3.ppc64le.rpm |
| RedHat | 9 | s390x | grafana-pcp | < 5.1.1-2.el9_3 | grafana-pcp-5.1.1-2.el9_3.s390x.rpm |
| RedHat | 9 | x86_64 | grafana-pcp-debuginfo | < 5.1.1-2.el9_3 | grafana-pcp-debuginfo-5.1.1-2.el9_3.x86_64.rpm |
| RedHat | 9 | s390x | grafana-pcp-debugsource | < 5.1.1-2.el9_3 | grafana-pcp-debugsource-5.1.1-2.el9_3.s390x.rpm |
| RedHat | 9 | ppc64le | grafana-pcp | < 5.1.1-2.el9_3 | grafana-pcp-5.1.1-2.el9_3.ppc64le.rpm |
| RedHat | 9 | ppc64le | grafana-pcp-debugsource | < 5.1.1-2.el9_3 | grafana-pcp-debugsource-5.1.1-2.el9_3.ppc64le.rpm |
| RedHat | 9 | x86_64 | grafana-pcp-debugsource | < 5.1.1-2.el9_3 | grafana-pcp-debugsource-5.1.1-2.el9_3.x86_64.rpm |
| RedHat | 9 | aarch64 | grafana-pcp-debuginfo | < 5.1.1-2.el9_3 | grafana-pcp-debuginfo-5.1.1-2.el9_3.aarch64.rpm |
| RedHat | 9 | x86_64 | grafana-pcp | < 5.1.1-2.el9_3 | grafana-pcp-5.1.1-2.el9_3.x86_64.rpm |
| RedHat | 9 | aarch64 | grafana-pcp-debugsource | < 5.1.1-2.el9_3 | grafana-pcp-debugsource-5.1.1-2.el9_3.aarch64.rpm |
Related
oraclelinux
oraclelinux
grafana-pcp security and bug fix update
2024-04-03 00:00:00
golang security update
2024-03-21 00:00:00
grafana-pcp security update
2024-05-07 00:00:00
osv
osv
Important: golang security update
2024-03-21 00:00:00
Memory leaks in code encrypting and verifying RSA payloads
2024-03-20 18:10:36
Important: grafana-pcp security and bug fix update
2024-04-02 00:00:00
nessus
nessus
Rocky Linux 8 : grafana (RLSA-2024:1646)
2024-04-05 00:00:00
Oracle Linux 8 : grafana (ELSA-2024-1646)
2024-04-03 00:00:00
AlmaLinux 9 : podman (ALSA-2024:4378)
2024-07-10 00:00:00
almalinux
almalinux
Important: runc security update
2024-07-23 00:00:00
Important: containernetworking-plugins security update
2024-07-23 00:00:00
Important: grafana-pcp security update
2024-04-30 00:00:00
redhat
redhat
(RHSA-2024:1462) Important: golang security update
2024-03-21 08:05:03
(RHSA-2024:4371) Important: buildah security update
2024-07-08 12:57:14
rocky
rocky
skopeo security update
2024-07-26 12:33:59
grafana-pcp security update
2024-05-10 14:32:42
grafana-pcp bug fix and enhancement update
2024-06-14 13:59:30
veracode
veracode
Memory Leak
2024-03-28 05:55:40
vulnrichment
vulnrichment
github
github
Memory leaks in code encrypting and verifying RSA payloads
2024-03-20 18:10:36
cvelist
cvelist
redhatcve
redhatcve
CVE-2024-1394
2024-03-20 18:01:24
cve
cve
CVE-2024-1394
2024-03-21 13:00:08
nvd
nvd
CVE-2024-1394
2024-03-21 13:00:08
ibm
ibm
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
Low
EPSS
0.001
Percentile
30.8%
Related for RHSA-2024:1502