5 matches found
grafana-11.6.14+security04-1.1 on GA media (moderate)
grafana-11.6.14+security04-1.1 on GA media Announcement ID: openSUSE-SU-2026:10932-1 Rating: moderate Cross-References: CVE-2026-28374 CVE-2026-28376 CVE-2026-28379 CVE-2026-28380 CVE-2026-28383 CVE-2026-33376 CVE-2026-33377 CVE-2026-33378 CVE-2026-33380 CVE-2026-33381 CVSS scores: CVE-2026-28374...
CVE-2026-28379 vulnerabilities
Vulnerabilities for packages: grafana...
CVE-2026-28379 vulnerabilities
Vulnerabilities for packages: grafana, grafana-fips...
Use of a Non-reentrant Function in a Concurrent Context
Overview Affected versions of this package are vulnerable to Use of a Non-reentrant Function in a Concurrent Context via a race condition in the Grafana Live process. An attacker can cause the server to crash and become unavailable by sending concurrent requests as an authenticated user with View...
CVE-2026-28379
A race condition in Grafana Live allows authenticated users with Viewer role to trigger a server crash by sending concurrent requests that cause a fatal map access error. This results in complete service unavailability requiring restart of the Grafana server...