golang-github-prometheus-alertmanager-0.31.1-3.1 on GA media (moderate)

golang-github-prometheus-alertmanager-0.31.1-3.1 on GA media Announcement ID: openSUSE-SU-2026:10612-1 Rating: moderate Cross-References: CVE-2026-33186 CVSS scores: CVE-2026-33186 SUSE : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVE-2026-33186 SUSE : 8.6...

OPENSUSE-SU-2026:10612-1 golang-github-prometheus-alertmanager-0.31.1-3.1 on GA media

These are all security issues fixed in the golang-github-prometheus-alertmanager-0.31.1-3.1 package on the GA media of openSUSE Tumbleweed...

[SECURITY] Fedora 43 Update: alertmanager-0.31.1-2.fc43

The Alertmanager handles alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integrations such as email, PagerDuty, or OpsGenie. It a lso takes care of silencing and inhibition of alerts...

Fedora 43 : alertmanager (2026-efbceeec2f)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-efbceeec2f advisory. Initial build after rename and update to 0.31.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. No...

Fedora: Security Advisory (FEDORA-2026-efbceeec2f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 42 Update: alertmanager-0.31.1-2.fc42

The Alertmanager handles alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integrations such as email, PagerDuty, or OpsGenie. It a lso takes care of silencing and inhibition of alerts...

Fedora 42 : alertmanager (2026-83937af369)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-83937af369 advisory. Initial build after rename and update to 0.31.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. No...

GHSA-9H8M-3FM2-QJRQ vulnerabilities

Vulnerabilities for packages: cluster-api-ipam-provider-in-cluster, jobset-fips, cluster-api-provider-vsphere, jaeger-operator, docker-compose-fips, boring-registry, gitlab-operator, kubernetes-csi-external-resizer-fips, azcopy, harbor-fips, grype-db, tkn-fips, fulcio, velero, kubevela,...

CVE-2026-22641

This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed by adding an extra slash character in the URL path. Users with minimal permissions could gain unauthorized read access to GET endpoints in Alertmanager and Prometheus datasources. The issue primarily...

CVE-2026-22641

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2026-22641

This CVE entry concerns Grafana's datasource proxy API. The root cause is an extra slash in the URL path that bypasses authorization checks, allowing unauthorized read access to GET endpoints in Alertmanager and Prometheus-based datasources. Affected components are datasources implementing route-...

CVE-2026-22641

...

CVE-2026-22641

...

EUVD-2026-2803

This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed by adding an extra slash character in the URL path. Users with minimal permissions could gain unauthorized read access to GET endpoints in Alertmanager and Prometheus datasources. The issue primarily...

PT-2026-3008

Name of the Vulnerable Software and Affected Versions Grafana affected versions not specified Description A flaw exists in Grafana’s datasource proxy API that permits bypassing authorization checks. This is achieved by including an additional slash character within the URL path. Users with limite...

CVE-2025-47908 vulnerabilities

Vulnerabilities for packages: prometheus-alertmanager, ipfs, rekor, datadog-agent, timestamp-authority, grafana-mimir, fulcio, cortex...

openSUSE Security Advisory (SUSE-SU-2025:4481-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 / openSUSE 15 Security Update : golang-github-prometheus-alertmanager (SUSE-SU-2025:4481-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:4481-1 advisory. - Update to version 0.28.1 jscPED-13285: Improved performance of inhibition rules when using Equal labels. Improve the documentation on...

Security update for golang-github-prometheus-alertmanager

This update for golang-github-prometheus-alertmanager fixes the following issues: Update to version 0.28.1 jscPED-13285: Improved performance of inhibition rules when using Equal labels. Improve the documentation on escaping in UTF-8 matchers. Update alertmanagerconfighash metric help to document...

SUSE-SU-2025:4481-1 Security update for golang-github-prometheus-alertmanager

This update for golang-github-prometheus-alertmanager fixes the following issues: - Update to version 0.28.1 jscPED-13285: Improved performance of inhibition rules when using Equal labels. Improve the documentation on escaping in UTF-8 matchers. Update alertmanagerconfighash metric help to docume...