Mangelnde Prüfung von Signaturen in grafana
ID: | FEDORA-2020-64e54abd9f |
Distribution: | Fedora |
Plattformen: | Fedora 33 |
Datum: | Di, 5. Januar 2021, 11:43 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27846 |
Applikationen: | Grafana |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-64e54abd9f 2021-01-05 01:25:20.773355 -------------------------------------------------------------------------------- Name : grafana Product : Fedora 33 Version : 7.3.6 Release : 1.fc33 URL : https://grafana.org Summary : Metrics dashboard and graph editor Description : Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. -------------------------------------------------------------------------------- Update Information: update to upstream 7.3.6 Note regarding CVE-2020-27846: SAML is not supported in the open source version of Grafana, however the dependency on crewjam/saml is also present in the open source version. This update removes this dependency altogether. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 21 2020 Andreas Gerstmayr |