Issued:: 2024-11-13
Updated:: 2024-11-13

RHSA-2024:9551 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: grafana-pcp security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for grafana-pcp is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards.

Security Fix(es):

golang-fips: Golang FIPS zeroed buffer (CVE-2024-9355)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
Red Hat Enterprise Linux Server - AUS 9.4 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x

Fixes

BZ - 2315719 - CVE-2024-9355 golang-fips: Golang FIPS zeroed buffer

CVEs

CVE-2024-9355

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
x86_64
grafana-pcp-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 154f24974fcf08efe352b460cf58586bb3a5d7bdb339dc955ca60dd37a31e99f
grafana-pcp-debuginfo-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 52e8241d21596e5d2e72b29d072b7a85d31c794b16cda065cf723f7f17f0b9e9
grafana-pcp-debugsource-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 9da42bb26b192ddf23a90b5c4a745286f22b85096518095b65fd27dec2f2b338

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
x86_64
grafana-pcp-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 154f24974fcf08efe352b460cf58586bb3a5d7bdb339dc955ca60dd37a31e99f
grafana-pcp-debuginfo-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 52e8241d21596e5d2e72b29d072b7a85d31c794b16cda065cf723f7f17f0b9e9
grafana-pcp-debugsource-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 9da42bb26b192ddf23a90b5c4a745286f22b85096518095b65fd27dec2f2b338

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
s390x
grafana-pcp-5.1.1-4.el9_4.s390x.rpm	SHA-256: 8d9130763d812b337585b7fde08aee5c1b7635c1e3f3423fca57c1b79543cc9c
grafana-pcp-debuginfo-5.1.1-4.el9_4.s390x.rpm	SHA-256: b439f71439e08b2815280dda9bbc636ca3b26fbe102db70e7f6b7aea867cbaaf
grafana-pcp-debugsource-5.1.1-4.el9_4.s390x.rpm	SHA-256: 4d701ea80c5969450676b9c605356830cf643ba96a5e9e4cb65f80daf3c9d7ec

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
ppc64le
grafana-pcp-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: f4771663da25ac98c6c7d10011d87d1a8dc3c52cdf070539ef87b6171af4c5e3
grafana-pcp-debuginfo-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: 39efb718becdc8d6dffefc63e8191847b68bf22a027200a8731387b8e2c1598a
grafana-pcp-debugsource-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: 3b8a7d486f4c7ecc5b755407eba0841a9cb72288bf78635115dd982f5ce86a2c

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
aarch64
grafana-pcp-5.1.1-4.el9_4.aarch64.rpm	SHA-256: ccd0aba3340c521f1846e410d00b8995beda2292942ab7cf8b53b47c0a14f5f2
grafana-pcp-debuginfo-5.1.1-4.el9_4.aarch64.rpm	SHA-256: 5f2d3f20e2d2466d2796b19f391693721017536d7d0a7cf10afb0a9e97ef76d0
grafana-pcp-debugsource-5.1.1-4.el9_4.aarch64.rpm	SHA-256: 6984f2474d6a5b032e8137b0c6223948e68c654340683e8bf36f944966c9fa09

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
ppc64le
grafana-pcp-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: f4771663da25ac98c6c7d10011d87d1a8dc3c52cdf070539ef87b6171af4c5e3
grafana-pcp-debuginfo-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: 39efb718becdc8d6dffefc63e8191847b68bf22a027200a8731387b8e2c1598a
grafana-pcp-debugsource-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: 3b8a7d486f4c7ecc5b755407eba0841a9cb72288bf78635115dd982f5ce86a2c

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
x86_64
grafana-pcp-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 154f24974fcf08efe352b460cf58586bb3a5d7bdb339dc955ca60dd37a31e99f
grafana-pcp-debuginfo-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 52e8241d21596e5d2e72b29d072b7a85d31c794b16cda065cf723f7f17f0b9e9
grafana-pcp-debugsource-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 9da42bb26b192ddf23a90b5c4a745286f22b85096518095b65fd27dec2f2b338

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
aarch64
grafana-pcp-5.1.1-4.el9_4.aarch64.rpm	SHA-256: ccd0aba3340c521f1846e410d00b8995beda2292942ab7cf8b53b47c0a14f5f2
grafana-pcp-debuginfo-5.1.1-4.el9_4.aarch64.rpm	SHA-256: 5f2d3f20e2d2466d2796b19f391693721017536d7d0a7cf10afb0a9e97ef76d0
grafana-pcp-debugsource-5.1.1-4.el9_4.aarch64.rpm	SHA-256: 6984f2474d6a5b032e8137b0c6223948e68c654340683e8bf36f944966c9fa09

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
s390x
grafana-pcp-5.1.1-4.el9_4.s390x.rpm	SHA-256: 8d9130763d812b337585b7fde08aee5c1b7635c1e3f3423fca57c1b79543cc9c
grafana-pcp-debuginfo-5.1.1-4.el9_4.s390x.rpm	SHA-256: b439f71439e08b2815280dda9bbc636ca3b26fbe102db70e7f6b7aea867cbaaf
grafana-pcp-debugsource-5.1.1-4.el9_4.s390x.rpm	SHA-256: 4d701ea80c5969450676b9c605356830cf643ba96a5e9e4cb65f80daf3c9d7ec

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
x86_64
grafana-pcp-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 154f24974fcf08efe352b460cf58586bb3a5d7bdb339dc955ca60dd37a31e99f
grafana-pcp-debuginfo-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 52e8241d21596e5d2e72b29d072b7a85d31c794b16cda065cf723f7f17f0b9e9
grafana-pcp-debugsource-5.1.1-4.el9_4.x86_64.rpm	SHA-256: 9da42bb26b192ddf23a90b5c4a745286f22b85096518095b65fd27dec2f2b338

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
aarch64
grafana-pcp-5.1.1-4.el9_4.aarch64.rpm	SHA-256: ccd0aba3340c521f1846e410d00b8995beda2292942ab7cf8b53b47c0a14f5f2
grafana-pcp-debuginfo-5.1.1-4.el9_4.aarch64.rpm	SHA-256: 5f2d3f20e2d2466d2796b19f391693721017536d7d0a7cf10afb0a9e97ef76d0
grafana-pcp-debugsource-5.1.1-4.el9_4.aarch64.rpm	SHA-256: 6984f2474d6a5b032e8137b0c6223948e68c654340683e8bf36f944966c9fa09

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
ppc64le
grafana-pcp-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: f4771663da25ac98c6c7d10011d87d1a8dc3c52cdf070539ef87b6171af4c5e3
grafana-pcp-debuginfo-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: 39efb718becdc8d6dffefc63e8191847b68bf22a027200a8731387b8e2c1598a
grafana-pcp-debugsource-5.1.1-4.el9_4.ppc64le.rpm	SHA-256: 3b8a7d486f4c7ecc5b755407eba0841a9cb72288bf78635115dd982f5ce86a2c

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4

SRPM
grafana-pcp-5.1.1-4.el9_4.src.rpm	SHA-256: e9f3ef4b35386231b2644f11d5066cd6b5df9f050aac9f190d538051a0b23e27
s390x
grafana-pcp-5.1.1-4.el9_4.s390x.rpm	SHA-256: 8d9130763d812b337585b7fde08aee5c1b7635c1e3f3423fca57c1b79543cc9c
grafana-pcp-debuginfo-5.1.1-4.el9_4.s390x.rpm	SHA-256: b439f71439e08b2815280dda9bbc636ca3b26fbe102db70e7f6b7aea867cbaaf
grafana-pcp-debugsource-5.1.1-4.el9_4.s390x.rpm	SHA-256: 4d701ea80c5969450676b9c605356830cf643ba96a5e9e4cb65f80daf3c9d7ec

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation