Red Hat Product Errata RHSA-2026:3188 - Security Advisory
Issued:
2026-02-24
Updated:
2026-02-24

RHSA-2026:3188 - Security Advisory

Synopsis

Important: grafana security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for grafana is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.

Security Fix(es):

  • golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip (CVE-2025-61728)
  • golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)
  • crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x

Fixes

  • BZ - 2434431 - CVE-2025-61728 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip
  • BZ - 2434432 - CVE-2025-61726 golang: net/url: Memory exhaustion in query parameter parsing in net/url
  • BZ - 2437111 - CVE-2025-68121 crypto/tls: Unexpected session resumption in crypto/tls

Red Hat Enterprise Linux for x86_64 8

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
x86_64
grafana-9.2.10-28.el8_10.x86_64.rpm SHA-256: 679089c345239d83969cf0c964c63896593552f3b14e0e29ddc5994e7b34add0
grafana-debuginfo-9.2.10-28.el8_10.x86_64.rpm SHA-256: 69454cc928739b9b786f6bd2fa1cb2fc5a4fca9bd43fcf7e2a506976d0f7ab4c
grafana-debugsource-9.2.10-28.el8_10.x86_64.rpm SHA-256: 82f255cac310b07c8fc1b5b2b0966b3e010f5ccd79c213b2ecfce6daba1a7fef
grafana-selinux-9.2.10-28.el8_10.x86_64.rpm SHA-256: 7974f3ff5082e0ca2555492524b7bd1c9b438c28fee08452e8bf55d526113da4

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
s390x
grafana-9.2.10-28.el8_10.s390x.rpm SHA-256: 4fab10dcc8e8d2f715182df5273c9ea44e8920cc91e9fbec9f7608c0aa349a31
grafana-debuginfo-9.2.10-28.el8_10.s390x.rpm SHA-256: 7935e6e05bde23e27112b071793acb40d1cb46f71e19eef561d5388942044bdf
grafana-debugsource-9.2.10-28.el8_10.s390x.rpm SHA-256: 1dfbdda5f86d5130c9b179e4f4f57437138416b6d67d693946078d37db9c6bd6
grafana-selinux-9.2.10-28.el8_10.s390x.rpm SHA-256: 65ee7b2a13a9721f29fedf9acfeb09a3f3b61cc7bdb3657eb7a2aeeb745c8bc9

Red Hat Enterprise Linux for Power, little endian 8

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
ppc64le
grafana-9.2.10-28.el8_10.ppc64le.rpm SHA-256: 4c286fa144888112bc48ec7cbff16e893ea7bec0901bcd2b9bec35a7516435bf
grafana-debuginfo-9.2.10-28.el8_10.ppc64le.rpm SHA-256: 77e77aceb165136977cf6102b862aeadc816b2846361f81c05809b7d1613cd2f
grafana-debugsource-9.2.10-28.el8_10.ppc64le.rpm SHA-256: ecda49016bfffb6c74ae23bc705713803600e7740ffd436b97b1a3feeae8770b
grafana-selinux-9.2.10-28.el8_10.ppc64le.rpm SHA-256: 535bbb19733223e1af0c2ba1f6f6316129e099a32e8db29ed68dbc4e22e7b9f4

Red Hat Enterprise Linux for ARM 64 8

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
aarch64
grafana-9.2.10-28.el8_10.aarch64.rpm SHA-256: e1879d48b1c5905017d60bb71aad0aee0c54a875ccde7ef69c688cc56c3a7bf1
grafana-debuginfo-9.2.10-28.el8_10.aarch64.rpm SHA-256: 76aea3ac1ee49ad576f6069662e806718cc95995e27fe4962658652e5f7355b3
grafana-debugsource-9.2.10-28.el8_10.aarch64.rpm SHA-256: 6ec32f81f657dd97f8458cf7a7f135946e5af7ca570289355173bc403787c14a
grafana-selinux-9.2.10-28.el8_10.aarch64.rpm SHA-256: 96d8ac4fd197b574bf8af5b7c6d87b9fe2567184e34ab53b72be6aabd6e29322

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
x86_64
grafana-9.2.10-28.el8_10.x86_64.rpm SHA-256: 679089c345239d83969cf0c964c63896593552f3b14e0e29ddc5994e7b34add0
grafana-debuginfo-9.2.10-28.el8_10.x86_64.rpm SHA-256: 69454cc928739b9b786f6bd2fa1cb2fc5a4fca9bd43fcf7e2a506976d0f7ab4c
grafana-debugsource-9.2.10-28.el8_10.x86_64.rpm SHA-256: 82f255cac310b07c8fc1b5b2b0966b3e010f5ccd79c213b2ecfce6daba1a7fef
grafana-selinux-9.2.10-28.el8_10.x86_64.rpm SHA-256: 7974f3ff5082e0ca2555492524b7bd1c9b438c28fee08452e8bf55d526113da4

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
aarch64
grafana-9.2.10-28.el8_10.aarch64.rpm SHA-256: e1879d48b1c5905017d60bb71aad0aee0c54a875ccde7ef69c688cc56c3a7bf1
grafana-debuginfo-9.2.10-28.el8_10.aarch64.rpm SHA-256: 76aea3ac1ee49ad576f6069662e806718cc95995e27fe4962658652e5f7355b3
grafana-debugsource-9.2.10-28.el8_10.aarch64.rpm SHA-256: 6ec32f81f657dd97f8458cf7a7f135946e5af7ca570289355173bc403787c14a
grafana-selinux-9.2.10-28.el8_10.aarch64.rpm SHA-256: 96d8ac4fd197b574bf8af5b7c6d87b9fe2567184e34ab53b72be6aabd6e29322

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
ppc64le
grafana-9.2.10-28.el8_10.ppc64le.rpm SHA-256: 4c286fa144888112bc48ec7cbff16e893ea7bec0901bcd2b9bec35a7516435bf
grafana-debuginfo-9.2.10-28.el8_10.ppc64le.rpm SHA-256: 77e77aceb165136977cf6102b862aeadc816b2846361f81c05809b7d1613cd2f
grafana-debugsource-9.2.10-28.el8_10.ppc64le.rpm SHA-256: ecda49016bfffb6c74ae23bc705713803600e7740ffd436b97b1a3feeae8770b
grafana-selinux-9.2.10-28.el8_10.ppc64le.rpm SHA-256: 535bbb19733223e1af0c2ba1f6f6316129e099a32e8db29ed68dbc4e22e7b9f4

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-28.el8_10.src.rpm SHA-256: d6ebdccd220c503ead411c067df58be4cdca3aaa8d6b877dcd8a35f1d0cf320c
s390x
grafana-9.2.10-28.el8_10.s390x.rpm SHA-256: 4fab10dcc8e8d2f715182df5273c9ea44e8920cc91e9fbec9f7608c0aa349a31
grafana-debuginfo-9.2.10-28.el8_10.s390x.rpm SHA-256: 7935e6e05bde23e27112b071793acb40d1cb46f71e19eef561d5388942044bdf
grafana-debugsource-9.2.10-28.el8_10.s390x.rpm SHA-256: 1dfbdda5f86d5130c9b179e4f4f57437138416b6d67d693946078d37db9c6bd6
grafana-selinux-9.2.10-28.el8_10.s390x.rpm SHA-256: 65ee7b2a13a9721f29fedf9acfeb09a3f3b61cc7bdb3657eb7a2aeeb745c8bc9

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.