Red Hat Product Errata RHSA-2026:7011 - Security Advisory
Issued:
2026-04-08
Updated:
2026-04-08

RHSA-2026:7011 - Security Advisory

Synopsis

Important: grafana security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for grafana is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.

Security Fix(es):

  • net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x

Fixes

  • BZ - 2445356 - CVE-2026-25679 net/url: Incorrect parsing of IPv6 host literals in net/url

Red Hat Enterprise Linux for x86_64 8

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
x86_64
grafana-9.2.10-29.el8_10.x86_64.rpm SHA-256: 46c79ea8cfff96c2d6ba55904dc2a99d6945f24e0909f80a32dd93a022fc6757
grafana-debuginfo-9.2.10-29.el8_10.x86_64.rpm SHA-256: 4dca7c7a8ec7d42ba5f33f6f13274a120789762eeb4fbcc0caaac74ab0baf84e
grafana-debugsource-9.2.10-29.el8_10.x86_64.rpm SHA-256: 1dd4389aae776a72a96b2483c684f6c0f3436e7e6de1480ff20ee4eff04c486f
grafana-selinux-9.2.10-29.el8_10.x86_64.rpm SHA-256: 36b306df22c2538f72034326ea12b3622bb33495e612a5004df502b7ec2071ec

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
s390x
grafana-9.2.10-29.el8_10.s390x.rpm SHA-256: 833b5436431ed87b5c89949dfd15f3faeccf70365c8bef7ab8604c767d54d177
grafana-debuginfo-9.2.10-29.el8_10.s390x.rpm SHA-256: a0fb31d2d8fcd3c934e14862c9d18ea11fc2551bbf081ac8f17f31c6aa9d9899
grafana-debugsource-9.2.10-29.el8_10.s390x.rpm SHA-256: 6e4eb3d3949e7076f780aad5ce4d03442bf987da4f14d6acbc07c301ee74ef65
grafana-selinux-9.2.10-29.el8_10.s390x.rpm SHA-256: 334063067d6bd11a0b171cbf07458a9206e835aa9eeecdfb02b77fb6c3e85755

Red Hat Enterprise Linux for Power, little endian 8

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
ppc64le
grafana-9.2.10-29.el8_10.ppc64le.rpm SHA-256: 115b202182c556e0f66fa0bdde9e11e3690824a44c3847ef0eb19f8734d6979b
grafana-debuginfo-9.2.10-29.el8_10.ppc64le.rpm SHA-256: ab5fe3a33171e0da6dfc72f07bf8376d44c02ef240d6fc70e9cfa5eeacefa14f
grafana-debugsource-9.2.10-29.el8_10.ppc64le.rpm SHA-256: 603cf7bdb0ab1200fefba8668c3ce15a67a4326a68e61fda985205566bf99763
grafana-selinux-9.2.10-29.el8_10.ppc64le.rpm SHA-256: 1ef94acbd53f0e72bef9719c891ab7d258e7be8276e21d6e97802171f1190881

Red Hat Enterprise Linux for ARM 64 8

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
aarch64
grafana-9.2.10-29.el8_10.aarch64.rpm SHA-256: 7c7e19260c0b2f5f0105ee8a85cbd4f60fc53a417487157f0af2c7fe672cd3a1
grafana-debuginfo-9.2.10-29.el8_10.aarch64.rpm SHA-256: b6a5560b729a9820da0a918c59a034f70e9241e1df9ba704d315e9574524607d
grafana-debugsource-9.2.10-29.el8_10.aarch64.rpm SHA-256: 52864731dde2419a46216bef0698e670c73f0ae0b4486103aecf7237fa3ae1da
grafana-selinux-9.2.10-29.el8_10.aarch64.rpm SHA-256: f1989903abbe51a57c117c3d00c41e7798c1b13a54dd7e3dcd246a8a489fdf0a

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
x86_64
grafana-9.2.10-29.el8_10.x86_64.rpm SHA-256: 46c79ea8cfff96c2d6ba55904dc2a99d6945f24e0909f80a32dd93a022fc6757
grafana-debuginfo-9.2.10-29.el8_10.x86_64.rpm SHA-256: 4dca7c7a8ec7d42ba5f33f6f13274a120789762eeb4fbcc0caaac74ab0baf84e
grafana-debugsource-9.2.10-29.el8_10.x86_64.rpm SHA-256: 1dd4389aae776a72a96b2483c684f6c0f3436e7e6de1480ff20ee4eff04c486f
grafana-selinux-9.2.10-29.el8_10.x86_64.rpm SHA-256: 36b306df22c2538f72034326ea12b3622bb33495e612a5004df502b7ec2071ec

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
aarch64
grafana-9.2.10-29.el8_10.aarch64.rpm SHA-256: 7c7e19260c0b2f5f0105ee8a85cbd4f60fc53a417487157f0af2c7fe672cd3a1
grafana-debuginfo-9.2.10-29.el8_10.aarch64.rpm SHA-256: b6a5560b729a9820da0a918c59a034f70e9241e1df9ba704d315e9574524607d
grafana-debugsource-9.2.10-29.el8_10.aarch64.rpm SHA-256: 52864731dde2419a46216bef0698e670c73f0ae0b4486103aecf7237fa3ae1da
grafana-selinux-9.2.10-29.el8_10.aarch64.rpm SHA-256: f1989903abbe51a57c117c3d00c41e7798c1b13a54dd7e3dcd246a8a489fdf0a

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
ppc64le
grafana-9.2.10-29.el8_10.ppc64le.rpm SHA-256: 115b202182c556e0f66fa0bdde9e11e3690824a44c3847ef0eb19f8734d6979b
grafana-debuginfo-9.2.10-29.el8_10.ppc64le.rpm SHA-256: ab5fe3a33171e0da6dfc72f07bf8376d44c02ef240d6fc70e9cfa5eeacefa14f
grafana-debugsource-9.2.10-29.el8_10.ppc64le.rpm SHA-256: 603cf7bdb0ab1200fefba8668c3ce15a67a4326a68e61fda985205566bf99763
grafana-selinux-9.2.10-29.el8_10.ppc64le.rpm SHA-256: 1ef94acbd53f0e72bef9719c891ab7d258e7be8276e21d6e97802171f1190881

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10

SRPM
grafana-9.2.10-29.el8_10.src.rpm SHA-256: 248df4964ffc79df5e4a01e460ba879d05a9b5e80d0a93058bdfbfcae5471a25
s390x
grafana-9.2.10-29.el8_10.s390x.rpm SHA-256: 833b5436431ed87b5c89949dfd15f3faeccf70365c8bef7ab8604c767d54d177
grafana-debuginfo-9.2.10-29.el8_10.s390x.rpm SHA-256: a0fb31d2d8fcd3c934e14862c9d18ea11fc2551bbf081ac8f17f31c6aa9d9899
grafana-debugsource-9.2.10-29.el8_10.s390x.rpm SHA-256: 6e4eb3d3949e7076f780aad5ce4d03442bf987da4f14d6acbc07c301ee74ef65
grafana-selinux-9.2.10-29.el8_10.s390x.rpm SHA-256: 334063067d6bd11a0b171cbf07458a9206e835aa9eeecdfb02b77fb6c3e85755

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.