[CLSA-2026:1784025046] grafana-pcp: Fix of CVE-2026-39821
Type:
security
Severity:
Important
Release date:
2026-07-14 10:31:01 UTC
Description:
- CVE-2026-39821: update bundled golang.org/x/net to 0.55.0 so that IDNA ToASCII/ToUnicode reject Punycode-encoded labels that decode to an all-ASCII name, preventing hostname authorization bypass and privilege escalation
CVEs fixed:
Updated packages:
  • grafana-pcp-5.1.1-11.el9_6.tuxcare.els5.x86_64.rpm
    sha:e5f273dd4b76cc0eaca2804ce8d54a8089f5d7aba814076d56d6450d518e8fbf
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.