[CLSA-2026:1783354657] grafana: Fix of CVE-2026-42127
Type:
security
Severity:
Important
Release date:
2026-07-06 16:17:53 UTC
Description:
- CVE-2026-42127: fix unauthenticated denial of service (memory exhaustion) in the public dashboard query endpoint by limiting the size of request bodies read by the public dashboard endpoints and by web.Bind
CVEs fixed:
Updated packages:
  • grafana-10.2.6-15.el9_6.tuxcare.els12.x86_64.rpm
    sha:bf6fab662df563c80c6d1521b4c37a8c1c4b6eee75bb8a105b95a5748fb8a11a
  • grafana-selinux-10.2.6-15.el9_6.tuxcare.els12.x86_64.rpm
    sha:90d73ad783ddcad4a40dc64a35edefb149d7261c23d7d40fc62a098d1444242d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.