[Bug 271893] www/grafana{8,9}: Update to 8.5.26 and 9.5.3 (Fixes security vulnerabilities)

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 271893] www/grafana{8,9}: Update to 8.5.26 and 9.5.3 (Fixes security vulnerabilities)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 07 Jun 2023 21:06:33 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=271893

Boris Korzun <drtr0jan@yandex.ru> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |ports-secteam@FreeBSD.org
 Attachment #242672|                            |maintainer-approval?(ports-
              Flags|                            |secteam@FreeBSD.org)

--- Comment #2 from Boris Korzun <drtr0jan@yandex.ru> ---
Created attachment 242672
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=242672&action=edit
vuxml.patch

vuxml:
* CVE-2023-2183 - Broken access control: viewer can send test alerts (
https://grafana.com/security/security-advisories/cve-2023-2183/ )
* CVE-2023-2801 - Grafana DS proxy race condition (
https://grafana.com/security/security-advisories/cve-2023-2801/ )

-- 
You are receiving this mail because:
You are the assignee for the bug.