{ "schema_version": "1.7.0", "id": "RHSA-2025:3616", "related": [ "GO-2025-3553" ], "upstream": [ "CVE-2025-30204" ], "published": "2025-04-07T10:03:51Z", "modified": "2026-03-11T10:07:22Z", "summary": "Red Hat Security Advisory: grafana security update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "affected": [ { "package": { "name": "grafana", "ecosystem": "Red Hat:rhel_eus:9.2::appstream", "purl": "pkg:rpm/redhat/grafana" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:9.0.9-6.el9_2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "grafana-debuginfo", "ecosystem": "Red Hat:rhel_eus:9.2::appstream", "purl": "pkg:rpm/redhat/grafana-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:9.0.9-6.el9_2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "grafana-debugsource", "ecosystem": "Red Hat:rhel_eus:9.2::appstream", "purl": "pkg:rpm/redhat/grafana-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:9.0.9-6.el9_2" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2025:3616" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3616.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2025-30204" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2025-30204" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204" }, { "type": "ARTICLE", "url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3" }, { "type": "ARTICLE", "url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp" }, { "type": "ADVISORY", "url": "https://pkg.go.dev/vuln/GO-2025-3553" } ] }