Back to bug 2131148
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| TEJ RATHI | 2022-09-30 05:51:39 UTC | CC | security-response-team | |
| TEJ RATHI | 2022-09-30 05:57:42 UTC | CC | agerstmayr, amctagga, aoconnor, bniver, flucifre, gmeno, jkurik, mbenjamin, mhackett, nathans, sostapov, vereddy | |
| TEJ RATHI | 2022-09-30 06:05:36 UTC | CC | gparvin, jramanat, njean, pahickey, stcannon | |
| TEJ RATHI | 2022-09-30 06:25:04 UTC | CC | jburrell, vkumar | |
| TEJ RATHI | 2022-09-30 06:27:47 UTC | CC | anstephe, avibelli, bgeorges, chazlett, clement.escoffier, dandread, dkreling, gsmet, hamadhan, jochrist, jwon, krathod, lthon, peholase, pgallagh, pjindal, probinso, rruss, rsvoboda, sbiarozk, sdouglas | |
| TEJ RATHI | 2022-09-30 06:28:59 UTC | Blocks | 2131159 | |
| Sandipan Roy | 2022-09-30 08:36:30 UTC | Depends On | 2131189, 2131190 | |
| Borja Tarraso | 2022-09-30 13:38:23 UTC | Depends On | 2131262 | |
| Sage McTaggart | 2022-10-07 17:34:56 UTC | Group | team ocp_embargoes | |
| Depends On | 2133063, 2133064, 2133062 | |||
| Marian Rehak | 2022-10-14 05:37:19 UTC | CC | go-sig, grafana-maint, scox | |
| Summary | EMBARGOED CVE-2022-39201 grafana: Data source and plugin proxy endpoints could leak the authentication cookie to some destination plugins | CVE-2022-39201 grafana: Data source and plugin proxy endpoints could leak the authentication cookie to some destination plugins | ||
| Group | team ocp_embargoes, security, qe_staff | |||
| Marian Rehak | 2022-10-14 05:37:37 UTC | Depends On | 2134706 | |
| Sage McTaggart | 2022-10-14 18:01:59 UTC | Depends On | 2134937 | |
| Sage McTaggart | 2022-10-14 18:10:52 UTC | Doc Text | A flaw was found in Grafana. Grafana could leak the authentication cookie of users to plugins. The vulnerability impacts data source and plugin proxy endpoints under certain conditions. This could result in an impact to confidentiality, integrity, and availability. | |
| Paige Jung | 2022-10-14 18:25:41 UTC | Doc Text | A flaw was found in Grafana. Grafana could leak the authentication cookie of users to plugins. The vulnerability impacts data source and plugin proxy endpoints under certain conditions. This could result in an impact to confidentiality, integrity, and availability. | A flaw was found in Grafana. The vulnerability impacts data source and plugin proxy endpoints under certain conditions. Grafana could leak the authentication cookie of users to plugins, which could result in an impact to confidentiality, integrity, and availability. |
| Red Hat Bugzilla | 2022-10-28 13:13:11 UTC | CC | krathod | |
| Red Hat Bugzilla | 2023-01-01 05:32:57 UTC | CC | amctagga | |
| Red Hat Bugzilla | 2023-01-01 05:47:21 UTC | CC | flucifre | |
| Red Hat Bugzilla | 2023-01-01 05:52:56 UTC | CC | mhackett | |
| Red Hat Bugzilla | 2023-01-01 06:02:14 UTC | CC | bniver | |
| Red Hat Bugzilla | 2023-01-01 08:34:29 UTC | CC | mbenjamin | |
| Red Hat Bugzilla | 2023-01-01 08:43:36 UTC | CC | sostapov | |
| Red Hat Bugzilla | 2023-01-01 08:47:55 UTC | CC | vereddy | |
| Alasdair Kergon | 2023-01-04 05:43:50 UTC | CC | sostapov | |
| Alasdair Kergon | 2023-01-04 06:11:25 UTC | CC | bniver | |
| Alasdair Kergon | 2023-01-04 06:19:28 UTC | CC | mbenjamin | |
| Alasdair Kergon | 2023-01-04 06:29:04 UTC | CC | vereddy | |
| Alasdair Kergon | 2023-01-04 06:43:51 UTC | CC | flucifre | |
| Alasdair Kergon | 2023-01-04 11:29:24 UTC | CC | mhackett | |
| errata-xmlrpc | 2023-06-15 16:01:11 UTC | Link ID | Red Hat Product Errata RHSA-2023:3642 | |
| Red Hat Bugzilla | 2023-07-07 08:28:39 UTC | Assignee | security-response-team | nobody |
| CC | security-response-team |
Back to bug 2131148