From issues-return-82176-archive-asf-public=cust-asf.ponee.io@ambari.apache.org  Wed Jan 27 08:46:03 2021
Return-Path: <issues-return-82176-archive-asf-public=cust-asf.ponee.io@ambari.apache.org>
X-Original-To: archive-asf-public@cust-asf.ponee.io
Delivered-To: archive-asf-public@cust-asf.ponee.io
Received: from mxout1-ec2-va.apache.org (mxout1-ec2-va.apache.org [3.227.148.255])
	by mx-eu-01.ponee.io (Postfix) with ESMTPS id 051F3180679
	for <archive-asf-public@cust-asf.ponee.io>; Wed, 27 Jan 2021 09:46:03 +0100 (CET)
Received: from mail.apache.org (mailroute1-lw-us.apache.org [207.244.88.153])
	by mxout1-ec2-va.apache.org (ASF Mail Server at mxout1-ec2-va.apache.org) with SMTP id 3FEFF45D00
	for <archive-asf-public@cust-asf.ponee.io>; Wed, 27 Jan 2021 08:46:02 +0000 (UTC)
Received: (qmail 12026 invoked by uid 500); 27 Jan 2021 08:46:01 -0000
Mailing-List: contact issues-help@ambari.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@ambari.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@ambari.apache.org>
List-Post: <mailto:issues@ambari.apache.org>
List-Id: <issues.ambari.apache.org>
Reply-To: dev@ambari.apache.org
Delivered-To: mailing list issues@ambari.apache.org
Received: (qmail 12017 invoked by uid 99); 27 Jan 2021 08:46:01 -0000
Received: from mailrelay1-he-de.apache.org (HELO mailrelay1-he-de.apache.org) (116.203.21.61)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 27 Jan 2021 08:46:01 +0000
Received: from jira2-he-de.apache.org (jira2-he-de.apache.org [168.119.33.54])
	by mailrelay1-he-de.apache.org (ASF Mail Server at mailrelay1-he-de.apache.org) with ESMTPS id 72B493E97B
	for <issues@ambari.apache.org>; Wed, 27 Jan 2021 08:46:00 +0000 (UTC)
Received: from jira2-he-de.apache.org (localhost.localdomain [127.0.0.1])
	by jira2-he-de.apache.org (ASF Mail Server at jira2-he-de.apache.org) with ESMTP id 59A66C80291
	for <issues@ambari.apache.org>; Wed, 27 Jan 2021 08:46:00 +0000 (UTC)
Date: Wed, 27 Jan 2021 08:46:00 +0000 (UTC)
From: "Tamas Payer (Jira)" <jira@apache.org>
To: issues@ambari.apache.org
Message-ID: <JIRA.13325899.1599130221000.520192.1611737160366@Atlassian.JIRA>
In-Reply-To: <JIRA.13325899.1599130221000@Atlassian.JIRA>
References: <JIRA.13325899.1599130221000@Atlassian.JIRA> <JIRA.13325899.1599130221365@jira2-he-de.apache.org>
Subject: [jira] [Resolved] (AMBARI-25547) Update Grafana version to 6.7.4 to
 avoid CVE-2020-13379
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


     [ https://issues.apache.org/jira/browse/AMBARI-25547?page=3Dcom.atlass=
ian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Tamas Payer resolved AMBARI-25547.
----------------------------------
    Resolution: Fixed

> Update Grafana version to 6.7.4 to avoid CVE-2020-13379
> -------------------------------------------------------
>
>                 Key: AMBARI-25547
>                 URL: https://issues.apache.org/jira/browse/AMBARI-25547
>             Project: Ambari
>          Issue Type: Bug
>          Components: ambari-metrics
>    Affects Versions: 2.7.5
>            Reporter: =C3=89berhardt P=C3=A9ter
>            Assignee: Tamas Payer
>            Priority: Critical
>              Labels: grafana
>             Fix For: 2.7.6
>
>          Time Spent: 2h 20m
>  Remaining Estimate: 0h
>
> Uplift grafana vesion to 6.7.4
> Grafana Vulnerability CVE-2020-13379
> [https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2020-13379]
> [https://grafana.com/blog/2020/06/03/grafana-6.7.4-and-7.0.2-released-wit=
h-important-security-fix/]
> =C2=A0



--
This message was sent by Atlassian Jira
(v8.3.4#803005)