grafana-11.3.3-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:14724-1 Final 1 1 2025-02-03T00:00:00Z current 2025-02-03T00:00:00Z 2025-02-03T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z grafana-11.3.3-1.1 on GA media These are all security issues fixed in the grafana-11.3.3-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-14724 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UZ3CJG7ZQR7G4FKO3S66XRUEG7VPQF6R/ E-Mail link for openSUSE-SU-2025:14724-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2024-11741/ SUSE CVE CVE-2024-11741 page openSUSE Tumbleweed grafana-11.3.3-1.1 grafana-11.3.3-1.1 as a component of openSUSE Tumbleweed Grafana is an open-source platform for monitoring and observability. The Grafana Alerting VictorOps integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 11.5.0, 11.4.1, 11.3.3, 11.2.6, 11.1.11, 11.0.11 and 10.4.15 CVE-2024-11741 openSUSE Tumbleweed:grafana-11.3.3-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UZ3CJG7ZQR7G4FKO3S66XRUEG7VPQF6R/ https://www.suse.com/security/cve/CVE-2024-11741.html CVE-2024-11741 https://bugzilla.suse.com/1236734 SUSE Bug 1236734