Commit Graph

34 Commits

Author SHA1 Message Date
Andreas Gerstmayr
4b8a079f1c bump NVR
Related: rhbz#2127218
2022-09-20 12:28:24 +02:00
Andreas Gerstmayr
def032aa4e update to upstream v9.0.8
Resolves: rhbz#2116847
Resolves: rhbz#2095421
2022-09-15 18:34:41 +02:00
Andreas Gerstmayr
ee4fa8f461 rebuild to fix various Golang CVEs
Resolves: #2111747
2022-08-11 16:00:41 +02:00
Andreas Gerstmayr
664c406f53 fix CVE-2022-31107 grafana: OAuth account takeover
Resolves: rhbz#2107190
2022-07-26 19:21:54 +02:00
Andreas Gerstmayr
1a807bbfa9 update to upstream Grafana 7.5.15, resolve CVE-2021-23648 and CVE-2022-21698
Resolves: rhbz#2055349
Resolves: rhbz#2046614
Resolves: rhbz#2053463
Resolves: rhbz#2055453
Resolves: rhbz#2055454
Resolves: rhbz#2066488
Resolves: rhbz#2068163
2022-04-22 14:29:58 +02:00
Andreas Gerstmayr
8fc3ff2468 use HMAC-SHA-256 instead of SHA-1 to generate password reset tokens
update FIPS tests in check phase

Resolves: rhbz#1935523
2022-01-18 18:54:43 +01:00
Andreas Gerstmayr
a362c62136 fix CVE-2021-44716 and CVE-2021-43813
Resolves: rhbz#2034450
Resolves: rhbz#2032740
2022-01-18 16:23:29 +01:00
Andreas Gerstmayr
598a441ca7 update to upstream version 7.5.11
Resolves: rhbz#1993215
Resolves: rhbz#2012165
Resolves: CVE-2021-39226
2021-10-11 18:51:14 +02:00
Andreas Gerstmayr
8f43abb257 update patch handling and instructions
Related: rhbz#1993215
2021-10-11 18:42:52 +02:00
Andreas Gerstmayr
708931e2e6 update to upstream version 7.5.10
Resolves: rhbz#1993215
2021-09-30 18:17:18 +02:00
Mohan Boddu
f16442ed0a Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688
Signed-off-by: Mohan Boddu <mboddu@redhat.com>
2021-08-09 20:20:06 +00:00
Andreas Gerstmayr
978d08bcf8 rebuild for 7.5.9-2
* remove unused dependency property-information
* always include FIPS patch in SRPM

Related: rhbz#1956384
2021-07-08 16:13:54 +02:00
Andreas Gerstmayr
1af03b0873 setup OpenSSL FIPS provider in test phase
Since OpenSSL 3 GOLANG_FIPS=1 is not sufficient anymore to exercise
FIPS functionality, therefore a custom OpenSSL config is created
enabling the OpenSSL FIPS provider in the test phase of the specfile.

Related: rhbz#1956384
2021-06-28 17:17:17 +02:00
Andreas Gerstmayr
16ddcefd44 update to upstream version 7.5.9
Resolves: rhbz#1956384
2021-06-25 18:34:09 +02:00
Mohan Boddu
8b919bb208 Rebuilt for RHEL 9 BETA for openssl 3.0
Related: rhbz#1971065
Signed-off-by: Mohan Boddu <mboddu@redhat.com>
2021-06-22 18:39:08 +00:00
Andreas Gerstmayr
e1a2da4762 update to upstream version 7.5.8
and remove unused dependencies selfsigned, http-signature and gofpdf

Resolves: rhbz#1956384
2021-06-21 14:41:37 +00:00
Andreas Gerstmayr
1b67d8ddd8 remove unused crypto, use OpenSSL if FIPS mode is enabled
Resolves: rhbz#1956384
2021-06-11 16:11:45 +02:00
Andreas Gerstmayr
9fa47fa0c8 Rebase to Grafana 7.5.7
Resolves: rhbz#1943432
Resolves: rhbz#1935189
Resolves: rhbz#1930132
2021-05-27 16:06:42 +02:00
Mohan Boddu
c08d72ad7d - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
Signed-off-by: Mohan Boddu <mboddu@redhat.com>
2021-04-15 23:58:07 +00:00
DistroBaker
2b18ece77a Merged update from upstream sources
This is an automated DistroBaker update from upstream sources.
If you do not know what this is about or would like to opt out,
contact the OSCI team.

Source: https://src.fedoraproject.org/rpms/grafana.git#7dbccd67bdfff2a341b666114b65d48b197cd43c
2021-02-04 00:41:38 +01:00
DistroBaker
2b2f0a6d03 Merged update from upstream sources
This is an automated DistroBaker update from upstream sources.
If you do not know what this is about or would like to opt out,
contact the OSCI team.

Source: https://src.fedoraproject.org/rpms/grafana.git#093c901afa6e6e303e75538944936b96f754133a
2021-01-22 12:38:42 +00:00
DistroBaker
69a6f71052 Merged update from upstream sources
This is an automated DistroBaker update from upstream sources.
If you do not know what this is about or would like to opt out,
contact the OSCI team.

Source: https://src.fedoraproject.org/rpms/grafana.git#8b048a5bf5e5e75dc52ea4411b0605c55a171ceb
2020-12-21 19:37:43 +00:00
Andreas Gerstmayr
38afbdd6f1 Rebase to grafana 7.3.4
Resolves: #1850471
2020-11-25 18:52:48 +01:00
Andreas Gerstmayr
9fa1c58ce0 Rebase to grafana 7.3.1
Resolves: #1850471
2020-11-11 16:08:08 +01:00
Andreas Gerstmayr
1a6c0ebf42 apply patch for CVE-2020-13430 also to sources, not only to compiled webpack
Related: #1850427
2020-08-20 11:52:33 +02:00
Andreas Gerstmayr
077561a443 fix CVE-2020-13430
Resolves: #1850427
Fixes: CVE-2020-13430
2020-08-19 17:21:49 +02:00
Andreas Gerstmayr
171ce90ada Rebase to grafana-6.7.4
Resolves: #1843964
Fixes: CVE-2020-13379
2020-06-05 21:40:36 +02:00
Andreas Gerstmayr
daef40c390 Rebase to grafana-6.7.3 for 8.3
Resolves: #1807323
Resolves: #1830006
Resolves: #1830002
Fixes: CVE-2020-12458
Fixes: CVE-2020-12459
2020-05-05 17:28:43 +02:00
Mark Goodwin
3ccf1fb92d Rebase to grafana-6.3.6 for 8.2
Resolves: rhbz#1725278
2019-11-20 11:45:19 +11:00
Mark Goodwin
139cd30fad obsolete packages from -2 build that are no longer shipped
Resolves: bz1685316
2019-06-17 12:15:30 +10:00
Mark Goodwin
9ae44d177f Spec update to conditionally package only some built-in datasource plugins
and bump to build revision 3.

Resolves: bz1685316
2019-06-17 11:11:39 +10:00
Mark Goodwin
a56e94aa49 Rebuild with gating.
Resolves: bz1685316
2019-06-14 16:53:29 +10:00
Mark Goodwin
232ba0e5a2 Update to grafana-6.2.2. Split out built-in datasources to subpackages.
Resolves: bz1685316
2019-06-07 13:09:25 +10:00
Mark Goodwin
4fb10930a4 Initial grafana package for RHEL-8.1.0.
Resolves: bz1685316
2019-05-24 16:35:26 +10:00