[24.11] grafana: 11.3.7 -> 11.3.7+security-01, fix CVE-2025-3415#416418
[24.11] grafana: 11.3.7 -> 11.3.7+security-01, fix CVE-2025-3415#416418leona-ya merged 1 commit intoNixOS:release-24.11from
Conversation
Ma27
added
the
1.severity: security
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
This report is automatically generated by the check-cherry-picks CI workflow.
Some of the commits in this PR have not been cherry-picked exactly and require the author's and reviewer's attention.
Please make sure to follow the backporting guidelines and cherry-pick with the -x flag. This requires changes to go to the unstable branches (master / staging) first, before backporting them.
Occasionally, it is not possible to cherry-pick exactly the same patch. This most frequently happens when resolving merge conflicts while cherry-picking or when updating minor versions of packages which have already advanced to the next major on unstable. If you need to merge this PR despite the warnings, please dismiss this review.
Warning
Couldn't locate original commit hash in message of 8e2ce34.
Hint: The full diffs are also available in the runner logs with slightly better highlighting.
github-actions
Bot
added
10.rebuild-darwin: 1-10
nix-owners
Bot
requested review from
Frostman,
WilliButz,
fpletz,
globin and
offlinehacker
Ma27
dismissed
github-actions[bot]’s stale review
24.11 has an older version of Grafana packaged. We're not going to upgrade to v12, but we need to patch out the CVE mentioned in the commit.
2 participants
ChangeLog: https://github.com/grafana/grafana/releases/v11.3.7+security-01
Things done
nix.conf? (See Nix manual)sandbox = relaxedsandbox = truenix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage./result/bin/)Add a 👍 reaction to pull requests you find important.