With cephadm reef (v18.2.4), is there a way to upgrade the Grafana that is incorporated into the docker build?
Currently it's showing Grafana v9.4.7 (quay.io/ceph/ceph-grafana:9.4.7) and that is actually an open vulnerability per CVE-2023-1387 (Grafana 9.1.0 < 9.2.17, 9.3.x < 9.3.13, 9.4.x < 9.4.9 Information Disclosure Vulnerability). Grafana shows that it's fixed with version 9.4.9 and above (https://grafana.com/security/security-advisories/cve-2023-1387/). -- Michael This message and its attachments are from Data Dimensions and are intended only for the use of the individual or entity to which it is addressed, and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, please notify the sender immediately and permanently delete the original email and destroy any copies or printouts of this email as well as any attachments. _______________________________________________ ceph-users mailing list -- ceph-users@ceph.io To unsubscribe send an email to ceph-users-le...@ceph.io
