Security blog posts | Grafana Labs

Thomas Owen · 12 Jan 2023 · 6 min read

Grafana Labs update regarding CircleCI security updates

As a precautionary measure resulting from the recent CircleCI security alert, we are rotating some Grafana GPG keys.

Security

Marcelo Magallón · 30 Nov 2022 · 3 min read

Security release: New version of Synthetic Monitoring Agent with a high severity fix for...

Security

Jon Gyllenswärd · 29 Nov 2022 · 3 min read

Grafana security release: New versions with high severity security fix for CVE-2022-31097

Security

Grafana Labs Team · 8 Nov 2022 · 3 min read

Security release: New versions of Grafana with critical and moderate fixes for CVE-2022-39328,...

Security

Grafana Labs Team · 2 Nov 2022 · 2 min read

How the OpenSSL vulnerability affects Grafana Labs

Security

Vardan Torosyan · 12 Oct 2022 · 4 min read

Grafana security releases: New versions with fixes for CVE-2022-39229, CVE-2022-39201,...

Security

Vardan Torosyan · 20 Sep 2022 · 4 min read

Grafana security releases: New versions with moderate severity security fixes for CVE-2022-35957 and...

Security

Vardan Torosyan · 30 Aug 2022 · 4 min read

Security release: New versions of Grafana and Grafana Image Renderer with a high severity security...

Security

Jon Gyllenswärd · 14 Jul 2022 · 4 min read

Grafana v9.0.3, v8.5.9, v8.4.10, and v8.3.10 released with high severity security fix

Security

Emil Tullstedt · 7 Jun 2022 · 4 min read

CVE-2022-32276 and CVE-2022-32275: No current evidence of security impact

We are not aware of any evidence which would support the assessment that these amount to security vulnerabilities

Security

Vardan Torosyan · 19 May 2022 · 3 min read

Grafana Enterprise 8.5.3 and 7.5.16 released with moderate severity security fix

Today we are releasing Grafana Enterprise 8.5.3 and 7.5.16 which include an important moderate severity security fix. If you are affected, we...

Security

Grafana Labs Team · 18 Apr 2022 · 2 min read

Grafana Labs has found no evidence that it has been impacted by the Spring4Shell vulnerability

Grafana Labs has reviewed our code base, issues, projects, vulnerabilities, libraries, and licenses, and we found no evidence that we have been...

Security

Vardan Torosyan · 12 Apr 2022 · 3 min read

Grafana Enterprise 8.4.6 released with high severity security fix

Today we are releasing Grafana Enterprise 8.4.6 which includes an important high severity security fix. If you are affected, we recommend that you...

Security

Thomas Owen · 23 Mar 2022 · 2 min read

Security update: Grafana Labs does not believe it has been impacted by the Okta Lapsus$ breach

Update on the Okta Lapsus$ breach: At this time, Grafana Labs has no reason to believe it has been impacted by the Okta Lapsus$ breach.

Security

Stefan Kupstaitis-Dunkler · 22 Feb 2022 · 10 min read

How secure is your Grafana instance? What you need to know

Learn more about Grafana's security features for authentication, authorization, auditing, administration, and encryption.

Grafana

Security

Feedback

Relevant sources:

Feedback

Security

Grafana Labs update regarding CircleCI security updates

Security release: New version of Synthetic Monitoring Agent with a high severity fix for...

Grafana security release: New versions with high severity security fix for CVE-2022-31097

Security release: New versions of Grafana with critical and moderate fixes for CVE-2022-39328,...

How the OpenSSL vulnerability affects Grafana Labs

Grafana security releases: New versions with fixes for CVE-2022-39229, CVE-2022-39201,...

Grafana security releases: New versions with moderate severity security fixes for CVE-2022-35957 and...

Security release: New versions of Grafana and Grafana Image Renderer with a high severity security...

Grafana v9.0.3, v8.5.9, v8.4.10, and v8.3.10 released with high severity security fix

CVE-2022-32276 and CVE-2022-32275: No current evidence of security impact

Grafana Enterprise 8.5.3 and 7.5.16 released with moderate severity security fix

Grafana Labs has found no evidence that it has been impacted by the Spring4Shell vulnerability

Grafana Enterprise 8.4.6 released with high severity security fix

Security update: Grafana Labs does not believe it has been impacted by the Okta Lapsus$ breach

How secure is your Grafana instance? What you need to know