Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2016-0775
Vulnerability from cvelistv5
Published
2016-04-13 16:00
Modified
2024-08-05 22:30
Severity ?
EPSS score ?
Summary
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T22:30:04.755Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "GLSA-201612-52", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201612-52", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { name: "DSA-3499", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3499", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-02-04T00:00:00", descriptions: [ { lang: "en", value: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-06-30T16:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "GLSA-201612-52", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201612-52", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { name: "DSA-3499", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3499", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-0775", datePublished: "2016-04-13T16:00:00", dateReserved: "2015-12-16T00:00:00", dateUpdated: "2024-08-05T22:30:04.755Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2016-0775\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2016-04-13T16:59:02.643\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de buffer en la función ImagingFliDecode en libImageng/FliDecode.c en Pillow en versiones anteriores a 3.1.1 permite a atacantes remotos provocar una denegación de servicio (caída) a través de un archivo FLI manipulado.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.1.0\",\"matchCriteriaId\":\"2F573E4A-55AB-4868-8CA1-7C7E5EEAC905\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16F59A04-14CF-49E2-9973-645477EA09DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]}],\"references\":[{\"url\":\"http://www.debian.org/security/2016/dsa-3499\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.gentoo.org/glsa/201612-52\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2016/dsa-3499\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201612-52\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}", }, }
ghsa-8xjv-v9xq-m5h9
Vulnerability from github
Published
2018-07-24 20:15
Modified
2024-10-09 20:08
Severity ?
6.5 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
7.1 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
7.1 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Summary
Pillow Buffer overflow in ImagingFliDecode
Details
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
{ affected: [ { package: { ecosystem: "PyPI", name: "pillow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "3.1.1", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2016-0775", ], database_specific: { cwe_ids: [ "CWE-119", ], github_reviewed: true, github_reviewed_at: "2020-06-16T21:26:56Z", nvd_published_at: null, severity: "HIGH", }, details: "Buffer overflow in the `ImagingFliDecode` function in `libImaging/FliDecode.c` in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", id: "GHSA-8xjv-v9xq-m5h9", modified: "2024-10-09T20:08:11Z", published: "2018-07-24T20:15:36Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2016-0775", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-8xjv-v9xq-m5h9", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/pillow/PYSEC-2016-6.yaml", }, { type: "PACKAGE", url: "https://github.com/python-pillow/Pillow", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, { type: "WEB", url: "https://security.gentoo.org/glsa/201612-52", }, { type: "WEB", url: "http://www.debian.org/security/2016/dsa-3499", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", type: "CVSS_V3", }, { score: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", type: "CVSS_V4", }, ], summary: "Pillow Buffer overflow in ImagingFliDecode", }
fkie_cve-2016-0775
Vulnerability from fkie_nvd
Published
2016-04-13 16:59
Modified
2025-04-12 10:46
Severity ?
Summary
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| python | pillow | * | |
| debian | debian_linux | 7.0 | |
| debian | debian_linux | 8.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*", matchCriteriaId: "2F573E4A-55AB-4868-8CA1-7C7E5EEAC905", versionEndIncluding: "3.1.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", matchCriteriaId: "16F59A04-14CF-49E2-9973-645477EA09DA", vulnerable: true, }, { criteria: "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", matchCriteriaId: "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", }, { lang: "es", value: "Desbordamiento de buffer en la función ImagingFliDecode en libImageng/FliDecode.c en Pillow en versiones anteriores a 3.1.1 permite a atacantes remotos provocar una denegación de servicio (caída) a través de un archivo FLI manipulado.", }, ], id: "CVE-2016-0775", lastModified: "2025-04-12T10:46:40.837", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.3, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: true, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2016-04-13T16:59:02.643", references: [ { source: "secalert@redhat.com", url: "http://www.debian.org/security/2016/dsa-3499", }, { source: "secalert@redhat.com", url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, { source: "secalert@redhat.com", url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { source: "secalert@redhat.com", url: "https://security.gentoo.org/glsa/201612-52", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.debian.org/security/2016/dsa-3499", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://security.gentoo.org/glsa/201612-52", }, ], sourceIdentifier: "secalert@redhat.com", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-119", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
pysec-2016-6
Vulnerability from pysec
Published
2016-04-13 16:59
Modified
2021-07-05 00:01
Details
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
Impacted products
| Name | purl |
|---|---|
| pillow | pkg:pypi/pillow |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "pillow", purl: "pkg:pypi/pillow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "893a40850c2d5da41537958e40569c029a6e127b", }, ], repo: "https://github.com/python-pillow/Pillow", type: "GIT", }, { events: [ { introduced: "0", }, { fixed: "3.1.1", }, ], type: "ECOSYSTEM", }, ], versions: [ "1.0", "1.1", "1.2", "1.3", "1.4", "1.5", "1.6", "1.7.0", "1.7.1", "1.7.2", "1.7.3", "1.7.4", "1.7.5", "1.7.6", "1.7.7", "1.7.8", "2.0.0", "2.1.0", "2.2.0", "2.2.1", "2.2.2", "2.3.0", "2.3.1", "2.3.2", "2.4.0", "2.5.0", "2.5.1", "2.5.2", "2.5.3", "2.6.0", "2.6.1", "2.6.2", "2.7.0", "2.8.0", "2.8.1", "2.8.2", "2.9.0", "3.0.0", "3.1.0", "3.1.0.rc1", "3.1.0rc1", ], }, ], aliases: [ "CVE-2016-0775", "GHSA-8xjv-v9xq-m5h9", ], details: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", id: "PYSEC-2016-6", modified: "2021-07-05T00:01:23.974761Z", published: "2016-04-13T16:59:00Z", references: [ { type: "ADVISORY", url: "http://www.debian.org/security/2016/dsa-3499", }, { type: "FIX", url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, { type: "ADVISORY", url: "https://security.gentoo.org/glsa/201612-52", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-8xjv-v9xq-m5h9", }, ], }
suse-su-2016:0924-1
Vulnerability from csaf_suse
Published
2016-03-31 12:18
Modified
2016-03-31 12:18
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following security issues:
* Fixed an integer overflow in Resample.c causing writes in the Python heap.
* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening
PhotoCD files. CVE-2016-TBD
* Fixed a buffer overflow in FliDecode.c causing a segfault when opening
FLI files. CVE-2016-0775 (fixes bsc#965582)
* Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of
memory to be overwritten when opening a specially crafted invalid TIFF
file. CVE-2016-0740 (fixes bsc#965579)
Patchnames
sleclo50sp3-python-Pillow-12485
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "\nThis update for python-Pillow fixes the following security issues:\n\n* Fixed an integer overflow in Resample.c causing writes in the Python heap. \n* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening \n PhotoCD files. CVE-2016-TBD\n* Fixed a buffer overflow in FliDecode.c causing a segfault when opening \n FLI files. CVE-2016-0775 (fixes bsc#965582)\n* Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of \n memory to be overwritten when opening a specially crafted invalid TIFF \n file. CVE-2016-0740 (fixes bsc#965579)\n", title: "Description of the patch", }, { category: "details", text: "sleclo50sp3-python-Pillow-12485", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_0924-1.json", }, { category: "self", summary: "URL for SUSE-SU-2016:0924-1", url: "https://www.suse.com/support/update/announcement/2016/suse-su-20160924-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2016:0924-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2016-March/001976.html", }, { category: "self", summary: "SUSE Bug 965579", url: "https://bugzilla.suse.com/965579", }, { category: "self", summary: "SUSE Bug 965582", url: "https://bugzilla.suse.com/965582", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2016-03-31T12:18:26Z", generator: { date: "2016-03-31T12:18:26Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2016:0924-1", initial_release_date: "2016-03-31T12:18:26Z", revision_history: [ { date: "2016-03-31T12:18:26Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Pillow-2.7.0-9.1.x86_64", product: { name: "python-Pillow-2.7.0-9.1.x86_64", product_id: "python-Pillow-2.7.0-9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 5", product: { name: "SUSE OpenStack Cloud 5", product_id: "SUSE OpenStack Cloud 5", product_identification_helper: { cpe: "cpe:/o:suse:cloud:5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Pillow-2.7.0-9.1.x86_64 as component of SUSE OpenStack Cloud 5", product_id: "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", }, product_reference: "python-Pillow-2.7.0-9.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 5", }, ], }, vulnerabilities: [ { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-31T12:18:26Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE OpenStack Cloud 5:python-Pillow-2.7.0-9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-03-31T12:18:26Z", details: "moderate", }, ], title: "CVE-2016-0775", }, ], }
suse-su-2016:0935-1
Vulnerability from csaf_suse
Published
2016-04-01 13:29
Modified
2016-04-01 13:29
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following security issues:
* CVE-2016-0775: Fixed a buffer overflow in FliDecode.c causing a segfault when opening
FLI files. (bsc#965582)
* CVE-2016-0740: Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of
memory to be overwritten when opening a specially crafted invalid TIFF
file. (bsc#965579)
* Fixed an integer overflow in Resample.c causing writes in the Python heap.
* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening
PhotoCD files.
Patchnames
SUSE-OpenStack-Cloud-6-2016-539,SUSE-Storage-2.1-2016-539
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "\nThis update for python-Pillow fixes the following security issues:\n\n* CVE-2016-0775: Fixed a buffer overflow in FliDecode.c causing a segfault when opening \n FLI files. (bsc#965582)\n* CVE-2016-0740: Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of \n memory to be overwritten when opening a specially crafted invalid TIFF \n file. (bsc#965579)\n* Fixed an integer overflow in Resample.c causing writes in the Python heap. \n* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening \n PhotoCD files.\n", title: "Description of the patch", }, { category: "details", text: "SUSE-OpenStack-Cloud-6-2016-539,SUSE-Storage-2.1-2016-539", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_0935-1.json", }, { category: "self", summary: "URL for SUSE-SU-2016:0935-1", url: "https://www.suse.com/support/update/announcement/2016/suse-su-20160935-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2016:0935-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2016-April/001978.html", }, { category: "self", summary: "SUSE Bug 965579", url: "https://bugzilla.suse.com/965579", }, { category: "self", summary: "SUSE Bug 965582", url: "https://bugzilla.suse.com/965582", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2016-04-01T13:29:16Z", generator: { date: "2016-04-01T13:29:16Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2016:0935-1", initial_release_date: "2016-04-01T13:29:16Z", revision_history: [ { date: "2016-04-01T13:29:16Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Pillow-2.7.0-3.1.x86_64", product: { name: "python-Pillow-2.7.0-3.1.x86_64", product_id: "python-Pillow-2.7.0-3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 6", product: { name: "SUSE OpenStack Cloud 6", product_id: "SUSE OpenStack Cloud 6", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:6", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 2.1", product: { name: "SUSE Enterprise Storage 2.1", product_id: "SUSE Enterprise Storage 2.1", product_identification_helper: { cpe: "cpe:/o:suse:ses:2.1", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Pillow-2.7.0-3.1.x86_64 as component of SUSE OpenStack Cloud 6", product_id: "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", }, product_reference: "python-Pillow-2.7.0-3.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 6", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-2.7.0-3.1.x86_64 as component of SUSE Enterprise Storage 2.1", product_id: "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", }, product_reference: "python-Pillow-2.7.0-3.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 2.1", }, ], }, vulnerabilities: [ { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-04-01T13:29:16Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Enterprise Storage 2.1:python-Pillow-2.7.0-3.1.x86_64", "SUSE OpenStack Cloud 6:python-Pillow-2.7.0-3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-04-01T13:29:16Z", details: "moderate", }, ], title: "CVE-2016-0775", }, ], }
suse-su-2016:1569-1
Vulnerability from csaf_suse
Published
2016-06-14 09:28
Modified
2016-06-14 09:28
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following security issues:
* CVE-2016-0775: Fixed a buffer overflow in FliDecode.c causing a segfault when opening
FLI files. (bsc#965582)
* CVE-2016-0740: Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of
memory to be overwritten when opening a specially crafted invalid TIFF
file. (bsc#965579)
* Fixed an integer overflow in Resample.c causing writes in the Python heap.
* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening
PhotoCD files.
Patchnames
SUSE-Storage-2-2016-934
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "\nThis update for python-Pillow fixes the following security issues:\n\n* CVE-2016-0775: Fixed a buffer overflow in FliDecode.c causing a segfault when opening\n FLI files. (bsc#965582)\n* CVE-2016-0740: Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of\n memory to be overwritten when opening a specially crafted invalid TIFF\n file. (bsc#965579)\n* Fixed an integer overflow in Resample.c causing writes in the Python heap.\n* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening\n PhotoCD files.\n", title: "Description of the patch", }, { category: "details", text: "SUSE-Storage-2-2016-934", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1569-1.json", }, { category: "self", summary: "URL for SUSE-SU-2016:1569-1", url: "https://www.suse.com/support/update/announcement/2016/suse-su-20161569-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2016:1569-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2016-June/002113.html", }, { category: "self", summary: "SUSE Bug 965579", url: "https://bugzilla.suse.com/965579", }, { category: "self", summary: "SUSE Bug 965582", url: "https://bugzilla.suse.com/965582", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2016-06-14T09:28:36Z", generator: { date: "2016-06-14T09:28:36Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2016:1569-1", initial_release_date: "2016-06-14T09:28:36Z", revision_history: [ { date: "2016-06-14T09:28:36Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Pillow-2.7.0-3.2.x86_64", product: { name: "python-Pillow-2.7.0-3.2.x86_64", product_id: "python-Pillow-2.7.0-3.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Enterprise Storage 2", product: { name: "SUSE Enterprise Storage 2", product_id: "SUSE Enterprise Storage 2", product_identification_helper: { cpe: "cpe:/o:suse:ses:2", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Pillow-2.7.0-3.2.x86_64 as component of SUSE Enterprise Storage 2", product_id: "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", }, product_reference: "python-Pillow-2.7.0-3.2.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 2", }, ], }, vulnerabilities: [ { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-06-14T09:28:36Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Enterprise Storage 2:python-Pillow-2.7.0-3.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-06-14T09:28:36Z", details: "moderate", }, ], title: "CVE-2016-0775", }, ], }
suse-su-2020:2057-1
Vulnerability from csaf_suse
Published
2020-07-27 20:26
Modified
2020-07-27 20:26
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following issues:
- Add 0019-FLI-overflow-error-fix-and-testcase.patch
* Fixes CVE-2016-0775, bsc#965582
- Add 0020-Fix-OOB-reads-in-FLI-decoding.patch
* Fixes CVE-2020-10177, bsc#1173413
- Add 0021-Fix-bounds-overflow-in-JPEG-2000-decoding.patch
* Fixes CVE-2020-10994, bsc#1173418
- Add 0022-Fix-bounds-overflow-in-PCX-decoding.patch
* Fixes CVE-2020-10378, bsc#1173416
- Add 0008-Corrected-negative-seeks.patch
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0009-Make-Image.crop-an-immediate-operation.patch
* Fixes https://github.com/python-pillow/Pillow/issues/1077
* Used by 0012-Added-decompression-bomb-checks.patch
- Add 0010-Crop-decompression.patch
* Used by 0012-Added-decompression-bomb-checks.patch
- Add 0011-Added-DecompressionBombError.patch
* Used by 0012-Added-decompression-bomb-checks.patch
- Add 0012-Added-decompression-bomb-checks.patch
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0013-Raise-error-if-dimension-is-a-string.patch
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0014-Catch-buffer-overruns.patch
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0015-Catch-PCX-P-mode-buffer-overrun.patch
* Fixes CVE-2020-5312, bsc#1160152
- Add 0016-Ensure-previous-FLI-frame-is-loaded.patch
* Fixes https://github.com/python-pillow/Pillow/issues/2649
* Uncovers CVE-2020-5313, bsc#1160153
- Add 0017-Catch-FLI-buffer-overrun.patch
* Fixes CVE-2020-5313, bsc#1160153
- Add 018-Invalid-number-of-bands-in-FPX-image.patch
* Fixes CVE-2019-19911, bsc#1160192
Patchnames
SUSE-2020-2057,SUSE-Storage-5-2020-2057
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "This update for python-Pillow fixes the following issues:\n\n- Add 0019-FLI-overflow-error-fix-and-testcase.patch\n * Fixes CVE-2016-0775, bsc#965582\n- Add 0020-Fix-OOB-reads-in-FLI-decoding.patch\n * Fixes CVE-2020-10177, bsc#1173413\n- Add 0021-Fix-bounds-overflow-in-JPEG-2000-decoding.patch\n * Fixes CVE-2020-10994, bsc#1173418\n- Add 0022-Fix-bounds-overflow-in-PCX-decoding.patch\n * Fixes CVE-2020-10378, bsc#1173416\n- Add 0008-Corrected-negative-seeks.patch\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 0009-Make-Image.crop-an-immediate-operation.patch\n * Fixes https://github.com/python-pillow/Pillow/issues/1077\n * Used by 0012-Added-decompression-bomb-checks.patch\n- Add 0010-Crop-decompression.patch\n * Used by 0012-Added-decompression-bomb-checks.patch\n- Add 0011-Added-DecompressionBombError.patch\n * Used by 0012-Added-decompression-bomb-checks.patch\n- Add 0012-Added-decompression-bomb-checks.patch\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 0013-Raise-error-if-dimension-is-a-string.patch\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 0014-Catch-buffer-overruns.patch\n * Fixes part of CVE-2019-16865, bsc#1153191\n- Add 0015-Catch-PCX-P-mode-buffer-overrun.patch\n * Fixes CVE-2020-5312, bsc#1160152\n- Add 0016-Ensure-previous-FLI-frame-is-loaded.patch\n * Fixes https://github.com/python-pillow/Pillow/issues/2649\n * Uncovers CVE-2020-5313, bsc#1160153\n- Add 0017-Catch-FLI-buffer-overrun.patch\n * Fixes CVE-2020-5313, bsc#1160153\n- Add 018-Invalid-number-of-bands-in-FPX-image.patch\n * Fixes CVE-2019-19911, bsc#1160192\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2020-2057,SUSE-Storage-5-2020-2057", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2057-1.json", }, { category: "self", summary: "URL for SUSE-SU-2020:2057-1", url: "https://www.suse.com/support/update/announcement/2020/suse-su-20202057-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2020:2057-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2020-July/007188.html", }, { category: "self", summary: "SUSE Bug 1153191", url: "https://bugzilla.suse.com/1153191", }, { category: "self", summary: "SUSE Bug 1160152", url: "https://bugzilla.suse.com/1160152", }, { category: "self", summary: "SUSE Bug 1160153", url: "https://bugzilla.suse.com/1160153", }, { category: "self", summary: "SUSE Bug 1160192", url: "https://bugzilla.suse.com/1160192", }, { category: "self", summary: "SUSE Bug 1173413", url: "https://bugzilla.suse.com/1173413", }, { category: "self", summary: "SUSE Bug 1173416", url: "https://bugzilla.suse.com/1173416", }, { category: "self", summary: "SUSE Bug 1173418", url: "https://bugzilla.suse.com/1173418", }, { category: "self", summary: "SUSE Bug 965582", url: "https://bugzilla.suse.com/965582", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, { category: "self", summary: "SUSE CVE CVE-2019-16865 page", url: "https://www.suse.com/security/cve/CVE-2019-16865/", }, { category: "self", summary: "SUSE CVE CVE-2019-19911 page", url: "https://www.suse.com/security/cve/CVE-2019-19911/", }, { category: "self", summary: "SUSE CVE CVE-2020-10177 page", url: "https://www.suse.com/security/cve/CVE-2020-10177/", }, { category: "self", summary: "SUSE CVE CVE-2020-10378 page", url: "https://www.suse.com/security/cve/CVE-2020-10378/", }, { category: "self", summary: "SUSE CVE CVE-2020-10994 page", url: "https://www.suse.com/security/cve/CVE-2020-10994/", }, { category: "self", summary: "SUSE CVE CVE-2020-5312 page", url: "https://www.suse.com/security/cve/CVE-2020-5312/", }, { category: "self", summary: "SUSE CVE CVE-2020-5313 page", url: "https://www.suse.com/security/cve/CVE-2020-5313/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2020-07-27T20:26:47Z", generator: { date: "2020-07-27T20:26:47Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2020:2057-1", initial_release_date: "2020-07-27T20:26:47Z", revision_history: [ { date: "2020-07-27T20:26:47Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Pillow-2.8.1-3.9.1.aarch64", product: { name: "python-Pillow-2.8.1-3.9.1.aarch64", product_id: "python-Pillow-2.8.1-3.9.1.aarch64", }, }, { category: "product_version", name: "python-Pillow-tk-2.8.1-3.9.1.aarch64", product: { name: "python-Pillow-tk-2.8.1-3.9.1.aarch64", product_id: "python-Pillow-tk-2.8.1-3.9.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python-Pillow-2.8.1-3.9.1.x86_64", product: { name: "python-Pillow-2.8.1-3.9.1.x86_64", product_id: "python-Pillow-2.8.1-3.9.1.x86_64", }, }, { category: "product_version", name: "python-Pillow-tk-2.8.1-3.9.1.x86_64", product: { name: "python-Pillow-tk-2.8.1-3.9.1.x86_64", product_id: "python-Pillow-tk-2.8.1-3.9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Enterprise Storage 5", product: { name: "SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5", product_identification_helper: { cpe: "cpe:/o:suse:ses:5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Pillow-2.8.1-3.9.1.aarch64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", }, product_reference: "python-Pillow-2.8.1-3.9.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-2.8.1-3.9.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", }, product_reference: "python-Pillow-2.8.1-3.9.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, ], }, vulnerabilities: [ { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "moderate", }, ], title: "CVE-2016-0775", }, { cve: "CVE-2019-16865", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-16865", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-16865", url: "https://www.suse.com/security/cve/CVE-2019-16865", }, { category: "external", summary: "SUSE Bug 1153191 for CVE-2019-16865", url: "https://bugzilla.suse.com/1153191", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "low", }, ], title: "CVE-2019-16865", }, { cve: "CVE-2019-19911", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19911", }, ], notes: [ { category: "general", text: "There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux running 64-bit Python this results in the process being terminated by the OOM killer.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19911", url: "https://www.suse.com/security/cve/CVE-2019-19911", }, { category: "external", summary: "SUSE Bug 1160192 for CVE-2019-19911", url: "https://bugzilla.suse.com/1160192", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "important", }, ], title: "CVE-2019-19911", }, { cve: "CVE-2020-10177", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10177", }, ], notes: [ { category: "general", text: "Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10177", url: "https://www.suse.com/security/cve/CVE-2020-10177", }, { category: "external", summary: "SUSE Bug 1173413 for CVE-2020-10177", url: "https://bugzilla.suse.com/1173413", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "moderate", }, ], title: "CVE-2020-10177", }, { cve: "CVE-2020-10378", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10378", }, ], notes: [ { category: "general", text: "In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10378", url: "https://www.suse.com/security/cve/CVE-2020-10378", }, { category: "external", summary: "SUSE Bug 1161670 for CVE-2020-10378", url: "https://bugzilla.suse.com/1161670", }, { category: "external", summary: "SUSE Bug 1173416 for CVE-2020-10378", url: "https://bugzilla.suse.com/1173416", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "moderate", }, ], title: "CVE-2020-10378", }, { cve: "CVE-2020-10994", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10994", }, ], notes: [ { category: "general", text: "In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10994", url: "https://www.suse.com/security/cve/CVE-2020-10994", }, { category: "external", summary: "SUSE Bug 1173418 for CVE-2020-10994", url: "https://bugzilla.suse.com/1173418", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "moderate", }, ], title: "CVE-2020-10994", }, { cve: "CVE-2020-5312", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-5312", }, ], notes: [ { category: "general", text: "libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-5312", url: "https://www.suse.com/security/cve/CVE-2020-5312", }, { category: "external", summary: "SUSE Bug 1160152 for CVE-2020-5312", url: "https://bugzilla.suse.com/1160152", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "important", }, ], title: "CVE-2020-5312", }, { cve: "CVE-2020-5313", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-5313", }, ], notes: [ { category: "general", text: "libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-5313", url: "https://www.suse.com/security/cve/CVE-2020-5313", }, { category: "external", summary: "SUSE Bug 1160153 for CVE-2020-5313", url: "https://bugzilla.suse.com/1160153", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.aarch64", "SUSE Enterprise Storage 5:python-Pillow-2.8.1-3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-07-27T20:26:47Z", details: "important", }, ], title: "CVE-2020-5313", }, ], }
suse-su-2020:2911-1
Vulnerability from csaf_suse
Published
2020-10-13 14:46
Modified
2020-10-13 14:46
Summary
Security update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client
Notes
Title of the patch
Security update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client
Description of the patch
This update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client fixes the following issues:
Security fixes included on this update:
for ansible:
- CVE-2020-1733,CVE-2020-10744: Fixed a race condition and insecure permissions which could have allowed
another user on the node to gain control of the become user (bsc#1171823 and bsc#1164140).
for grafana:
- CVE-2020-11110, CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed XSS vulnerabilities in dashboard
due to an incomplete fix for CVE-2018-12099
for openstack-nova:
- CVE-2020-17376: Fixed an issue in which live migration failed to update persistent domain XML (bsc#1175484)
for python-pillow:
- CVE-2016-0775: Fixed a buffer overflow in FliDecode.c (bsc#965582)
- CVE-2020-10177: Fix-OOB-reads-in-FLI-decoding (bsc#1173413)
- CVE-2020-10994: Fix-bounds-overflow-in-JPEG-2000-decoding (bsc#1173418)
- CVE-2020-10378: Fix-bounds-overflow-in-PCX-decoding (bsc#1173416)
for rubygem-crowbar-client:
- CVE-2018-17954: Fixed an issue where provision leaks admin password to all nodes in cleartext (bsc#1117080)
Non-security fixes included on this update:
Changes in ansible:
- Update CVE-2020-10744_avoid_mkdir_p.patch to include missing parts
and rename to CVE-2020-1733_avoid_mkdir_p.patch to make it clear
which CVE is fixed there (bsc#1164140)
- Add CVE-2020-10744_avoid_mkdir_p.patch (bsc#1171823) to fix
insecure temporary directory creation.
Changes in crowbar-core:
- Update to version 4.0+git.1600767499.0615a418f:
* provisioner: check for client_user (SOC-11389)
* crowbar: Also add access to /restricted/ in SSL vhost (SOC-11352)
* crowbar: Allow hardware-installing -> discovering transition (noref)
* crowbar: Add Restricted controller with API for restricted clients (bsc#1117080)
* crowbar: Add complete list of states to Crowbar::State (noref)
* provisioner: Remove the need for /updates/parse_node_data (noref)
* crowbar: Create helper module to validate states (noref)
* provisioner: Use new restricted API (bsc#1117080)
* provisioner: Do not read /etc/crowbar.install.key from crowbar_joi (bsc#1117080)
* provisioner: Remove use of privileged user for Windows machine (bsc#1117080)
* provisioner: Use restricted client during provisioning (bsc#1117080)
* provisioner: Use restricted client for crowbar_register (bsc#1117080)
* provisioner: Drop /etc/crowbar.install.key bits from autoyast prof (bsc#1117080)
* Avoid hardcoding machine-install user (bsc#1117080)
* crowbar: Restrict admin access (bsc#1117080)
- Update to version 4.0+git.1600416364.5a9286e31:
* Whitelist fixed CVEs in travis (noref)
* Disable cookbook tests (noref)
Changes in crowbar-openstack:
- Update to version 4.0+git.1599037255.25b759234:
* horizon: Update configuration for Grafana 5.x
Changes in grafana:
- BuildRequire go1.14 explicitly
- Add recompress source service
- Add go_modules source service to create vendor.tar.gz
containing 3rd party go modules.
- Adjust spec to work for Grafana-6.7.4
- Adjust Makefile to work for Grafana-6.7.4
- Remove CVE-2019-15043.patch (merged upstream)
- Remove CVE-2020-13379.patch (merged upstream)
- Remove 0001-CVE-2020-12052-bsc1170657-XSS-annotation-popup-vulnerability.patch
(merged upstream)
- Update to version 6.7.4 (bsc#1172450, CVE-2018-18623,
CVE-2018-18624, CVE-2018-18625, bsc#1174583, CVE-2020-11110)
* Only allow 32 hexadecimal digits for the avatar hash
* 6.7.3 cherry-picks (#23808)
* Fix CI for pushing a multi-architecture manifest (#23327)
* AzureMonitor: Fix Log Analytics and Application Insights
for Azure China (#21803) (#22753)
* Revert 'grafana/data: PanelTypeChangedHandler API update
to use PanelModel instead of panel options object
[BREAKING] (#22754)'
* Bumped version
* Snapshots: Sanitize orignal url (#23254)
* Plugins: Expose promiseToDigest (#23249)
* Variables: Do not update variable from url when value is
the same (#23220)
* DashboardSave: Add new dashboard check (#23104)
* Fix: reverted back to `import * as module` instead of
using namespaces (#23069)
* BackendSrv: Adds config to response to fix external
plugins that use this (#23032)
* DataLinks: make sure we use the correct datapoint when
dataset contains null value. (#22981)
* Fix mysterious Babel plugin errors (#22974)
* Select: Fixed select text positition (#22952)
* grafana/data: PanelTypeChangedHandler API update to use
PanelModel instead of panel options object [BREAKING]
(#22754)
* Docs: Fix Broken Link (#22894)
* Panels: Fixed size issue with panels when existing panel
edit mode (#22912)
* Azure: Fixed dropdowns not showing current value (#22914)
* BackendSrv: only add content-type on POST, PUT requests
(#22910)
* Check if the datasource is of type loki using meta.id
instead of name. (#22877)
* CircleCI: Pin grabpl to 0.1.0 (#22904)
* Design tweaks (#22886)
* Rich history UX fixes (#22783)
* AzureMonitor: support workspaces function for template
variables (#22882)
* SQLStore: Add migration for adding index on
annotation.alert_id (#22876)
* Plugins: Return jsondetails as an json object instead of
raw json on datasource healthchecks. (#22859)
* Backend plugins: Exclude plugin metrics in Grafana's
metrics endpoint (#22857)
* Graphite: Fixed issue with query editor and next select
metric now showing after selecting metric node (#22856)
* Stackdriver: Fix GCE auth bug when creating new data
source (#22836)
* @grafana/runtime: Add cancellation of queries to
DataSourceWithBackend (#22818)
* Rich history: Test coverage (#22852)
* Datasource config was not mapped for datasource
healthcheck (#22848)
* upgrades plugin sdk to 0.30.0 (#22846)
* Rich History: UX adjustments and fixes (#22729)
* TablePanel: Enable new units picker (#22833)
* Fix dashboard picker's props (#22815)
* Grafana-UI: Add invalid state to Forms.Textarea (#22775)
* SaveDashboard: Updated modal design/layout a bit (#22810)
* Forms: Fix input suffix position (#22780)
* AngularPanels: Fixed inner height calculation (#22796)
* Fix: fixes issue with headers property with different
casing (#22778)
* DataSourceWithBackend: use /health endpoint for test
(#22789)
* Chore: remove expressions flag and allow (#22764)
* Core: Pass the rest of to props to Select (#22776)
* Add support for sending health check to datasource
plugins. (#22771)
* Datasource: making sure we are having the same data field
order when using mixed data sources. (#22718)
* DashboardSave: Autofocus save dashboard form input
(#22748)
* @grafana/e2e: cherry picked
4fecf5a7a65f5b7b4c03fefb9a3da15cee938f02 (#22739)
* CircleCI: Implement new release pipeline (#22625)
* Toolkit: use fs-extra instead of fs (#22723)
* What's new docs for 6.7 release (#22721)
* Backend Plugins: use sdk v0.26.0 (#22725)
* PanelInspector: Add Stats Tab (#22683)
* Revert 'Graph: Improve point rendering performance
(#22610)' (#22716)
* Docs: add rendering configuration in reporting (#22715)
* reverting the changes that failed the e2e tests. (#22714)
* Remove multiple occurrences of 'before' (#22710)
* Datasources: Update dashboards (#22476)
* API: Fix redirect issues (#22285)
* Explore: adds QueryRowErrors component, moves error
display to QueryRow (#22438)
* RichHistory: Design Tweaks (#22703)
* Modals: Unify angular/react modals backdrop color (#22708)
* Graphite: Don't issue empty 'select metric' queries
(#22699)
* support duplicate field names in arrow format (#22705)
* UX: Update new form styles to dark inputs (#22701)
* Docs: Grammar corrections
* Docs: Overcoming Grammatical errors (#22707)
* Pass dashboard via angular directive (#22696)
* Docs: Replace 'API' by 'Integration' key for PagerDuty
(#22639)
* Docs: Edited Enterprise docs (#22602)
* CloudWatch: Expand alias variables when query yields no
result (#22695)
* Dependency: sdk's dataframe package renamed to data
(#22700)
* @grafana/e2e: include Cypress tsconfig in published
package (#22698)
* Graphite: Update config editor (#22553)
* @grafana/e2e: fix runtime ts-loader errors with Cypress
support files (#22688)
* Docs: Add version note about Azure AD OAuth2 (#22692)
* StatPanel: Return base color when there is no value set
(#22690)
* Send jsondata for Datasources on DatasourceConfig for
backend plugins (#22681)
* Explore: Rich History (#22570)
* XSS: Fixed history XSS issue (#22680)
* Fix caching problem (#22473)
* on update for checkbox and switch (#22656)
* Notification Channel: Make test button wider (#22653)
* Backend plugins: Updates due to changes in SDK (#22649)
* Make sure commit hook in FieldPropertiesEditor is
invalidated when value changes (#22673)
* Docs: Plugin.json: Fix property descriptions, add missing
properties, add example (#22281)
* Alerting: Fixed bad background color for default
notifications in alert tab (#22660)
* Webpack: Updated terser plugin (#22669)
* Core: DashboardPicker improvements (#22619)
* Storybook: Forms.Form docs (#22654)
* Templating: Migrates some variable types from Angular to
React/Redux (#22434)
* Grafana UI: Fix Forms.Select onChangeWithEmpty (#22647)
* Azure Monitor: Fix app insights source to allow for new
__timeFrom and __timeTo (#21879)
* @grafana/e2e: install necessary dependencies for published
package (#22657)
* DashboardSave: Correctly overwrite dashboard when saving
(#22650)
* StatPanel: Fixes base color is being used for null values
(#22646)
* FieldOverrides: Add value mappings editor to standard
config properties registry (#22648)
* Docs: Update gauge.md (#22637)
* Docs: Create Intro grafana (#22522)
* Toolkit: wrap plugin signing stub with error checking
(#22626)
* @grafana/e2e: fix empty bundle files (#22607)
* Toolkit: include a github release utility (#22520)
* Rendering: Have phantomjs wait a bit before rendering to
give fonts a change to load (#22623)
* Cascader: Do not override default width behavior (#22620)
* Update documentation-style-guide.md (#22581)
* Adds signed in user to backend v2 plugins requests
(#22584)
* CloudWatch: updated namespaces - Athena, DocDB, and
Route53Resolver (#22604)
* Graph: Improve point rendering performance (#22610)
* Alerting: Fix state age test failures (#22606)
* Docs: Update image_rendering.md (#22586)
* UI: Segment improvements (#22601)
* remove section about alias imports (#22585)
* Backend Plugins: Support handling of streaming resource
response (#22580)
* Stackdriver: Migrate GCE default project (#22593)
* Toolkit: plugin ci needs to cooperate better with
make/mage (#22588)
* surround CloudWatch dimension names with double quotes
(#22222)
* Fix: when reloading page make sure that time picker
history is converted to dateTime.
* Core: add active users stat (#22563)
* Chore: Modules tidy and vendor (#22578)
* Loki: use series API for stream facetting (#21332)
* Testing code owners for backend code (#22572)
* Azure Monitor: config editor updates, update sameas
switch, fix test snaps (#22554)
* Grafana-UI: Use value for Radio group id (#22568)
* Chore: fix moment import in alerting tests (#22567)
* avoid aliased import in cli (#22566)
* Chore: Avoid aliasing importing models in api package
(#22492)
* ShareModal: able to extend tabs (#22537)
* Tests: fix alerting reducers tests (#22560)
* Logs: Improve log level guess (#22094)
* DataSourceWithBackend: apply template variables (#22558)
* @grafana/e2e: added support for plugin repositories
(#22546)
* Add fallback to search_base_dns if group_search_base_dns
is undefined. (#21263)
* Docs: Added a Markdown Style Guide (#22425)
* Old AsyncSelect: Add story (#22536)
* Chore: add missing aria-label for rendered panel image
(e2e tests) (#22543)
* Form migrations: Dashboard- and TimeZonePicker (#22459)
* Migration: Share dashboard/panel modal (#22436)
* Revert 'Select: scroll into view when navigate with
up/down arrows (#22503)' (#22535)
* Backend plugins: Prepare and clean request headers before
resource calls (#22321)
* Cascader: Add size for input (#22517)
* ArrowDataFrame: allow empty results (#22524)
* Migration: Save dashboard modals (#22395)
* Toolkit: don't clean dist folder before build (#22521)
* Docs: Add Storybook guidelines (#22465)
* Docs: Removed menu links to SDK Reference until we are
ready for 7.0 (#22509)
* Stackdriver: Project selector (#22447)
* Select: scroll into view when navigate with up/down arrows
(#22503)
* Elastic: To get fields, start with today's index and go
backwards (#22318)
* API: Include IP address when logging request error
(#21596)
* chore: avoid aliasing imports in services (#22499)
* Grafana-UI: add storysource addon to Storybook (#22490)
* canary 404 previous versions (#22495)
* Fix Dockerfile lint errors (#22496)
* Migration: Invite Signup (#22437)
* Core: add hideFromMenu for child items (#22494)
* Dashboard: Adds support for a global minimum dashboard
refresh interval (#19416)
* CI: Deploy enterprise image (#22488)
* changelog: adds note about breaking change (#22480)
* chore: avoid alias for models in plugins (#22483)
* chore: avoid aliasing models in middleware (#22484)
* Grafana UI: Add missing argument (#22487)
* NewPanelEditor: Angular panel options, and angular
component state to redux major change (#22448)
* @grafana/ui: Create slider component (#22275)
* Icons: add reports icon (#22445)
* Panel inspect: Horizontal scrolling in Data table (#22245)
* Alerting: Fixed the issue/bug of diff and percent_diff
functions *Breaking change* (#21338)
* App Plugins: support react pages in nav (#22428)
* Optimized package.json files (#22475)
* Toolkit: add junit reporting and jest.config.js to plugin
build (#22450)
* Grafana UI: Add forwardRef (#22466)
* Docs: Update Getting started (#22422)
* pkg/api/pluginproxy: Access token provider should handle
access tokens without ExpiresOn field (#19928)
* Documentation: Specify usage of datasource whitelist
(#22412)
* Form: Allow default values updates (#22435)
* NewPanelEditor: Wait a bit before resending query result
on panel editor exit (#22421)
* Grafana-UI: update date picker (#22414)
* grafana-cli: Upgrade to urfave/cli v2 (#22402)
* Docs: adding first version of the auto-generated packages
API docs. (#22107)
* NewPanelEditor: Panel edit tweaks (#22415)
* Core: Make application title customizable for WL (#22401)
* Fix: making select to return empty list when no values are
selected in multivalue mode.
* Fix: Added missing 'remove'-icon for light theme.
* Docs: adding API reference documentation support for the
packages libraries. (#21931)
* Accessibility: Makes tag colors more accessible (#22398)
* Admin: fix images on license page (#22413)
* DataSourceWithBackend: Add a get/post resource standard
path (#22408)
* Docs: Fix examples, grammar, add links (#22406)
* Docs: Add links, fix grammar, formatting, wording (#22381)
* Changelog: adds missing enterprise features (#22399)
* Docs: Add info on active LDAP sync (#22347)
* Docs: Fixed formatting issue in new stat docs (#22390)
* @grafana/toolkit: completed support for source maps in
plugin builds (#22379)
* UX: BackButton left arrow icon (#22369)
* Scrollbar: Show scrollbar on only on hover (#22386)
* NewPanelEditor: Fixed cleanup that could cause crash
(#22384)
* Theme: Fixed bug in sass file (#22382)
* Alerting: Don't include image_url field with Slack message
if empty (#22372)
* Docs: New doc pages for panels Stat, Gauge & Bar Gauge
(#22335)
* Docs: Update front-end style guide (#22197)
* Chore: Update latest.json (#22345)
* CircleCI: Fix publishing of releases (#22342)
* Changelog: v6.6.2 (#22341)
* CircleCI: Switch to new master build pipeline (#22158)
* Docs: Update white-labeling.md (#22224)
* Webpack: Upgrade terser webpack plugin (#22332)
* grafana/ui: Export TextArea under Forms namespace (#22328)
* Suggesting couple of changes to the document (#22298)
* Correcting Line 22 (#22292)
* Docs: Fix 'enable' steps formatting (#22324)
* [Docs] Improvised instructions for adding data source.
(#22305)
* DashLinks: Add pull right to dropdown menu (#22233)
* Migration: User invite (#22263)
* Select: Fix focus issue and remove select container
(#22309)
* Annotations: Call panel refresh when table transform
changes to annotations (#22323)
* Docs: Couple of changes to the document (#22291)
* Docs: Typo correction in Line 19 (#22297)
* Rendering: Store render key in remote cache (#22031)
* Backend Plugins: Provide proper plugin config to plugins
(#21985)
* New panel edit: data links tweaks (#22304)
* Metrics: Add gauge for requests currently in flight
(#22168)
* OAuth: Enforce auto_assign_org_id setting when role
mapping enabled using Generic OAuth (#22268)
* CircleCI: Upgrade Ubuntu base image to 19.10 also for
enterprise (#22315)
* CI: check ubuntu and alpine images with trivy (#22314)
* Docker: Upgrade Ubuntu to 19.10 (#22306)
* grafana/data: runtime dependencies moved from
devDependencies (#22283)
* PanelInspector: Fixed issue in panel inspector (#22302)
* grafana/ui: Add basic horizontal and vertical layout
components (#22303)
* Field Config Editors: Remove namespacing from standard
field config editors (#22296)
* CircleCI: Increase nodejs max memory (#22295)
* Update rpm.md (#22284)
* FieldConfigs: String select type & cell display mode added
to table panel (#22274)
* LinkSrv: Add newlines so I can read code
* Docs: Fix TestData docs (#22279)
* API: Improve recovery middleware when response already
been written (#22256)
* Update mac.md (#22280)
* @grafana/toolkit: lint fix option now writes changes to
disk (#22278)
* Docs: minor fixes (#22223)
* Reorder cipher suites for better security (#22101)
* Docs: Minor typo fix (#22221)
* NewPanelEdit: Add back datalinks and new table panel fix
(#22267)
* Prometheus: Implement region annotation (#22225)
* Table: Fixed header alignment (#22236)
* Data proxy: Log proxy errors using Grafana logger (#22174)
* TimePicker: fixing weird behavior with calendar when
switching between months/years (#22253)
* Update timeseries.md (#20795)
* Auth: Don't rotate auth token when requests are cancelled
by client (#22106)
* Elastic: Map level field based on config. (#22182)
* Sqlstore: guard against getting a dashboard without
specifying identi… (#22246)
* Migrations: Signup page (#21514)
* Storybook: Add color theme and theme switcher (#22005)
* NewPanelEditor: Making angular panels reuse data and
render on edit mode enter (#22229)
* PanelEdit: Title tweaks (#22237)
* NewPanelEdit: Minor changes (#22239)
* Chore: Fixed strict null errors (#22238)
* NewPanelEditor: Thresholds v2 (#22232)
* Toolkit: support sass style for plugins (#22235)
* add CloudWatch Usage Metrics (#22179)
* FieldOverrides: Fix issue with same series name for every
display value (#22234)
* Inspector: find the datasource from the refId, not the
metadata (#22231)
* New panel editor: Persist panel editor ui state (#22210)
* Toolkit: don't create declaration files for plugins (by
default) (#22228)
* Docs: Update windows.md (#22185)
* Docs: Add linking topic (#21986)
* Docs: Refactored Enterprise side menu (#22189)
* CircleCI: Push master Docker images without revision in
tag (#22218)
* Alerting: Update the types of recipient supported by the
Slack notifier (#22205)
* docs: change URL occurences to uppercase (#22151)
* Docs: Fix link for provisioning data sources (#22159)
* DevEnv: update frontend dependencies - tests (#22140)
* DevEnv: update frontend dependencies - type definitions
(#22141)
* Make Explore panel link work when grafana served from sub
url (#22202)
* DevEnv: update frontend dependencies - node (#22139)
* API: Fix redirect issue when configured to use a subpath
(#21652)
* Inspect: Inspect header design update (#22120)
* FieldOverrides: FieldOverrides UI (#22187)
* Azure OAuth: enable teamsync (#22160)
* Docs: Organize basic concepts and getting started (#21859)
* FieldOverides: apply field overrides based on
configuration (#22047)
* Docs: Suggesting few changes to the doc (#22115)
* Docs: Update phrasing line 35 (#22152)
* Docs: Correcting Typo in Line131 (#22155)
* Dashboard: fixed padding inconsistency
* BackendSrv: Fixes a stupid mistake with a missing return
(#22177)
* PanelEdit: Fixed timing and state related issues (#22131)
* Elastic: Replace range as number not string (#22173)
* change sync target branch to master (#21930)
* e2e: Fixed issue with aria label (#22166)
* Fix: Do not remove whitespace in PanelLink url (#22087)
* React Migration: Migrates FolderPicker from angular to
react (#21088)
* Auth: Azure AD OAuth (#20030)
* DevEnv: update frontend dependencies - grunt (#22136)
* Bugfix: updates cloudwatch query editor test async render
to prevent it from throwing error (#22150)
* NewPanelEdit: Design tweaks (#22156)
* TestData: Update streaming.json (#22132)
* DevEnv: update frontend dependencies - babel (#22135)
* Docs: Fix port config list formatting (#22113)
* Explore: Refactor active buttons css (#22124)
* Forms/Switch: Simplifies and adjusts CSS/Markup (#22129)
* Datasource/Loki: Fixes issue where live tailing displayed
date as invalid (#22128)
* NewPanelEditor: Fixed issue going back to dashboard after
pull page reload (#22121)
* Loki, Prometheus: Fix PromQL and LogQL syntax highlighting
(#21944)
* NewPanelEdit: Added visualization tab / selection view
(#22117)
* Increase ts fork check mem limit (#22118)
* NewPanelEditor: Panel editor tabs in state (url) (#22102)
* Delete report.20200209.125304.14262.0.001.json
* Annotation & Alerts: Makes various annotation and alert
requests cancelable (#22055)
* Select zindex (#22109)
* Docs: Add doc templates (#21927)
* Fix mentioning Slack users/groups (#21734)
* Docs: Update rules.md (#21989)
* Docs: Update metrics.md (#21988)
* Docs: Update dashboard.md (#21951)
* Docs: Added release notes tag (#22012)
* Forms/RadioButtonGroup: Improves semantics and simplifies
CSS (#22093)
* Docs: add LDAP active sync limitation for single bind
configuration (#22098)
* Docs: Update behind_proxy.md to include HTTPS and URL
rewrite example (#21832)
* DataLinks: Avoid null exception in new edit mode (#22100)
* Docs: Image rendering improvements (#22084)
* Fix display of multiline logs in log panel and explore
(#22057)
* Fix/add width to toggle button group (#21924)
* NewPanelEditor: Introduce redux state and reducer
(#22070)
* Prometheus: make $__range more precise (#21722)
* New panel edit: data links edit (#22077)
* Docs: fix minor typos in datasources.md (#22092)
* Toolkit: add a warning about tslint migration (#22089)
* Read `target` prop from the links in the footer (#22074)
* CircleCI: Publish enterprise Docker dev image for new
master pipeline (#22091)
* CircleCI: Include build ID in version for new master
pipeline (#22013)
* Alerting: Handle NaN in reducers (#22053)
* Toolkit: create manifest files for plugins (#22056)
* Backend Plugins: make transform work again (#22078)
* Docs: Fix broken link (#22010)
* Docs: Fix formatting typo (#22067)
* CircleCI: Publish enterprise ARM variants from master
pipeline (#22011)
* Chore: Adds cancellation to backendSrv request function
(#22066)
* Dashboard: Move some plugin & panel state to redux
(#22052)
* Docs: Clarify that extraction of zip is required to
install plugin (#22061)
* Chore: Fixes non utc tests (#22063)
* Grafana ui/time of day picker ui improvements (#21950)
* Links: Assure base url when single stat, panel and data
links are built (#21956)
* BackendSrv: Returns correct error when a request is
cancelled (#21992)
* Make zoom and time shift work after emmitter change
(#22051)
* New Editor: refresh when time values change (#22049)
* New Editor: Add ValuePicker for overrides selection
(#22048)
* Collapse: add a controlled collapse (#22046)
* Cascader: Fix issue where the dropdown wouldn't show
(#22045)
* New Editor: add display modes to fix ratio with actual
display (#22032)
* Chore: Use forwardRef in ButtonSelect (#22042)
* DashNavTimeControls: remove $injector and rootScope from
time picker (#22041)
* New panel edit: field overrides ui (#22036)
* Select: Portaling for Select (#22040)
* New Select: Fix the overflow issue and menu positioning
(#22039)
* Upgrade: React layout grid upgrade (#22038)
* PanelChrome: Use react Panel Header for angular panels.
(#21265)
* New Editor: add a tabs row for the query section (#22037)
* New Editor: use unit picker (#22033)
* Dashboard: Refactor dashboard reducer & actions (#22021)
* New panel editor: Add title editor (#22030)
* UnitPicker: Use the new Cascader implementation (#22029)
* FieldEditor: extendable FieldConfig UI (#21882)
* Cascader: Add enable custom value (#21812)
* New panel edit: support scrolling (#22026)
* Thresholds: get theme from context automatically (#22025)
* New Panel Edit: works for panels with and without queries
(#22024)
* PanelEditor: use splitpane for new editor (#22022)
* Select: Fixed allow custom value in
Select/UnitPicker/Segment/AsyncSegment (#22018)
* Chore: export arrow dataframe utilities (#22016)
* TSLint → ESLint (#21006)
* Docker: Publish enterprise image with master-commit tag
(#22008)
* Chore: Resolve random failure with golangci-lint (#21970)
* New panel edit: don't query when entering edit mode
(#21921)
* Fix bad grammar in Dashboard Link page (#21984)
* Update documentation-style-guide.md (#21736)
* Prometheus: Allow sub-second step in the prometheus
datasource (#21861)
* Update latest.json versions to 6.6.1 (#21972)
* Change log for 6.6.1 (#21969)
* Datasource: updates PromExploreQueryEditor to prevent it
from throwing error on edit (#21605)
* Explore: Adds Loki explore query editor (#21497)
* @grafana/ui: Fix displaying of bars in React Graph
(#21968)
* Prometheus: Do not show rate hint when increase function
is applied (#21955)
* Elastic: Limit the number of datapoints for the counts
query (#21937)
* Storybook: Update categories (#21898)
* Quota: Makes sure we provide the request context to the
quota service (#21949)
* Docs: Documentation for 6.6 Explore and Logs panel
features (#21754)
* Annotations: Change indices and rewrites annotation find
query to improve database query performance (#21915)
* Prometheus: Fixes default step value for annotation query
(#21934)
* Dashboard edit: Fix 404 when making dashboard editable
* Publish from new master pipeline (#21813)
* Metrics: Adds back missing summary quantiles (#21858)
* delete redundant alias (#21907)
* grafana/ui: Fix displaying of bars in React Graph (#21922)
* Docs: Added developer-resources.md (#21806)
* Fix formatting (#21894)
* New Select: Blur input on select (#21876)
* Fix/add default props to prom query editor (#21908)
* Graph Panel: Fixed typo in thresholds form (#21903)
* Disable logging in button (#21900)
* DatasourceEditor: Add UI to edit custom HTTP headers
(#17846)
* Datasource: Show access (Browser/Server) select on the
Prometheus datasource (#21833)
* Docs: Update dashboard.md (#21896)
* Docs: Update dashboard.md (#21200)
* Docs: Make upgrading instructions for Docker work (#21836)
* deps so can mock in tests (#21827)
* Templating: Add new global built-in variables (#21790)
* Fix: Reimplement HideFromTabs in Tabs component (#21863)
* grafana/data: Remove unused PanelSize interface (#21877)
* New Select: Extend creatable select api (#21869)
* Backend plugins: Implement support for resources (#21805)
* Docker: change plugin path in custom docker (#21837)
* Image Rendering: Fix render of graph panel legend aligned
to the right using Grafana image renderer plugin/service
(#21854)
* Docs: Update _index.md (#21700)
* grafana/toolkit: Fix failing linter when there were lint
issues (#21849)
* DatasourceSettings: Fixed issue navigating away from data
source settings page (#21841)
* AppPageCtrl: Fix digest issue with app page initialisation
(#21847)
* Explore: adds basic tests to TableContainer checking the
render and output on 0 series returned
* Explore: adds MetaInfoText tests
* Explore: adds export of MetaItem and its props
* Explore: updates TableContainer to use MetaInfoText
component
* Explore: updates Logs component to use MetaInfoText
component
* Explore: adds MetaInfoText component
* Explore: removes unnecessary styles for panel logs
* Explore: updates Table container render to avoid rendering
table on empty result
* Explore: updates explore table container to show a span on
0 series returned
* docs/cli: Fix documentation of reset-admin-password with
--homepath (#21840)
* Replace ts-loader with Babel (#21587)
* Docs: Add information about license expiration (#21578)
* Fix digest issue with query part editor's actions menu
(#21834)
* Graphite: Fixed issue with functions with multiple
required params and no defaults caused params that could
not be edited (groupByNodes groupByTags) (#21814)
* TimePicker: Should display in kiosk mode (#21816)
* Chore: Upgrade Storybook to 5.3.9 (#21550)
* Table: Make the height of the table include header cells
(#21824)
* StatPanels: Fixed migration from old singlestat and
default min & max being copied even when gauge was disbled
(#21820)
* Docs: Update docker image run and configuration
instructions (#21705)
* DataFrame: update golden test files (#21808)
* Docs: Alphabetize datasource names in sidebar under
docs/Features/DataSources (#21740)
* Inspect: Add error tab (#21565)
* Select: Fix direct usages of react-select to make the
scroll great again (#21822)
* TablePanel: display multi-line text (#20210)
* Fixed strict errors (#21823)
* Fix: prevents the BarGauge from exploding when the
datasource returns empty result. (#21791)
* Select: Fix scroll issue (#21795)
* Fix: Fixes user logout for datasourceRequests with 401
from datasource (#21800)
* Azure Monitor: Fix Application Insights API key field to
allow input (#21738)
* Influxdb: Fix cascader when doing log query in explore
(#21787)
* Devenv: OpenTSDB dashboard (#21797)
* MSI: License for Enterprise (#21794)
* OpenTSDB: Add back missing ngInject (#21796)
* Heatmap: Legend color range is incorrect when using custom
min/max (#21748)
* Config: add meta feature toggle (#21786)
* Logs panel: Rename labels to unique labels (#21783)
* Add link guide for installing new renderer (#21702)
* Chore: Lowers strict error limit (#21781)
* Chore: Removes Cypress record (#21782)
* Docs: Document configuration of console, file and syslog
log formats (#21768)
* Annotations: Fixes this.templateSrv.replace is not a
function error for Grafana datasource (#21778)
* Fix typos in the communication documentation (#21774)
* Chore: Fixes various strict null errors (#21763)
* Forms: Allow custom value creation in async select
(#21759)
* Chore: bump react-select to 3.0.8 (#21638)
* grafana/data: Add type for secure json in DataSourceAPI
(#21772)
* Influxdb: Fix issues with request creation and parsing
(#21743)
* Explore/Loki: Fix handling of legacy log row context
request (#21767)
* 6.6.0 latest (#21762)
* Docs: Updates Changelog for 6.6.0 (#21753)
* Docs: Update image rendering (#21650)
* Docs: misc. nitpicks to the HTTP API docs (#21758)
* Dashboard: fixes issue with UI not being re-rendered after
moving dashboard
* Dashboard: fixed issues with re-rendering of UI when
importing dashboard (#21723)
* Build: Added devenv docker block for testing grafana with
traefik.
* Update What's new in 6.6 (#21745)
* Footer: Display Grafana edition (#21717)
* BackendSrv: Fixes POST body for form data (#21714)
* Docs: Update CloudWatch and Stackdriver docs for 6.6
(#21679)
* BackendSrv: Adds missing props back to response object in
datasourceRequest (#21727)
* Explore: Fix context view in logs, where some rows may
have been filtered out. (#21729)
* Toolkit: add canvas-mock to test setup (#21739)
* TablePabel: Sanitize column link (#21735)
* Docs: Fix getting started links on Windows installation
page (#21724)
* Docs: Enterprise 6.6 (#21666)
* Template vars: Add error message for failed query var
(#21731)
* Loki: Refactor editor and syntax hooks (#21687)
* Devenv: Fixed devenv dashboard template var datasource
(#21715)
* Footer: added back missing footer to login page (#21720)
* Admin: Viewer should not see link to teams in side menu
(#21716)
* Annotations: Fix issue with annotation queries editors
(#21712)
* grafana/ui: Remove path import from grafana-data (#21707)
* Loki: Fix Loki with repeated panels and interpolation for
Explore (#21685)
* CircleCI: Add workflow for building with Grafana Build
Pipeline (#21449)
* StatPanels: Fixed possible migration issue (#21681)
* Make importDataSourcePlugin cancelable (#21430)
* Docs: Update what's new in 6.6 (#21699)
* Docs: Fix broken link in upgrade notes (#21698)
* Alerting: Support passing tags to Pagerduty and allow
notification on specific event categories (#21335)
* PhantomJS: Fix rendering of panels using Prometheus
datasource
* backendSrv: Only stringifies request body if payload isn't
already a string (#21639)
* Update changelog generation to ignore not merged pull
requests (#21641)
* StatPanel: minor height tweak (#21663)
* Circle: Introduce es-check to branches & pr workflow
(#21677)
* Run query when region, namespace and metric changes
(#21633)
* Explore: Fixes some LogDetailsRow markup (#21671)
* SQLStore: Fix PostgreSQL failure to create organisation
for first time (#21648)
* Migrations: migrate admin user create page (#21506)
* Docs: Whats new updates (#21664)
* CloudWatch: Auto period snap to next higher period
(#21659)
* Login: Better auto sizing of login logo (#21645)
* Chore: Fixes PhantomJs by adding polyfills for fetch and
AbortController (#21655)
* Alert: Minor tweak to work with license warnings (#21654)
* Toolkit: copyIfNonExistent order swapped (#21653)
* Doc: Update configuration.md (#21602)
* Explore: Fix log level color and add tests (#21646)
* Templating: A way to support object syntax for global vars
(#21634)
* CloudWatch: Add DynamoDB Accelerator (DAX) metrics &
dimensions (#21644)
* next version 6.7.0 (#21617)
* latest.jso: Update latest beta 6.6.0-beta1 (#21623)
* Docs: Update changelog with attribution (#21637)
* Docs: Updated what's new article (#21624)
* Plugins: Apply adhoc filter in Elasticsearch logs query
(#21346)
* Changelog: v6.6.0-beta1 (#21619)
* Chore: Remove angular dependency from backendSrv (#20999)
* Emotion: Add main package with version 10 (#21560)
* TestData: allow negative values for random_walk parameters
(#21627)
* Update musl checksums (#21621)
* CloudWatch: Expand dimension value in alias correctly
(#21626)
* Devenv: InfluxDB logs dashboard (#21620)
* Build: adds missing filters required to build oss msi
(#21618)
* BigValue: Updated test dashboard and made some chart
sizing tweaks (#21616)
* TestData: Adds important new features to the random walk
scenario (#21613)
* graphite: does not modify last segment when... (#21588)
* grafana/ui: Add synced timepickers styling to TimePicker
(#21598)
* Explore: Remove destructuring of empty state in
LogRowMessage (#21579)
* Build: enables deployment of enterprise msi (#21607)
* CI: MSI for Enterprise (#21569)
* E2E docs: Add guide to debuging PhantomJS (#21606)
* Toolkit: fix prettier error reporting (#21599)
* Render: Use https as protocol when rendering if HTTP2
enabled (#21600)
* Typescript: null check fixes, and news panel fix (#21595)
* Inspect: table take full height in drawer (#21580)
* OAuth: Fix role mapping from id token (#20300)
* ButtonCascader: Fix error in Explore (#21585)
* CloudWatch: Fix ordering of map to resolve flaky test take
2 (#21577)
* Redux: Fixed function adding a new reducer (#21575)
* Minor style changes on upgrade page (#21566)
* Revert 'Babel: use babel-loader instead of ts-loader,
ng-annotate with babel-plugin-angularjs-annotate (#21554)'
(#21570)
* Explore: Context tooltip to copy labels and values from
graph (#21405)
* Config: Use license info instead of build info for feature
toggling (#21558)
* Fix merge problem (#21574)
* CloudWatch: Fix ordering of map to resolve flaky test
(#21572)
* Docs: What's new in Grafana v6.6 Draft (#21562)
* Explore: Create unique ids and deduplicate Loki logs
(#21493)
* Chore: Fix go vet problem (#21568)
* Provisioning: Start provision dashboards after Grafana
server have started (#21564)
* CloudWatch: Calculate period based on time range (#21471)
* Inspect: Download DataFrame to Csv (#21549)
* CloudWatch: Multi-valued template variable dimension alias
fix (#21541)
* Babel: use babel-loader instead of ts-loader, ng-annotate
with babel-plugin-angularjs-annotate (#21554)
* Stackdriver: Support meta labels (#21373)
* CI: Revert msi build (#21561)
* Alerting: Fix image rendering and uploading timeout
preventing to send alert notifications (#21536)
* CI: adds missing files for ee msi (#21559)
* CI: Enterprise MSI (#21518)
* Add component: Cascader (#21410)
* CloudWatch: Display partial result in graph when max
DP/call limit is reached (#21533)
* Dashboards: Default Home Dashboard Update (#21534)
* Docs: Update rpm.md (#21547)
* Docs: Update mac.md (#20782)
* Templating: update variables on location changed (#21480)
* Vendor: grafana-plugin-sdk-go v0.11.0 (#21552)
* fix dateMath import in grafana-ui (#21546)
* Explore/Loki: Filter expression only treated as regex when
regex operator is used (#21538)
* Fix TypeScript error (#21545)
* Build: Ignore content of /pkg/extensions, not directory
(#21540)
* Update latest to 6.5.3 (#21509)
* Explore: Ensures queries aren't updated when returning to
dashboard if browser back is used (#20897)
* Inspect: Use AutoSizer for managing width for content in
tabs. (#21511)
* Changelog generation: Generate grafana/ui changelog
(#21531)
* Toolkit: support less loader (#21527)
* AppPlugin: remove simple app from the core repo (#21526)
* @grafana/toolkit: cleanup (#21441)
* DataFrames: add arrow test and capture metadata parsing
errors (#21524)
* DataLinks: allow using values from other fields in the
same row (#21478)
* grafana/data: Update plugin config page typings (BREAKING)
(#21503)
* Fix regex in convertCSSToStyle, add test coverage (#21508)
* CloudWatch: Annotation Editor rewrite (#20765)
* Admin: Add promotional page for Grafana Enterprise
(#21422)
* Add changelog for 6.5.3
* Backend Plugins: Collect and expose metrics and plugin
process health check (#21481)
* Auth: Rotate auth tokens at the end of requests (#21347)
* Tabs: Hide Tabs on Page header on small screens (#21489)
* Fix importing plugin dashboards (#21501)
* SideMenu: Fixes issue with logout link opened in new tab
(#21488)
* DataLinks: Make data links input grow again (#21499)
* Templating: use default datasource when missing (#21495)
* Explore: Fix timepicker when browsing back after switching
datasource (#21454)
* Add disabled option for cookie samesite attribute (#21472)
* Chore: Adds basic alerting notification service tests
(#21467)
* ImportDashboardCommand: Validate JSON fields (#21350)
* Docs: add test for website build (#21364)
* Fix: when clicking a plot on a touch device we won't
display the annotation menu (#21479)
* Backend Plugins: add a common implementation (#21408)
* Alerting: new min_interval_seconds options to enforce a
minimum eval frequency (#21188)
* Panel: Use Tabs in panel inspector (#21468)
* Docs: Update rpm install (#21475)
* Alerting: Enable setting of OpsGenie priority via a tag
(#21298)
* Alerting: fallbackText added to Google Chat notifier
(#21464)
* Plugins: Move backend plugin manager to service (#21474)
* Backend Plugins: Refactor backend plugin registration and
start (#21452)
* Admin: New Admin User page (#20498)
* Docs: Update cli.md (#21470)
* Fix: Tab icons not showing (#21465)
* Chore: Add react-table typings to Table (#21418)
* Login: Refactoring how login background is rendered
(#21446)
* StatPanel: Refactoring & fixes (#21437)
* Chore: Migrates reducers and actions to Redux Toolkit
(#21287)
* DeleteButton: Button with icon only was not centered
correctly. (#21432)
* Logos: Refactoring a bit how logos are rendered (#21421)
* Docs: Update documentation-style-guide.md (#21322)
* More datasource funcs poc (#21047)
* Docs: Update plugin installation and CLI (#21179)
* Docs: Update debian.md (#21339)
* Alerting: Adds support for sending a single email to all
recipients in notification channel (#21091)
* ThreemaNotifier: Use fully qualified status emoji (#21305)
* Settings: Env override support for dynamic settings
(#21439)
* Security: refactor 'redirect_to' cookie to use 'Secure'
flag (#19787)
* Logs: Fix parsing for logfmt fields that have parens
(#21407)
* Improve documentation for the Prometheus data source
(#21415)
* Heatmap: fix formatting (#21433)
* Docs: Fixed broken links of Datasource doc at Grafana
plugin page (#21363)
* ApiUser: Fix response when enabling, disabling or deleting
a nonexistent user (#21391)
* grafana/ui: Create Tabs component (#21328)
* Inspector: support custom metadata display (#20854)
* Table: Added text align option to column styles (#21175)
* PluginPage: Add appSubUrl string to config pages url
(#21414)
* Docs: Remove comment about upcoming alerting for
singlestat and table panels (#21416)
* Footer: Single footer component for both react & angular
pages (#21389)
* API: Added alert state validation before changing its
state (#21375)
* AddDataSource: Added missing phantom plugin (#21406)
* Plugins: Use grafana-plugin-sdk-go v0.5.0 (#21116)
* UnitPicker: show custom units on load (#21397)
* Cloud Watch: Standardize Config Editor Implementation
(#20489)
* CloudWatch: dimension_values templating fix (#21401)
* Docs: explain how to setup the apt repo without helpers
(#21194)
* Build: prevent changes to pkg/extentions/main.go from
throwing error on merge
* TimeZones: fix utc test (#21393)
* Build: package all binaries for enterprise (#21381)
* Datasource: fixes prometheus datasource tests - adds align
range
* CircleCI: Testing upgrade to CircleCI 2.1 (#21374)
* Storybook: Remove reference to jquery.flot.pie file from
storybook config (#21378)
* Cloudwatch: Fixed crash when switching from cloudwatch
data source (#21376)
* Docs: Added Squadcast notifications (#21372)
* Chore: upgrade d3 (#21368)
* Datasource: fix a bug where deleting data source will
trigger save and test events (#21300)
* Forms: revamped select (#21092)
* Toolkit: add git log info to the plugin build report
(#21344)
* Docs: Use https scheme for Grafana playground links
(#21360)
* fix docs links (#21359)
* AddDatasourcePage: Refactoring & more Phantom plugins
(#21261)
* Chore: Remove empty flot.pie file (#21356)
* Docs: Fix link (#21358)
* Docs: Fix InfluxDB templated dashboard link (#21343)
* Rendering: Fix panel PNG rendering when using sub url &
serve_from_sub_path = true (#21306)
* NewsPanel: update default feed url (#21342)
* docs: fix influxdb templated dashboard link (#21336)
* Docs: Update Windows.md (#21333)
* Arrow: don't export arrow... breaking phantomjs e2e test
(#21331)
* DataFrame: round trip metadata to arrow Table (#21277)
* Prometheus: user metrics metadata to inform query hints
(#21304)
* Panel: disable edit/duplicate/delete entry for repeat
panel (#21257)
* Prometheus: Disable suggestions at beginning of value
(#21302)
* grafana/ui: Do not build in strict mode as grafana/ui
depends on non-strict libs (#21319)
* Docs: Update security.md (#20981)
* @grafana/data: use timeZone parameter rather than isUtc
(#21276)
* Units: support dynamic count and currency units (#21279)
* Docs: Added sudo and removed $ where inconsistent.
(#21314)
* ImgUploader: add support for non-amazon S3 (#20354)
* Fix: tooltips value disappear when label has too long word
(#21267)
* Docs: Update provisioning.md (#21303)
* Docs: Update alerting_notification_channels.md (#21245)
* Loki: fix filter expression suggestions (#21290)
* Prometheus: Fix label value suggestion (#21294)
* Prometheus: Fix term completion that contain keywords
(#21295)
* Docs: Fixed broken links in Basic Concepts (#21035)
* Docs: Edited Windows install instructions (#20780)
* Docs: Update troubleshooting.md (#21244)
* Fix internal links in http_api/dashboard.md (#21255)
* Docs: Update README.md (#21274)
* Docs: Fix aliases/redirects (#21241)
* Docs: Document tracing.jaeger configuration (#21181)
* Websockets: upgrade websocket libray to 1.4.1 (#21280)
* FieldConfig: add thresholds and color modes (#21273)
* Prometheus: improve tooltips (#21247)
* Explore: Moves PromContext from query level to
DataQueryRequest level (#21260)
* BridgeSrv: do not strip base from `state.location.url`
(#20161)
* Graph: another tooltip fix (#21251)
* Alerting: Add configurable severity support for PagerDuty
notifier (#19425)
* Graph: Fixed no value in graph tooltip (#21246)
* Units: support farenheit (existing misspelling) (#21249)
* Docs: fix typo (#21190)
* Promtheus: Fix hint and error display for query rows
(#21242)
* Docs: fixed broken doc link for graph and table panels
(#21238)
* Docs: fix of broken doc link in the dashlist panel's help
section (#21230)
* Docs: Update the link to docs for singlestat (#21225)
* Docks: Update provisioning.md with proper Slack settings
(#21227)
* Editor: Ignore closing brace when it was added by editor
(#21172)
* Explore: moves add query row button below query rows
(#20522)
* Explore: adds PrometheusExploreQueryEditor (#20195)
* Simplify adjustInterval (#21226)
* Sass: Checked in tmpl files
* Table: Component progress & custom FieldConfig options
(#21231)
* Chore: remove StreamHandler and DataStreamState (#21234)
* DashboardGrid: Fixed flickering while resizing (#21221)
* docs: rename premium plugins to enterprise plugins
(#21222)
* NewsPanel: add news as a builtin panel (#21128)
* grafana/toolkit: Readme update (#21218)
* grafana/toolkit: Resolve modules correctly (#21216)
* New bar gauge style: Unfilled (#21201)
* Dashboard: new updated time picker (#20931)
* Metrictank: fix bundled dashboard (#21209)
* Tooltip: preventing xss injections via the colors
variable. (#21203)
* Livetailing: set table withd to 100% (#21213)
* Docs: Fix broken link in debian.md (#21199)
* Added back logo file (#21198)
* Docs: fix ordering of apt setup (#21192)
* Docs: Fix Azure ad generic OAuth code markdown formatting
(#21189)
* docs: rendering plugin required for reporting (#21162)
* Chore: Fixes wrong e2e path in .gitignore (#21186)
* e2e: Waits for login before moving forward (#21185)
* PanelChrome: Mini refactor (#21171)
* Tracing: Support configuring Jaeger client from
environment (#21103)
* @grafana/toolkit: webpack extend TS→JS (#21176)
* [docs] Azure monitor link in templating (#21173)
* grafana/toolkit: Add option to override webpack config
(#20872)
* Docs: Adds best practices after visit and a link back to
e2e.md (#21117)
* Changelog: Add PagerDuty breaking change (#21170)
* DashboardGrid: Change grid margin to 8, to align to 8px
grid (#21167)
* Alerting: Add more information to webhook notifications
(#20420)
* Panel: Show inspect panel in Drawer instead of Modal
(#21148)
* Prometheus: Fix typehead after binary operators (#21152)
* docs: always updates docker image before building docs
site (#21165)
* Table: Matches column names with unescaped regex
characters (#21164)
* DataLinks: Sanitize data/panel link URLs (#21140)
* Dashboard: Only show resize-handle on hover (#21160)
* PagerDuty: Fix custom_details to be a JSON object instead
of a string (#21150)
* grafana/ui: New table component (#20991)
* e2e: Migrates query variable CRUD tests to new framework
(#21146)
* Chore: Upgrade react, react-dom, react-test-renderer
versions (#21130)
* Fix log row when query is short (#21126)
* Prometheus: Display HELP and TYPE of metrics if available
(#21124)
* e2e: Updates truth image (#21132)
* Cloudwatch ECS Container Insights Support (#21125)
* FontSize: Change base font size to 14px (#21104)
* Explore: Refactor log rows (#21066)
* phantomjs: performance.getEntriesByType not supported
(#21009)
* New panel editor (behind feature toggle) (#21097)
* e2e: Adds ScenarioContext and video recordings to e2e
(#21110)
* DashboardImport: Fixes broken import page in prod builds
(#21101)
* Dependencies: Bump npm from 6.9.0 to 6.13.4 (#21095)
* Docs: Fix broken link in loki.md (#21098)
* Dependencies: Upgrade grunt-contrib-compress to resolve
issues with iltorb (#21096)
* Update CODEOWNERS (#21093)
* E2E: Testing recording e2e tests (#21094)
* FieldConfig: set min/max automatically for gauge (#21073)
* Postgres/MySQL/MSSQL: Adds support for region annotations
(#20752)
* Azure Monitor: Use default from datasource if not saved on
dashboard/query (#20899)
* Azure Monitor: Copy AM Creds to Log Analytics When Using
Same As (#21032)
* Docs: Add minimal hugo build, update docs README (#20905)
* CI: Added junit test report (#21084)
* UI: ConfirmButton component (#20993)
* Angular/React: Migrates team creation form to react
(#21058)
* Templating: Fixes digest issues in Template Variable
Editor (#21079)
* OrgSwitcher: Fixed issue rendering org switcher even when
it's not open (#21061)
* Chore: Remove rejected files (#21072)
* e2e: Uses should on first element after visit to prevent
flakiness (#21077)
* FieldConfig: support overrides model (#20986)
* AngularPanels: fixed transparency issue (#21070)
* Docs: Update configuration.md for #3349 (#21069)
* OAuth: Removes send_client_credentials_via_post setting
(#20044)
* API: Validate redirect_to cookie has valid (Grafana) url
(#21057)
* Explore: Refactor log details table (#21044)
* Prometheus: Prevents validation of inputs when clicking in
them without changing the value (#21059)
* Prometheus: Fixes so user can change HTTP Method in config
(#21055)
* MetricSegment: Fix metric segment UI crash in prod builds
(#21053)
* OpenTSDB: Adding lookup limit to OpenTSDB datasource
settings (#20647)
* Templating: Fixes default visibility for submenu to same
as dashboard (#21050)
* Create CODEOWNERS (#21045)
* Elastic: Add data links in datasource config (#20186)
* Alerting: Fix panic in dingding notifier (#20378)
* Logs: Optional logs label column (#21025)
* Chore: updated to latest stable version (#21033)
* Docs: change log for release v6.5.2 (#21028)
* Chore: Improve rendering logging (#21008)
* Modules: Add patched goavro dependency for extensions
(#21027)
* Explore: Sync timepicker and logs after live-tailing stops
(#20979)
* Fix: Shows SubMenu when filtering directly from table
(#21017)
* Alerting: Fix template variable in query check (#20721)
* Toolkit: remove unused plugin-ci report types (#21012)
* MixedDatasources: Do not filter out all mixed data sources
in add mixed query dropdown (#20990)
* Docs: Change checkout to check out where necessary
(#20926)
* Promtheus: Improve tab completion (#20938)
* build: adds IANA timezone info to windows build (#21001)
* Loki: fix labels fetching when no initial range given
(#21000)
* Docs: Update datasource API examples (#20951)
* UI: Segment fixes (#20947)
* Stackdriver: Make service list searchable (#20989)
* Remove un-used imports (#20937)
* upgrade aws-sdk-go (#20957)
* UI: ConfirmModal component (#20965)
* Docs: Updates from puppeteer to Cypress (#20962)
* e2e: Adds better log information during test runs (#20987)
* Alert: If the permission is forbidden, keep the historical
alarm data present. (#19007)
* Graph: Add fill gradient option to series override line
fill (#20941)
* use https for fetch gravatar by default (#20964)
* Prometheus: disable dynamic label lookup on big
datasources (#20936)
* Loki: Fix datasource config page test run (#20971)
* Devenv: Fix loki block (#20967)
* e2e: Replaces truth image (#20966)
* Forms: introduce RadioButtonGroup (#20828)
* Fix: Adds e2e as a package that needs to be built (#20961)
* Make sure datasource variable is being used everywhere
(#20917)
* Refactor: Navigates directly to add data source page
instead (#20959)
* Alerting: Improve alert threshold handle dragging behavior
(#20922)
* DisplayProcessor: Interpret empty strings as NaN instead
of 0 to support empty value map texts in Singlestat
(#20952)
* Prometheus: Refactor labels caching (#20898)
* e2e: Uses Cypress instead of Puppeteer (#20753)
* Renderer: Add user-agent to rendering plugin requests
(#20956)
* DataSource: remove delta option (#20949)
* Elasticsearch: set default port to 9200 in ConfigEditor
(#20948)
* Loki: Remove appending of (?i) in Loki query editor if not
added by user (#20908)
* Datasource/Loki: Loki now goes to Logs mode when importing
prom queries (#20890)
* Cloudwatch: Defined explore query editor for cloudwatch
(#20909)
* Datasource/Loki: Empty metric name no longer replaced by
query (#20924)
* Revert 'Modules: Add goavro dependency for extensions
(#20920)' (#20928)
* Docs: Update debian.md (#20910)
* UI: Segment Input change (#20925)
* Modules: Add goavro dependency for extensions (#20920)
* UI: Segment Input (#20904)
* Remove escaping of \ ( ) characters (#20915)
* AngularPanels: Check for digest cycle on root scope
(#20919)
* InfluxDB: Use new datasource update option funcs (#20907)
* Docs: Update debian-ubuntu installation instructions
(#20875)
* Search: Fixed angular digest issues (#20906)
* Remove false positive error message for expression and id
field (#20864)
* fix notifications page (#20903)
* Update documentation-style-guide.md (#20871)
* Docs: update content to work with website repo (#20693)
* Elastic: Fix multiselect variable interpolation for logs
(#20894)
* Singlestat: Fixed unit not showing and switched to new
unit picker (#20892)
* MetaAnalytics: Minor fix for meta analytics event (#20888)
* Explore: Cleanup redundant state variables and unused
actions (#20837)
* Chore/Tech debt: Remove (most) instances of $q angular
service use (#20668)
* AngularPanels: Fixed loading spinner being stuck in some
rare cases (#20878)
* TeamPicker: Increase size limit from 10 to 100 (#20882)
* Echo: mechanism for collecting custom events lazily
(#20365)
* StatPanel: change to beta
* Azure Monitor: Standardize Config Editor Implementation
(#20455)
* GraphTooltip: added boundaries so we never render tooltip
outside window. (#20874)
* Graphite: Use data frames when procesing annotation query
in graphite ds (#20857)
* Elastic: Fix parsing for millisecond number timestamps
(#20290)
* Docs: Sync docs with website repo via GitHub Action
(#20694)
* Gauge/BarGauge: Added support for value mapping of 'no
data'-state to text/value (#20842)
* UI: Use SelectableValue as Segment value (#20867)
* Datasource/Loki: Fixes issue where time range wasn't being
supplied with annotation query (#20829)
* Server: Return 404 when non-pending invite is requested
(#20863)
* Explore: Fix reset reducer duplication (#20838)
* CLI: Return error and aborts when plugin file extraction
fails (#20849)
* Datasource/Loki: Simplifies autocompletion (#20840)
* Update README.md (#20820)
* ValueFormats: dynamically create units (#20763)
* @grafana/data: don't export ArrowDataFrame (#20855)
* @grafana/data: export ArrowDataFrame (#20832)
* Docs: Add section about derived fields for Loki (#20648)
* Migration: Migrate org switcher to react (#19607)
* Remove screencasts.md (#20845)
* Update requirements.md (#20778)
* Explore: Log message line wrapping options for logs
(#20360)
* AlertNotifier: Support alert tags in OpsGenie notifier
(#20810)
* Fix prettier (#20827)
* Loki: Support for template variable queries (#20697)
* Explore: Export timezone from redux state (#20812)
* Forms: introduce checkbox (#20701)
* OpenTsdb: Migrate Config Editor to React (#20808)
* TablePanel, GraphPanel: Exclude hidden columns from CSV
(#19925)
* DataFrame: add utilities to @grafana/data that support
apache arrow (#20813)
* Panels: Fixed transparency option for angular panels
(#20814)
* CloudWatch: Upgrade aws-sdk-go (#20510)
* Update documentation-style-guide.md (#20777)
* Chore: Move Prometheus datasorce tests from specs folder
and merge duplicated test files (#20755)
* Profile: Remove sign-out tab from profile page (#20802)
* Doc: Change inline comment on interface to doc comment
(#20794)
* Server: Fail when unable to create log directory (#20804)
* Update stale.yml
* Rename config.yaml to config.yml
* GitHub: Add link to forum when adding new issue (#20798)
* Datasource/Loki: Fixes regression where enhanceDataFrame
was not called (#20660)
* Updated changelog
* Docs: Updated changelog
* SQLStore: Test admins/editors/viewers stats validity
(#20751)
* Graph-Panel: Center option for bar charts (#19723)
* Packages: Fixed rollup issue with grafana-ui (#20790)
* Stalebot: update issue config (#20789)
* Stalebot: Automatically label PRs with no activity after
14 days as stale, then after 30 days close (#20179)
* StatPanel: ColorMode, GraphMode & JustifyMode changes
(#20680)
* Units: Remove SI prefix symbol from new
milli/microSievert(/h) (#20650)
* Graphite: Add metrictank dashboard to Graphite datasource
(#20776)
* Docs: Remove typo from mssql.md (#20748)
* Navigation: Fix navigation when new password is chosen
(#20747)
* Cleanup: use the local variable (#20767)
* Prometheus: Fix caching for default labels request
(#20718)
* Release: Updates latest.json and
grafana/packages/*/package.json (#20734)
* Release: Updates Changelog for 6.5.1 (#20723)
* ReactMigration: Migrate Graphite config page to React
(#20444)
* SQLStore: Rewrite system statistics query to count users
once (#20711)
* Docs: Clean up influxdb.md (#20618)
* CloudWatch: Region template query fix (#20661)
* Units: remove unreachable code (#20684)
* Tests: Skipping Template Variable tests for now (#20707)
* Datasource/Loki: Fix issue where annotation queries
weren't getting their variables interpolated (#20702)
* Documentation: Add missing blank in docker run command
(#20705)
* Server: Defer wg.Done call to ensure it's called (#20700)
* Fix: Fixes templateSrv is undefined for plugins that do
not use @@ngInject (#20696)
* Server: Clean up startup logic/error checking (#20679)
* CloudWatch: Annotations query editor loading fix (#20687)
* OAuth: Add missing setting from defaults.ini (#20691)
* DataLinks: Refactor title state (#20256)
* Forms: TextArea component (#20484)
* Explore: Adjust the max-width of the tooltip (#20675)
* Units: Add currency and energy units (#20428)
* transform: update to use sdk with frame.labels moved to
frame.[]field.labels (#20670)
* dev: fix pre-commit typo in toolkit (#20673)
* Docs: Update change user password payload in http api
(#20666)
* Chore: Sync defaults.ini with sample.ini (#20645)
* Loki: Fix query error for step parameter (#20607)
* Fix: Disable draggable panels on small devices (#20629)
* Chore: Remove several instances of non-strict null usage
(#20563)
* StatPanel: Rename singlestat2 to stat (#20651)
* Panels: Add support for panels with no padding (#20012)
* CloudWatch: Docs updates after feedback (#20643)
* Explore: Update docs with updated images (#20633)
* Build: Update latest.json (#20638)
* Forms: Introduce form field (#20632)
* docs: update versions (#20635)
* Changelog: 6.4.5 (#20625)
* Changelog: 6.5.0 (#20620)
* Docs: 6.5 update (#20617)
* Chore: Improve grafana-server profiling and tracing
(#20593)
* grafana/toolkit: Update FAQ (#20592)
* Forms: Introduce new Switch component (#20470)
* E2E: Adds tests for QueryVariable CRUD (#20448)
* Toolkit: Do not continue after compile error (#20590)
* BarGauge/Gauge: Add back missing title option field
display options (#20616)
* VizRepeater/BarGauge: Use common font dimensions across
repeated visualisations (#19983)
* Update services.md (#20604)
* Docs: CloudWatch docs fixes (#20609)
* Changelog: Add v6.3.7 (#20602)
* Cloudwatch: Docs improvements (#20100)
* Fix: Wrong path when sending package build time (#20595)
* CloudWatch: Fix high CPU load (#20579)
* Explore: UI changes for split view and live tailing
(#20516)
* Explore: Keep logQL filters when selecting labels in log
row details (#20570)
* Instrumentation: Edition and license info to usage stats
(#20589)
* Metrics: Add metric for each package build time (#20566)
* grafana/toolkit: Smaller output after successful upload
(#20580)
* Table: Use the configured field formatter if it exists
(#20584)
* TextPanel: Fixes issue with template variable value not
properly html escaped (#20588)
* Docs: Update Explore docs for 6.5 (time-sync button & log
details) (#20390)
* Explore: UI changes for derived fields (#20557)
* Docker: Custom dockerfiles, docker and image rendering
docs update (#20492)
* Tooltip: Fix issue with tooltip throwing an error when
retrieving values (#20565)
* Changelog: Reference a few more issues that were fixed
(#20562)
* Enable theme context mocking in tests (#20519)
* Chore: Remove angular dependency from prometheus
datasource (#20536)
* Build: Verify checksums when downloading PhantomJS
(#20558)
* DevEnv: updates nodejs from 10.x to 12.x and golang to
1.13 in ci-deploy dockerfile. (#20405)
* Explore: updates responsive button to pass all the div
element props
* Explore: fixes explore responsive button ref
* Explore: adds a ref to responsive button
* Explore: updates responsive button to forward ref
* Explore: UI fixes for log details (#20485)
* Document required Go version in developer guide (#20546)
* UserTableView: Show user name in table view (#18108)
* CloudWatch: enable min_interval (#20260)
* CI: fix release script remove filtering (#20552)
* Update dashboards (#20486)
* CI: Build all platforms for Enterprise (#20389)
* Alerting: Propagate failures to delete dashboard alerts
(#20507)
* Cloudwatch: Fix LaunchTime attribute tag bug (#20237)
* Fix: Prevents crash when searchFilter is non string
(#20526)
* docs: what's new fixes (#20535)
* What's new in 6.5 - adding CloudWatch topics (#20497)
* grafana/ui: Expose Icon component (#20524)
* Backend plugins: Log wrapper args formatting fix (#20521)
* Build: Clean up scripts/grunt/options/phantomjs.js
(#20503)
* MySql: Fix tls auth settings in config page (#20501)
* Backend plugins: Log wrapper args formatting (#20514)
* CloudWatch: Remove HighResolution toggle since it's not
being used (#20440)
* API: Optionally list expired keys (#20468)
* Image-rendering: Cleanup of rendering code (#20496)
* Build: Reports times and outcomes from CircleCI jobs
(#20474)
* Chore: Upgrade prettier for grafana-toolkit (#20476)
* TimePicker: Fixed update issue after plugin uses
getLocationSrv().update (#20466)
* Docs: Add explore images to What's new in v6.5 (#20442)
* Chore: Bumps prettier version for new typescript syntax
support (#20463)
* handle PartialData status (#20459)
* CloudWatch: Make sure period variable is being interpreted
correctly (#20447)
* Forms: New Input component (#20159)
* UsersPage: Removed icon in external button (#20441)
* Build: Fix RPM verification (#20460)
* Dashboard Migrator: persist thresholds param if already
set (#20458)
* Docs: Fix developer guide link (#20434)
* Fix package signing (#20451)
* Build: Fix signing (#20450)
* transform: changes to support sdk v0.2.0 (#20426)
* Reporting: Handle timeouts in rendering (#20415)
* Build: Upgrade build-container Docker image version
(#20443)
* Upgrade build-container image (#20438)
* Provisioning: Fix unmarshaling nested jsonData values
(#20399)
* Fail when server is unable to bind port (#20409)
* Devenv: Fix integration of postgres and fake-data-gen
containers (#20329)
* Util: Modify SplitHostPortDefault not to return an error
for empty input (#20351)
* InfluxDB: convert config editor to react (#20282)
* Packages: stable release tags update (#20417)
* Chore/Go-dep: change sdk to use new tag (#20422)
* Chore: Log actual error when oauth pass thru fails
(#20419)
* Grafana/Loki: Adds support for new Loki endpoints and
metrics (#20158)
* Chore: Fix error caused by typescript upgrade (#20408)
* Chore: Upgrade typescript to 3.7 (#20375)
* NavLinks: Make ordering in navigation configurable
(#20382)
* Fix flot overriding onselectstart/ondrag events (#20381)
* Docs: Updates docs for redux framework (#20377)
* chore: fix 'testing' version is latest.json (#20398)
* transform_plugin: stop plugin when grafana stops (#20397)
* Chore: Update latest.json (#20393)
* Docs: What's new in Grafana v6.5 Draft (#20368)
* Update changelog for v6.5.0-beta1 (#20350)
* Chore: Move and wrap Cascader component to @grafana/ui
(#20246)
* MySql: Fix password regression in MySQL datasource
(#20376)
* CloudWatch: Datasource improvements (#20268)
* grafana/toolkit: remove aws-sdk and upload to grafana.com
API endpoint (#20372)
* LDAP: last org admin can login but wont be removed
(#20326)
* Devenv: Replace deprecated SQL Server docker image
(#20352)
* DataFrame processing: Require table rows to be array
(#20357)
* grafana/ui: Add Icon component (#20353)
* Telegram: Check error before adding defer close of image
(#20331)
* ValueFormats: fix description for dateTimeAsUS (#20355)
* Fix alert names in dev dashboard (#20306)
* Docs: Getting started edits (#19915)
* Bus: Remove unused wildcard handlers and clean up tests
(#20327)
* Explore: updates breakpoint used to collapse datasource
picker
* Elastic: Fix Elastic template variables interpolation when
redirecting to Explore (#20314)
* transform_plugin: pass encoded dataframes through (#20333)
* Links: Updated links to grafana.com (#20320)
* Avatar: Don't log failure to add existing item to cache
(#19947)
* Devenv: Enable tracing for loki docker block (#20309)
* Build: adds make target run-frontend (#20227)
* Devenv: fix kibana in elastic7 docker block (#20308)
* Build: Fix Docker builds (#20312)
* Devenv: Add nginx_proxy_mac/nginx_login_only.conf (#20310)
* Build: Build Ubuntu based Docker images also for ARM
(#20267)
* Devenv: fix connection in elastic 5 and 6 blocks (#20304)
* Prometheus: Adds hint support to dashboard and fixes
prometheus link in query editor (#20275)
* Explore: Fix always disabled QueryField for InfluxDB
(#20299)
* Docker blocks: Add loki blocks for loki releases (#20172)
* Explore: Fix interpolation of error message (#20301)
* PanelLinks: fixed issue with old panel links and grafana
behind a subpath (#20298)
* ColorPicker: Fixes issue with ColorPicker disappearing
too quickly (#20289)
* Configuration: Update root_url to reflect the default
value (#20278)
* Templating: Made default template variable query editor
field a text area with dynamic automatic height (#20288)
* Transformations: filter results by refId (#20261)
* PanelData: Support showing data and errors in angular
panels (#20286)
* Fix: URL Encode Groupd IDs for external team sync (#20280)
* Build: Collect frontend build time metric (#20254)
* Datasource: fixes prometheus metrics query query field
definition (#20273)
* Update version (#20271)
* Admin: Adds setting to disable creating initial admin user
(#19505)
* Tests: We should not click on default button when there is
only one ds (#20266)
* AuthProxy: additions to ttl config change (#20249)
* Graphite: add metrictank meta in response (#20138)
* Docker: Add dependencies to support oracle plugin in
alpine (#20214)
* ReactMigration: Migrate Prometheus config page to React
(#20248)
* Templating: highlight first item when searching a variable
dropdown (#20264)
* e2eTests: Adds cleanup of created datasource and dashboard
(#20244)
* Gauge Panel: fix the default value of thresholds cannot be
modified (#20190)
* AuthProxy: Can now login with auth proxy and get a login
token (#20175)
* DataFrame: move labels to field (#19926)
* Add Dockerfiles for Ubuntu (#20196)
* Graph: Fixed no graph in panel edit mode (#20247)
* Explore: Configure explore series colours via field config
(#20239)
* LDAP: Fixing sync issues (#19446)
* Docs: Added alias for old reporting page location (#20238)
* ReactPanels: Adds Explore menu item (#20236)
* Elasticsearch: Support rendering in logs panel (#20229)
* Alerting: Add alert_state to the kafka message Fixes
#11401 (#20099)
* Graph: introduce Tooltip to React graph (#20046)
* @grafana/runtime: Expose datasourceRequest in backendSrv
* Auth Proxy: replace ini setting ldap_sync_ttl with
sync_ttl (#20191)
* DevEnv: updates prometheus random data golang image to
1.13.0
* Provisioning: fix for cannot save provisioned dashboard
(#20218)
* DisplayProcessor: improve time field support (#20223)
* Docs: Adding how to use plugin version, through docker env
variable (#19924)
* Docs: Add docs abooout time range URL query params
(#20215)
* MixedQuery: refactor so other components could also batch
queries (#20219)
* SharedQuery: don't explode when missing logo (#20187)
* LDAP: Interpolate env variable expressions in ldap.toml
file (#20173)
* Chore: Update latest.json (#20216)
* build: Ignore Azure test snapshot for msi build (long file
name) (#20217)
* Explore: fixes toolbars datasource selector and date
picker responsiveness (#19718)
* Logs Panel: Generate valid logQL for multi-select template
variable (#20200)
* Fix when only icon is present (#20208)
* TablePanel: Prevents crash when data contains mixed data
formats (#20202)
* OAuth: Make the login button display name of custom OAuth
provider (#20209)
* Explore: Add custom DataLinks on datasource level for Loki
(#20060)
* QueryField: Prevent query runs on blur in Explore (#20180)
* Azure Monitor: Datasource Config Type (#20183)
* PluginLoader: export classes on @grafana/ui (#20188)
* Changelog: 6.4.4 release (#20201)
* CLI: Reduce memory usage for plugin installation (#19639)
* DataLinks: fix syntax highlighting not being applied on
first render (#20199)
* SafeDynamicImport: Updates so that it does not act as an
ErrorBoundary (#20170)
* grafana/data: Make display processor work with time fields
(#20174)
* update triggers to use new deployment_tools location
(#20194)
* mysql: fix encoding in connection string (#20192)
* pkg/util: Replace custom pbkdf2 implementation by
maintained version (#19941)
* Datasource/Elasticsearch: Fix logs which were displayed
with incorrect timestamp in Explore logs tab (#20009)
* Error Handling: support errors and data in a response
(#20169)
* OAuth: Generic OAuth role mapping support (#17149)
* sdk: update to latest (#20182)
* Docs: Add introduction to time series (#20068)
* Docs: Simplify headings and make active (#20163)
* Docs: Add 'the' to license reference in README (#20167)
* LDAP: All LDAP servers should be tried even if one of them
returns a connection error (#20077)
* Dashboards: add panel inspector (#20052)
* Docker: Reduce layers in build container and modified
initialization of PATH env in final container (#20132)
* Docs: Display panels alphabetically (#20130)
* Docs: Updates getting_started.md for spelling mistake
'configuered' to 'configured' (#20027)
* fix: modifying AWS Kafka dimension names to correct ones
(#19986)
* Templating: Makes so __searchFilter can be used as part of
regular expression (#20103)
* Dashboard Editor: use chevron icon rather than >
(#19588)
* Docs: update datasources that support alerting (#20066)
* Units: Add milli/microSievert, milli/microSievert/h and
pixels (#20144)
* Toolkit: copy full directory structure for img,libs,static
(#20145)
* Heatmap: Insert div to fix layout (#20056)
* Build: adds the pkg/errors dependency that was missing
from go.mod (#20143)
* Explore: Memory leak fix due to dedup selector (#20107)
* DataLinks: Fix access to labels when using Prometheus
instant queries (#20113)
* PluginLoader: fix imports for react-redux (#19780)
* LDAP Debug: No longer shows incorrectly matching groups
based on role (#20018)
* Licensing service (#19903)
* Explore: Add titles to query row action buttons (#20128)
* Graph: Added series override option to have hidden series
be persisted (#20124)
* grafana/ui: Drawer component (#20078)
* Depedency: Bump crewjam/saml to the latest master (#20126)
* grafana/ui: fix button icon styles (#20084)
* Explore: UI change for log row details (#20034)
* api/dashboard: fix panic on UI save (#20137)
* grafana/toolkit: Fixup save artifacts in a zip id in the
folder (#20071) (#20139)
* Docs: Fix InfluxDB Typos (#20004)
* Docs: Data Sources subsection naming (#20127)
* Docs: Update basic_concepts.md (#20102)
* GEL: include the expression count in the request (#20114)
* GEL: wrap arrow utils in async load (#20134)
* grafana/toolkit: save artifacts in a zip id in the folder
(#20123)
* remove editor keys and null coalescing (#20115)
* Emails: Update notification templates (#19662)
* Docs: Ordering and formatting of datasources in docs
(#19485)
* Docs: Improve remote image renderer documentation (#20031)
* Add devenv block for apache proxy working for Mac (#20119)
* Allow saving of provisioned dashboards (#19820)
* Update Azure AD instructions in generic-oauth.md (#20091)
* Docs: Fixed a broken link to LogQL in the docs (#20106)
* Explore: Fix deferred rendering of logs (#20110)
* Templating: Adds typings to Variables (#20117)
* Chore: Reorg packages (#20111)
* Chore: Moves QueryField to @grafana/ui (#19678)
* Docs: Consolidate backend guidelines (#19823)
* transform: add expressions to query editor (w/ feature
flag) (#20072)
* DataSource: don't filter hidden queries automatically
(#20088)
* Docker: makes it possible to parse timezones in the docker
image (#20081)
* Plugins: Transform plugin support (#20036)
* Add data link from panel to cloudwatch console (#20061)
* DataLinks: Fix blur issues (#19883)
* Explore: Remove datasource testing on selector (#19910)
* Grafana/ui: Refactor button and add default type = button
(#20042)
* Add some typings for react events (#20038)
* PanelQuerRunnerrremove logging (#20073)
* Enable errcheck for golangci-lint (#19976)
* DataLinks: Implement javascript callback (#19851)
* Chore: correct typo in word Fahrenheit (#20040)
* ReactMigration: Migrate Loki and Elastic config pages to
React (#19979)
* api: new v2 metrics query endpoint
* Forms: Introduce new Primary, Secondary and Destructive
buttons (#19973)
* grafana/ui: Fix modal component (#19987)
* WIP: Spawn backend plugins v2 (#19835)
* build: Fix building of Enterprise Docker images (#19992)
* Docker: Build and use musl-based binaries in alpine images
to resolve glibc incompatibility issues (#19798)
* PluginPage: replace plugin absolute url with relative
(#19956)
* Add info about static files (#19965)
* Explore: Change loading state to done after live-tailing
stops (#19955)
* pkg/util: Check errors (#19832)
* Core: Show browser not supported notification (#19904)
* grafana/toolkit: Support js plugins (#19952)
* Forms: Introduce typographic form elements (#19879)
* SingleStat: apply mappings to no data response (#19951)
* Docs: Clean up contribute docs (#19716)
* pkg/models: Check errors (#19839)
* pkg/setting: Check errors (#19838)
* pkg/tsdb: Check errors (#19837)
* Docs: Document Makefile (#19720)
* Explore: Add functionality to show/hide query row results
(#19794)
* pkg/services: Check errors (#19712)
* API: Fix logging of dynamic listening port (#19644)
* Cloudwatch: Make it clear that role switching is not
supported (#19706)
* Update Apache configuration to work with MPMs as shared
modules (#19900)
* Cloudwatch: Lowercase Redshift Dimension entry for service
class and stage (#19897)
* Units: Added mega ampere and watt-hour per kg Units
(#19922)
* Clarify use of custom.ini on deb/rpm platforms (#19939)
* Update ISSUE_TRIAGE.md (#19942)
* docs: improved setup instructions for reporting (#19935)
* grafana/ui: Enable mdx imports in stories (#19937)
* Refactor: Suggestion plugin for slate (#19825)
* grafana/ui: Enable storybook docs (#19930)
* Fix: Correct color on TagItems (#19933)
* Dependencies: Update yarn.lock (#19927)
* Chore: Updates yarn.lock (#19919)
* pkg/plugins: Only warn if plugins fail to load. Fixes
#19846 (#19859)
* Chore: Bump storybook to 5.2.4 (#19895)
* QueryEditor: move QueryEditorRows to its own component
(#19756)
* ReactMigration: Migrate DataSource HTTP Settings to React
(#19452)
* TemplateVariables: Introduces $__searchFilter to Query
Variables (#19858)
* Forms: Introduce new spacing variables to GrafanaTheme
(#19875)
* Forms: Introduce new color variables to GrafanaTheme
(#19874)
* Chore: Bump Angularjs 1.6.6 -> 1.6.9 (#19849)
* Update documentation.md
* Edited Contribute docs
* devenv: have bra watch attempt graceful shutdown (#19857)
* Release: Update latest (#19866)
* DataFrame: guess number field when on NaN (#19833)
* Loki: Remove param (#19854)
* InputDataSource: Fixed issue with config editor (#19818)
* Fix: Unsubscribe from events in dashboards (#19788)
* Explore: Add unit test to TimeSyncButton (#19836)
* build: update scripts go.(mod|sum) (#19834)
* Loki: Return empty result if no valid targets (#19830)
* DataLinks: Fix url field not releasing focus (#19804)
* Alerting: All notification channels should always send
(#19807)
* @grafana/toolkit: Check if git user.name config is set
(#19821)
* pkg/middleware: Check errors (#19749)
* Fix: clicking outside of some query editors required 2
clicks (#19822)
* pkg/cmd: Check errors (#19700)
* grafana/toolkit: Add font file loader (#19781)
* Select: Allow custom value for selects (#19775)
* Docs: Add database architecture docs (#19800)
* Call next in azure editor (#19799)
* grafana/toolkit: Use http rather than ssh for git checkout
(#19754)
* DataLinks: Fix context menu not showing in singlestat-ish
visualisations (#19809)
* Elasticsearch: Adds support for region annotations
(#17602)
* Docs: Add additional capitalization rules (#19805)
* Docs: Add additional word usage rule (#19812)
* Update aws-sdk-go (#19138)
* Dashboard: Allows the d-solo route to be used without slug
(#19640)
* pkg/bus: Check errors (#19748)
* Panels: Fixes default tab for visualizations without
Queries Tab (#19803)
* Chore: Refactor grafana-server (#19796)
* Add missing info about stylesFactory
* Types: Adds type safety to appEvents (#19418)
* Docs: Split up Sharing topic (#19680)
* Update README.md (#19457)
* Docs: Link to architecture docs from Developer guide
(#19778)
* toolkit linter line number off by one (#19782)
* pkg/plugins: Check errors (#19715)
* Explore: updates live button to responsive button
* Explore: fixes live button margin
* Explore: fixes a responsive fold of live tailing button
* updated live tailing text
* updated live tail button - responsive fold
* updated toolbar - added media query for tail buttons
* Docs: Add docs on services (#19741)
* fix: export Bus on search service (#19773)
* Chore: Refactor GoConvey into stdlib for search service
(#19765)
* Quick typo fix (#19759)
* Docs: Fixes go get command in developer guide (#19766)
* Datasource: Add custom headers on alerting queries
(#19508)
* Docs: Add API style/casing rule (#19627)
* Explore: updates clear all button to responsive button
(#19719)
* pkg/infra: Check errors (#19705)
* Docs: Update Prometheus Custom Query Parameters docs.
(#19524)
* Docs: Fix playlist layout issues (#19739)
* Docs: Update instructions and flows in Playlist.md
(#19590)
* pkg/components: Check errors (#19703)
* UX: Fix empty space in select (#19713)
* pkg/login: Check errors (#19714)
* enforce GO111MODULE=on when running make run (#19724)
* Docs: Add Troubleshooting section to Developer guide
(#19721)
* Update README.md (#19551)
* Singlestat: Fixed issue with mapping null to text (#19689)
* Don't truncate IPv6 addresses (#19573)
* Tests: Fix runRequest test (#19711)
* Docs: Update pkg\README.md (#19615)
* Feature: Adds connectWithCleanup HOC (#19629)
* Docs: Add 'repository' case, and 'open source' to style
guide
* React group by segment poc (#19436)
* Graph: make ContextMenu potitioning aware of the viewport
width (#19699)
* pkg/api: Check errors (#19657)
* Explore: Synchronise time ranges in split mode (#19274)
* build: use vendored packages for circle backend tests
(#19708)
* Docs: Add correct casing for API and ID to style guide
(#19625)
* API: added dashboardId and slug in response after import
(#19692)
* Docs: Simplify README (#19702)
* Docs: Move dev guide from README (#19707)
* Explore: Expand template variables when redirecting from
dashboard panel (#19582)
* Alerting: Fix dates stored in local time when pausing
alerts (#19525)
* Explore/UI: Removes unnecessary grafana-info-box wrapper
around InfluxCheatSheet (#19701)
* Docs: Updating to 6.4.0 (#19698)
* Chore: Fixes lines that exceeded 150 chars (#19694)
* Chore: Updates latest.json for 6.4.2 (#19697)
* Chore: Updates Changelog for 6.4.2 (#19696)
* Docs: Update folder.md (#19674)
* build: use vendor folder for building (#19677)
* Table: Proper handling of json data with dataframes
(#19596)
* SharedQuery: Fixed issue when using rows (#19610)
* SingleStat: Fixes $__name postfix/prefix usage (#19687)
* Chore: Upgrade Docker images to Go 1.13.1 (#19576)
* Grafana Image Renderer: Fixes plugin page (#19664)
* Units: consistent Meter spelling and abbreviations
(#19648)
* CloudWatch: Changes incorrect dimension wmlid to wlmid
(#19679)
* Loki: Fix lookup for label key token (#19579)
* Documentation: Fix time range controls formatting (#19589)
* Docs: Add additional style rules (#19634)
* De-duplicate `lint-go` step (#19675)
* Docs: Update keyboard shortcuts formatting (#19637)
* AzureMonitor: Alerting for Azure Application Insights
(#19381)
* ci-build: Improve build-deploy script (#19653)
* Rename live option in queries (#19658)
* Docs: Update README.md (#19456)
* Docs: Update typos, make docs more consistent. (#19633)
* Docs: Fix operating system names (#19638)
* Docs: Move issue triage docs to contribute (#19652)
* DataFormats: When transforming TableModel -> DataFrame ->
Table preserve the type attribute (#19621)
* Graph: Updated auto decimals logic and test dashboard
(#19618)
* Graph: Switching to series mode should re-render graph
(#19623)
* Revert 'Feature: Adds connectWithCleanup HOC (#19392)'
(#19628)
* Feature: Adds connectWithCleanup HOC (#19392)
* Panels: Progress on new singlestat / BigValue (#19374)
* Units: fixed wrong id for Terabits/sec (#19611)
* Docs: General improvements to docs, and a fix in oauth
(#19587)
* Docs: Replace ampersands with and (#19609)
* Profile: Fix issue with user profile not showing more than
sessions some times (#19578)
* Azure Monitor : Query more than 10 dimensions ( Fixes
#17230 ) (#18693)
* Login: Show SAML login button if SAML is enabled (#19591)
* UI: Adds Modal component (#19369)
* Prometheus: Fixes so results in Panel always are sorted by
query order (#19597)
* Docs: Improve guides for contributing (#19575)
* Migration: Migrates Admin settings from angular to react
(#19594)
* Chore: Converts HelpModal from angular to react (#19474)
* Fix typo (#19571)
* Chore: Upgrade to Go 1.13 (#19502)
* Explore: Move data source loader into the select (#19465)
* Release: Fix issue with tag script on osx (#19557)
* Release: Update latest (#19559)
* Docs: Updates about Loki annotations (#19537)
* Theme: follow-up fix for snapshot
* UI: Centers the filter tags in input field (#19546)
* Update README.md (#19515)
* Docs: Updated changelog (#19558)
* Theme: fix theme issue
* Provisioning: Handle empty nested keys on YAML
provisioning datasources (#19547)
* Docs: updates to what's new in 6.4 (#19539)
* Loki: remove live option for logs panel (#19533)
* Chore: Updates to 6.4.0 stable (#19528)
* CloudWatch: Add ap-east-1 to hard-coded region lists
(#19523)
* ChangeLog: Release 6.4.0 Stable (#19526)
* Docs: Add notice about plugins that need updating (#19519)
* Panels: Skip re-rendering panel/visualisation in loading
state (#19518)
* Docs: LDAP Debug View documentation (#19513)
* Docs: reports feature (#19472)
* SeriesOverrides: Fixed issue with color picker
* Build: Fix building when $LDFLAGS is set (#19509)
* API: Add `createdAt` and `updatedAt` to api/users/lookup
(#19496)
* Fix logs panel image path
* Logs: Publish logs panel (#19504)
* Explore: Update broken link to logql docs (#19510)
* Chore: Remove console.log (#19412)
* Refactor: Split LogRow component (#19471)
* Build: Upgrade go to 1.12.10 (#19499)
* CLI: Fix version selection for plugin install (#19498)
* Upgrade grafana-plugin-model (#19438)
* grafana-ui: Moves slate types from devDependencies to
dependencies (#19470)
* Docs: Improve guide descriptions on docs start page #19109
(#19479)
* Explore: Generate log row uid (#18994)
* Editor: Brings up suggestions menu after clicking
suggestion (#19359)
* Docs: Add Live tail section in Explore (#19321)
* Docs: Add guide for developing on macOS (#19464)
* API: Add createdAt field to /api/users/:id (#19475)
* Docs: Updated heading to sentence case (#19450)
* grafana/toolkit: Remove hack to expose plugin/e2e exports
& types (#19467)
* Testdata: Rename package to circumvent convention in go
(#19409)
* Docs: Update package's manual release guide (#19469)
* Users: revert LDAP admin user page (#19463)
* Explore: Take root_url setting into account when
redirecting from dashboard to explore (#19447)
* Refactor: RefreshPicker export things as statics on class
(#19443)
* grafana/ui: Fix value time zone names to be capitalized
(#19417)
* Release: Make sure packages are released from clean git
state (#19402)
* Docs: Add styling.md with guide to Emotion at Grafana
(#19411)
* Docs: Update SECURITY.md (#19385)
* Debt: Simplifies actionCreatorFactory (#19433)
* Update PLUGIN_DEV.md (#19387)
* Release: Create cherrypick task work for enterprise repo
(#19424)
* Theme: Generate colors SASS
* DisplayFormat: use toLocaleString for infinity
* Docs: Update Loki docs with new syntax and features
(#19370)
* UI: Add orangeDark color to theme (#19407)
* grafana/toolkit: Improve contribution readme (#19400)
* Docs: Remove hard wrap (#19413)
* Tests: Adds throwUnhandledRejections to jest setup
(#19398)
* DataLinks: suggestions menu improvements (#19396)
* Dev: Sets `preserveSymlinks` to `false` in top-level
tsconfig (#19395)
* Build: fixed signing script issue with circle-ci (#19397)
* Docs: Update readme with info about ongoing migration
(#19362)
* PanelData: Adds timeRange prop to PanelData (#19361)
* Docs: Update Playlist.md (#19382)
* Update documentation-style-guide.md (#19389)
* Build: Fix correct sort order of merged pr's in cherrypick
task (#19379)
* dependencies: Update yarn.lock (#19377)
* ValueFormats: check for inf (#19376)
* Update UPGRADING_DEPENDENCIES.md (#19386)
* Update ROADMAP.md (#19384)
* Update SUPPORT.md (#19383)
* Update ISSUE_TRIAGE.md (#19280)
* Update datasource_permissions.md (#19336)
* MySQL: Limit datasource error details returned from the
backend (#19373)
* MySQL, Postgres: Update raw sql when query builder updates
(#19209)
* MySQL, Postgres, MSSQL: Fix validating query with template
variables in alert (#19237)
* Explore: Do not send explicit maxDataPoints for logs.
(#19235)
* grafana/ui: Add Timezone picker (#19364)
* Heatmap: use DataFrame rather than LegacyResponseData
(#19026)
* Explore: Refactor mode selection (#19356)
* Dashboard: Fix export for sharing when panels use default
data source (#19315)
* Azure Monitor: Revert support for cross resource queries
(#19115)' (#19346)
* grafana/ui: Add electrical units mAh and kAh (#19314)
* grafana/ui: Add Indian Rupee (INR) to currencies (#19201)
* Chore: Bump typescript to version 3.6.3 (#19308)
* Explore: Refactor live tail controls (#19328)
* Docs: Documentation for return-to-dashboard feature
(#19198)
* Select: Set placeholder color (#19309)
* Keybindings: Improve esc / exit / blur logic (#19320)
* Plugins: Skips existence of module.js for renderer plugins
(#19318)
* Explore: Fix unsubscribing from Loki websocket (#19263)
* Release: update latest.json (#19312)
* Docs: Uppercase HTTP acronyms (#19317)
* Multi-LDAP: Do not fail-fast on invalid credentials
(#19261)
* DataLinks: Small UX improvements to DataLinksInput
(#19313)
* Alerting: Prevents creating alerts from unsupported
queries (#19250)
* Chore: Update Slate to 0.47.8 (#19197)
* Chore: Upgrades react-redux to version 7.1.1 (#19272)
* Docs: Update documentation-style-guide.md (#19292)
* Admin/user: fix textarea postion in 'Pending Invites' to
avoid page scrolling (#19288)
* Changelog update for 6.3.6
* Revert 'Changelog update for 6.3.6'
* Changelog update for 6.3.6
* Build: Split up task in the CI pipeline to ease running
outside circleci (#18861)
* Build: Scanning grafana master docker image with trivy in
ci (#19195)
* Dashboard: Hides alpha icon for visualization that is not
in alpha/beta stage #19300
* Update changelog task to generate toolkit changelog too
(#19262)
* QueryEditor: Clean-up interface to only have one PanelData
(#19249)
* Docs: Add style rule for Git (#19277)
* Docs: Update CONTRIBUTING.md (#19273)
* Docs: Add glossary (#19148)
* Docs: Add style guide for docs (#19190)
* Vector: remove toJSON() from interface (#19254)
* MySQL, Postgres, MSSQL: Only debug log when in development
(#19239)
* Graphite: Changed range expansion from 1m to 1s (#19246)
* AlertBox: Merged Alertbox into Alert (#19212)
* Explore: live tail UI fixes and improvements (#19187)
* Docs: Update theming docs (#19248)
* grafana/toolkit: Fix toolkit not building @grafana/toolkit
(#19253)
* CloudWatch: ContainerInsights metrics support (#18971)
* Alerting: Truncate PagerDuty summary when greater than
1024 characters (#18730)
* grafana/toolkit: Add plugin scaffolding (#19207)
* Snapshots: store DataFrameDTO instead of MutableDataFrame
in snapshot data (#19247)
* Revert 'Graphite: Changed range expansion from 1m to 1s,
#11472'
* Graphite: Changed range expansion from 1m to 1s, #11472
* Fix docs issues (#19240)
* Docs: Minor edits to the README and several md files
(#19238)
* LDAP: Show non-matched groups returned from LDAP (#19208)
* plugins: expose whole rxjs to plugins (#19226)
* SQL: Rewrite statistics query (#19178)
* CI: Update frontend ci metrics for strict null checks
* grafana/ui: Add disabled prop on LinkButton (#19192)
* Cloudwatch: Fix autocomplete for Gamelift dimensions
(#19145) (#19146)
* Backend: Remove redundant condition of `ROLE_VIEWER`
(#19211)
* FieldDisplay: Update title variable syntax (#19217)
* Docs: Note when using For and No Data in alert rule
(#19185)
* Docker: Upgrade packages to resolve reported
vulnerabilities (#19188)
* MSSQL: Revert usage of new connectionstring format
(#19203)
* Prometheus: datasource config with custom parameters
string (#19121)
* Contributing: Add guidelines for contributing docs
(#19108)
* LDAP debug page: deduplicate errors (#19168)
* Menu: fix menu button in the mobile view (#19191)
* Dashboard: Fixes back button styles in kiosk mode (#19165)
* API: adds redirect helper to simplify http redirects
(#19180)
* docs: image rendering (#19183)
* Chore: Update latest.json (#19177)
* Chore: Update version to next (#19169)
* Docs: What's new in 6.4 update (#19175)
* Devenv: create slow_proxy_mac (#19174)
* Chore: Changelog for v6.4.0-beta1 (#19171)
* Revert 'Chore: Update Slate to 0.47.8 (#18412)' (#19167)
* Chore: Update Slate to 0.47.8 (#18412)
* Changelog: Breaking changes and deprecation notes for v6.4
(#19164)
* Docs: What's new 6.4 draft (#19144)
* Docs: Add docs around feature toggles config (#19162)
* Azure Monitor: Add support for cross resource queries
(#19115)
* Api: Readonly datasources should not be created via the
API (#19006)
* Explore: Update live tail buttons (#19143)
* LDAP: only show tab if LDAP is enabled (#19156)
* TimePicker: Fixes onBlur issue with FireFox on MacOS
(#19154)
* Feature: Encapsulated dynamic imports with error boundary
and suspense (#19128)
* Metrics: Adds setting for turning off total stats metrics
(#19142)
* Add directions for more details provided when not anymore
on issue triage (#19116)
* grafana/data: Reorganise code (#19136)
* Login: fix Footer to be visible (#19147)
* Chore: fix prettier error after github suggestions commit
(#19150)
* Alerts: show a warning/error if transformations are
configured (#19027)
* Explore: No logs should show an empty graph (#19132)
* Ldap: Add LDAP debug page (#18759)
* Elasticsearch: allow templating queries to order by
doc_count (#18870)
* Chore: cross-package security bumps (#19131)
* Close the connection only if we establish it. (#18897)
* Fix: Fixes crash using back button with zoomed graph
(#19122)
* Routing: Update routing to require sign in on every route
(#19118)
* Graph: constant series as override (#19102)
* Login: fix login page failing when navigating from reset
password views (#19124)
* DataFrame: Fixes to dealing with empty results (#19119)
* Explore: calculate intervals when building data source
request (#19107)
* Graph: Adds onHorizontalRegionSelected (#19083)
* Loki: Updated cheat sheet with new filter syntax (#18947)
* grafana/toolkit: Find module files correctly and add basic
error tracing (#19089)
* Templating: Clicking Selected should deselect all if 1 or
more are already selected (#19104)
* NotificationChannels: Add delete button to edit page
(#19103)
* Dashboard: Fix arrow positioning in button while in panel
edit mode (#19084)
* Update _index.md (#19045)
* CLI: Fix installing plugins on windows (#19061)
* LDAP: Allow an user to be synchronised against LDAP
(#18976)
* Docs: Adds a requirements page (#18917)
* DataLinks: enable access to labels & field names (#18918)
* Singlestat: fix format messes up on negative values if
select duratio… (#19044)
* Explore: Move throttling before processing (#19095)
* Prometheus: Fix response states (#19092)
* Explore: Fix how log bars in graph are stacking (#19015)
* Explore: Add throttling when doing live queries (#19085)
* Stackdriver: Add extra alignment period options (#18909)
* QueryProcessing: Added missing error event for angular
editors (#19059)
* Explore: Fixes issue with lastResult being null (#19081)
* GraphPanel: don't listen to legacy onDataReceived events
(#19054)
* QueryProcessing: Fixes showing last result in initial
loading state (#19057)
* toolkit: fix master build, avoid null check (#19055)
* Auth: Allow inviting existing users when login form is
disabled (#19048)
* MSSQL: Fix memory leak when debug enabled (#19049)
* Update CONTRIBUTING.md (#19051)
* Update README.md (#19047)
* toolkit: pipe execa output to console.stdout (#19052)
* QueryProcessing: Observable query interface and RxJS for
query & stream processing (#18899)
* Fix exit live mode icon: change back to Stop. (#19043)
* Loki: Fix vertical alignment issue in label selector
(#18943)
* Fix: Align buttons and label in ToggleButtonGroup (#19036)
* toolkit: run make for backend plugins (#19029)
* Explore: Fix auto completion on label values for Loki
(#18988)
* TimeSeries: Replace fieldName with fieldIndex (#19030)
* DataLinksInput - change the way enter key is handled
(#18985)
* TimeSeries: Add data frame index and field name (#19005)
* Packages: update versioning and release process (#18195)
* API: Add `updatedAt` to api/users/:id (#19004)
* PageContent: fix logic in Page.Contents (#19002)
* Calcs: Fixed calc reducer (#18998)
* AlphaNotice: replaced big popover tooltip with native
tooltip (#18997)
* grafana/ui: Add Time of day picker (#18894)
* QueryOptions: update maxDataPoints text and show any value
that is configured (#18761)
* Piechart: fix unit selector when scrolling is required
(#18932)
* Refactor: Move sql_engine to sub package of tsdb (#18991)
* Refactor: move ScopedVars to grafana/data (#18992)
* Units: Adding T,P,E,Z,and Y bytes (#18706)
* Image rendering: Add deprecation warning when PhantomJS is
used for rendering images (#18933)
* Singlestat: render lines on the panel when sparklines are
enabled (#18984)
* Explore: Unify background color for fresh logs (#18973)
* Annotations: Add annotations support to Loki (#18949)
* TimeSeries: datasources with labels should export tags
(not labels) (#18977)
* Explore: UX/UI improvements for pausing and resuming of
live tailing (#18931)
* Annotations: Fix query editor rendering on datasource
change (#18945)
* Bump lodash-es from 4.17.11 to 4.17.15 (#18963)
* Bump fstream from 1.0.11 to 1.0.12 (#18962)
* Bump mixin-deep from 1.3.1 to 1.3.2 (#18960)
* Bump lodash.template from 4.4.0 to 4.5.0 (#18961)
* Alerting: fix response popover prompt when add
notification channels (#18967)
* Build: Fix potential case-insensitive import collision for
github.com/Unknwon/com (#18915)
* MixedDataSource: refactor, cleanup, and add tests (#18948)
* Bump lodash.mergewith from 4.6.1 to 4.6.2 (#18959)
* Units: Add electrical charge - ampere-hour unit
* Transformers: configure result transformations after
query(alpha) (#18740)
* grafana/toolkit: Add default mock for stylesheet imports
for Jest (#18955)
* grafana/toolkit: Improve readme (#18747)
* Docs: Add PR review practices link (#18937)
* Build: Allow extending of LDFLAGS in build.go (#18954)
* Build: Support SOURCE_DATE_EPOCH for reproducible builds
(#18953)
* LDAP: Fetch teams in debug view (#18951)
* Dashboard: Fixes dashboard overwriting behavior (#18944)
* Grafana: Create new playlist/dashboard/channel card is not
visible when there are no items in the list (#18890)
* Storybook: fix type error (#18934)
* Sass: changed color in gradient in template files to lower
case (#18921)
* Notification is sent when state changes from no_data to ok
(#18920)
* SASS: Add pointer events none to .disabled class (#18919)
* Explore: Adds ability to save a panel's query from Explore
(#17982)
* Loki: support loki with streaming in dashboards (#18709)
* UserProfile: convert user organizations section to react
(#18707)
* Annotations: Check that timeEnd if defined before
comparing to avoid false truthiness (#18903)
* Sass: Align generated file with tmpl (#18896)
* LDAP: Add API endpoint to query the LDAP server(s) status
(#18868)
* Add South African Rand (ZAR) to currencies (#18893)
* Annotations: check if the name exists before creating a
new annotation (#18880)
* ErrorHandling: Error boundary for every container (#18845)
* Precommit: Fixed precommit task issue (#18883)
* Docs: Quick typo fix in readme (#18874)
* CI: no longer using grafana-master... package. (#18884)
* Styles: fixed gradient in logo so it doesn't go outside
the logo and get a defined start and end color, changed
brand gradient to be the same as in logo, created new
variable for vertical gradient (#18882)
* Webpack: Fix accidental double typechecking (#18881)
* Explore: elastic small fixes (#18879)
* Explore: Add typings for queryTransaction.request (#18847)
* LDAP: Add API endpoint to debug user mapping from LDAP
(#18833)
* PanelQueryState: restore comment
* grafana/toolkit: fix common webpack config (#18862)
* Explore: Use DataFrame to derive graph/table/logs (#18859)
* Updated is time series test
* Fixed unit test
* alerting: add lock on job to prevent a race condition
(#18218)
* Reworked ResultProcessor tests
* Explore: everything seems to be working again
* WIP: Use data frames in explore
* Explore: Allow pausing and resuming of live tailing
(#18836)
* CI: stop deployment to s3 (#18831)
* Performance/Webpack: Introduces more aggressive
code-splitting and other perf improvements (#18544)
* Explore: Introduces PanelData to ExploreItemState (#18804)
* Core: Adding DashboardPicker component (#18811)
* Git: Precomit hook slimmed down
* DataSourceSettings: Fixed issue changing data source name,
fixes #18660 (#18826)
* Prometheus: Fixed Prometheus query editor error (plus new
ErrorBoundaryAlert component) (#18838)
* Explore: Style panel containers (#18834)
* Snapshot: Fix http api (#18830)
* Open new window when exploring panel metrics (#18802)
* Release: update latest.json
* Docs: Update changelog with v6.3.5 issues (#18827)
* Build: Update ua-parser/uap-go (#18788)
* Build: Use the latest build container which has go 1.12.9
(#18807)
* DataFrame: split DataFrameHelper into MutableDataFrame
and FieldCache (#18795)
* MixedDatasource: don't filter hidden queries before
sending to datasources (#18814)
* Enterprise: add dependencies for upcoming features
(#18793)
* Editor: Fixes issue where only entire lines were being
copied (#18806)
* Explore: Fixed query status issue (#18791)
* DashboardMigrator: Fixed issue migrating incomplete panel
link models (#18786)
* Explore: Fixes query hint issues (#18803)
* Build: Optional skipping of typescript checking in dev
bundler (#18772)
* Docs: Improve API tutorial intro content and readability
(#18762)
* Panels: Destroy panel model when recreating repeated
panels (#18799)
* Singlestat: Various fixes to singlestat and DataFrame
(#18783)
* Explore: Fixed issue in PanelQuery state arround
cancellation (#18771)
* Going to Explore from a panel with mixed data sources now
works (#18784)
* Changelog update (#18780)
* Explore: Add memoization and remove unused props (#18775)
* Prometheus: Changes brace-insertion behavior to be less
annoying (#18698)
* Datasource: Support min time interval input in ms (#18719)
* Explore: Use PanelQueryState to handle querying (#18694)
* Chore: Improve err message for notifications (#18757)
* @grafana/toolkit: add package versions to the ci report
(#18751)
* @grafana/data: Matchers and Transforms (#16756)
* Docs: Document LDAP config reload in admin http api
(#18739)
* center NoDataSourceCallToActionCard in Explore (#18752)
* DataLinks: enable data links in Gauge, BarGauge and
SingleStat2 panel (#18605)
* DashboardDatasource: reuse query results within a
dashboard (#16660)
* Plugins: show a clear error on the plugin page when it
failed to load (#18733)
* Chore: Use ruleId instead of alertId as log keyword
(#18738)
* @grafana/data: improve the CircularVector api (#18716)
* QueryEditor: check if optional func toggleEditorMode is
provided (#18705)
* Emails: remove the yarn.lock (#18724)
* OAuth: Support JMES path lookup when retrieving user email
(#14683)
* Emails: resurrect template notification (#18686)
* Email: add reply-to and direct attachment (#18715)
* Dashboard: Adds Logs Panel (alpha) as visualization option
for Dashboards (#18641)
* Heatmap: Add Cividis and Turbo color schemes (#18710)
* Units: add counts/sec (cps) and counts/min (cpm) in
Throughput (#18702)
* Dev Docker: Use golang:1.12.9-alpine to prevent glibc
mismatch. (#18701)
* Docs: Fix broken link for the Grafana on RHEL or Ubuntu
tutorial (#18697)
* Fixes several usability issues with QueryField component
(#18681)
* convert teams section of user profile to react (#18633)
* Singlestat/Gauge/BarGauge: Improvements to decimals logic
and added test dashboard (#18676)
* Emails: Change text (#18683)
* Streaming: improve JSDocs for DataSourceAPI streaming
support (#18672)
* TimeSrv: Enable value time windowing in TimeSrv (#18636)
* Explore: Fixes so Show context shows results again
(#18675)
* Graph: Updated y-axis ticks test dashboard (#18677)
* Add typings to package.json in packages (#18640)
* Plugins: better warning when plugins fail to load (#18671)
* SingleStat2: save options to defaults not override
(#18666)
* Packages: Fix path import from grafana/data (#18667)
* SingleStat: use DataFrame results rather than
TimeSeries/TableData (#18580)
* TestData: attach labels to series results (#18653)
* Singlestat: Disable new singlestat gauge usage (#18610)
* Explore: Fixes query field layout in splitted view for
Safari browsers (#18654)
* MSI: new long file names are causing error building MSI
(#18646)
* Auth: change the error HTTP status codes (#18584)
* Refactor: EmptyListCTA (#18516)
* Build: Upgrade to go 1.12.9 (#18638)
* Chore: Revert React 16.9.0 bump (#18634)
* Azure Monitor and Log Analytics converted and separated
into components (#18259)
* Rewrite user profile edit to react (#17917)
* Docs: remove codecov badge (#18623)
* Prometheus: Prevents panel editor crash when switching to
Prometheus datasource (#18616)
* Chore: Rename Popper to Popover (#18543)
* SingleStat: add a gauge migration call to action button in
the editor (#18604)
* Build: update revive dependency (#18585)
* LDAP: multildap + ldap integration (#18588)
* Docker: switch docker image to alpine base with phantomjs
support (#18468)
* Backend: Adds support for HTTP/2 (#18358)
* Explore: Fixes error when switching from prometheus to
loki data sources (#18599)
* TimePicker: Set time to to 23:59:59 when setting To time
using calendar (#18595)
* Prometheus: Return labels in query results (#18535)
* Docs: Update changelog and docs for annotation region
change (#18593)
* Refactor: move KeyValue and deprecation warning to
@grafana/data (#18582)
* Annotations: use a single row to represent a region
(#17673)
* Docs: Update upgrading guide (#18547)
* Docs: Adds tests requirement to bugs checklist (#18576)
* DataFrame: convert from row based to a columnar value
format (#18391)
* Packages: Temporarily skip canary releases if packages
build fail (#18577)
* Update latest.json to latest stable version (#18575)
* Docs: Update changelog for v6.3.3 (#18569)
* Graph: Fixed issue clicking on series line icon (#18563)
* grafana/toolkit: Unpublish previous 'next' version when
releasing a new one (#18552)
* Toolkit: write PR report to a folder with the circle build
number (#18560)
* CI: Fail build if yarn.lock is not up to date (#18555)
* Chore: Updates react-dependant packages to address react
warnings (#18549)
* Prometheus: Fix regression of rerunning query on
legend/interval change (#18147)
* Explore/Prometheus: More consistently allows for
multi-line queries (#18362)
* Login: Fixes undefined redirect (#18545)
* Plugins: expose react-redux, redux (#18501)
* TimeSeries: assume values are all numbers (#18540)
* Login: Angular to React (#18116)
* InfoTooltip: Info icon with tooltip (#18478)
* Annotations: Fix failing annotation query when time series
query is cancelled (#18532)
* remotecache: support SSL with redis (#18511)
* QueryData: Handle that response data must be array
(#18504)
* React: Rename deprecated UNSAFE_componentWillReceiveProps
(#18526)
* Explore: Replaces TimeSeries with GraphSeriesXY (#18475)
* API: Restrict anonymous user information access (#18422)
* Fix: failing build after React bump (#18514)
* strictNullChecks: First batch (#18390)
* Chore: bump React to 16.9.0 (#18502)
* Docs: Adds a new security section (#18508)
* Docs: Update issue triage doc with external PRs section
(#18464)
* Typo: fix typo in processDataFrame.ts comment (#18492)
* Explore: Fix loading error for empty queries (#18488)
* Fix: Fixes stripping of $d in Explore urls (#18480)
* grafana/ui: fix toTimeTicks error (#18448)
* Docs: Adds details to Pull Request Checklist (#18471)
* DataLinks: respect timezone when displaying datapoint's
timestamp in graph context menu (#18461)
* Chore: strictNullChecks, ColoringEditor and
time_region_manager (#18442)
* Backend: Do not set SameSite cookie attribute if
cookie_samesite is none (#18462)
* DataLinks: Apply scoped variables correctly (#18454)
* DataLinks: Use datapoint timestamp correctly when
interpolating variables (#18459)
* API: Minor fix for team creation endpoint when using API
key (#18252)
* Login: Adjust space between skip and its icon (#18407)
* Docs: Update Auth Proxy documentation (#18444)
* Docs: Minor Readme update (#18438)
* OAuth: return GitLab groups as a part of user info (enable
team sync) (#18388)
* Fix: Avoid glob of single-value array variables (#18420)
* DataLinks: Enable multiple data links per panel (#18434)
* Markdown: Handle undefined/null strings (#18433)
* Docs: Update changelog and latest with 6.3.1 and 6.3.2
releases (#18437)
* Explore: Fixes Legend overflow in splitted view (#18396)
* Docs: changelog for docker 6.3 (#18429)
* Panels: Fixed crashing dashboards with panel links
(#18430)
* DataFrame: remove dateFormat (#18424)
* backend: null.Float NaN -> null for json marshal (#18284)
* Frontend: adds folder name in home dash choose menu
(#18346)
* TestData: Query variable support (nested + glob queries)
(#18413)
* Update latest.json (#18417)
* Changelog 6.3.0 (#18414)
* PanelLinks: Fix render issue when there is no panel
description (#18408)
* e2e tests: Make pageObjects mandatory (#18406)
* Documentation: document the 'Mixed' Data Source (#18398)
* Explore: Moves GraphSeriesXY and DisplayValue to
grafana/data (#18400)
* Explore: Fixes incorrect handling of utc in timeEpic
(#18386)
* Postgres: Add support for scram sha 256 authentication
(#18397)
* Update behind_proxy.md with linkback to nginx.com (#18150)
* Do not set SameSite for OAuth cookie if cookie_samesite is
None (#18392)
* Gauge/BarGauge: Rewrite of how migrations are applied
(#18375)
* MSSQL: Change connectionstring to URL format to fix using
passwords with semicolon (#18384)
* CloudWatch: Fix alerting for queries with Id (using
GetMetricData) (#17899)
* Chore: Update strictNullChecks error limit (#18387)
* Chore: Fixes some strict errors (#18381)
* Graph: Improved graph tick decimals logic arround
significant digits (#18370)
* CI: Added metric to track strict null erros (#18379)
* Auth: Do not search for the user twice (#18366)
* grafana/toolkit: improve CI task (#18189)
* Alerting: Also include configured AlertRuleTags in
Webhooks (#18233)
* Loki: Apply start parameter to speed up test query
(#18266)
* Docs: Changelog 6.3.0 beta4 (#18359)
* Select: Fixes issue where ToggleButtonGroup overlapped
DataSourcePicker in Firefox (#18361)
* SignIn: Update redirect on reroute (#18360)
* Gauge/BarGauge: Support decimals for min/max
toFloatOrUndefined (#18368)
* FieldDisplay: Return field defaults when there are no data
(#18357)
* Auth: introduce more tests for middleware module (#18365)
* Docs: updated latest.json (#18363)
* LDAP: nitpicks (#18309)
* Docs: mention unsupported versions of PostgreSQL (#18307)
* Navigation: Fixed double settings menus (#18349)
* Build: allow bash to expand the wildcard (#18354)
* Gauges: Fixes error when mappings array was undefined
(#18353)
* Frontend: Fixes progress tracker close button to use
`$link-hover-color` (#18352)
* Frontend: Fixes hard-coded font-weight properties to use
variables (#18350)
* LDAP: Align ldap example with the devenv testdata (#18343)
* Auth: consistently return same basic auth errors (#18310)
* cli: fix for recognizing when in dev mode. (#18334)
* QueryEditors: Fixes flakey text edit mode toggle (#18335)
* Refactor: use data rather than series in stream
callback(#18126)
* Keybindings: Disable on login url (#18331)
* Fix failing end to end tests job for release (#18323)
* Fix OAuth error due to SameSite cookie policy (#18332)
* Chore: noImplictAny no errors left (#18303)
* [Shortcuts] Fixes shortcuts for moving time range
backwards and forwards (#18305)
* TablePanel: Remove scroll option on TablePanel (#18318)
* Keyboard Shortcuts: Sign in to enable them (#18271)
* GitHub Templates: Pull Request Template update (#18300)
* Auth Proxy: Include additional headers as part of the
cache key (#18298)
* grafana/toolkit: support windows paths (#18306)
* Chore: noImplicitAny Sub 500 errors (#18287)
* Plugins: return a promise for loadPluginCss (#18273)
* Utils: avoid calling console.warn() too often for
deprecation warnings (#18269)
* CLI: Allow installing custom binary plugins (#17551)
* Docs: Update link to example app (#18253)
* GettingStarted: Skip Query for getting started (#18268)
* v6.3.0-beta2 is latest testing (#18283)
* Release: Changelog update with v6.3.0-beta2 (#18281)
* Chore: Upgrades typescript to version 3.5 (#18263)
* docs: team sync (#18239)
* SAML: Only show SAML login button on Enterprise version
(#18270)
* Permissions: Show plugins in nav for non admin users but
hide plugin configuration (#18234)
* CI: Change target branch in CI task trigger-docs-update
(#18255)
* Plugins: Include build number and PR in metadata (#18260)
* Run End-to-End tests for release builds (#18211)
* DataLinks: Fixed interpolation of series name, fixes
#18250 (#18251)
* Timerange: Fixes a bug where custom time ranges didn't
respect UTC (#18248)
* Loki: Remove prefetching of default label values (#18213)
* Build: fix use of env vars in parentheses execs (#18249)
* TimePicker: Increase max height of quick range dropdown
(#18247)
* TimePicker: Fixed css issue casued by CSS Optimizer
(#18244)
* Revert 'Timerange: Fixes a bug where custom time ranges
didn't respect UTC (#18217)' (#18246)
* Timerange: Fixes a bug where custom time ranges didn't
respect UTC (#18217)
* LDAP: improve POSIX support (#18235)
* Instrumentation: Add failed notifications metric (#18089)
* Docs: update links to sample plugins (#18240)
* Build: Removed webpack from default grunt task, fixes
#18232 (#18242)
* Packages: update package.json files (#18173)
* Replaced ubuntu:latest with ubuntu:18.04; specific image
version to make grafana build images consistent (#18224)
* Build: correct verify script (#18236)
* remote_cache: Fix redis connstr parsing (#18204)
* Auth: do not expose disabled user disabled status (#18229)
* Build: Introduce shellcheck (#18081)
* Docs: Update documentation with new SAML features (#18163)
* Typo: fix threshodsWithoutKey (#18228)
* alerting: more specific error when missing threshold
(#18221)
* Graph: fix time label description for datalink suggestions
(#18214)
* Explore: Reduce default time range to last hour (#18212)
* alerting: return err when SetAlertState fails to save to
sql (#18216)
* PhantomJS: Fixes rendering on Debian Buster (#18162)
* Docs: sudo is required on the apt-key add not on wget
(#18180)
* Build: watch and dev mode webpack improvements (#18153)
* Plugin: AzureMonitor - Reapply MetricNamespace support
(#17282)
* Refactor: move end-to-end test infrastructure to
@grafana/toolkit (#18012)
* SAML: add auth provider label (#18197)
* Plugins: avoid app importDashboards() NPE (#18128)
* Plugins: fix previous commit, output 'build' property in
json
* SAML: add metrics (#18194)
* Plugins: add build info to plugin metadata (#18164)
* datasource: testdata - add predicatable csv wave scenario
(#18183)
* Docs: SAML idp_metadata_url option (#18181)
* Panel: Show error in edit mode (#18175)
* E2E: saving a dashboard should wait for success (#18171)
* @grafana/toolkit: integrate latest improvements (#18168)
* Build: change definition of the vars in makefile (#18151)
* noImplicitAny: Down approx 200 errors (#18143)
* datasource: testdata - add predictable pulse scenario
(#18142)
* Minor 6.3.0 beta1 changes (#18048)
* Docs: SAML (#18069)
* Docs: prioritize use of `make run` to `bra` (#18154)
* Fix provision alerts generation script (#18145)
* SQLStore: use bool pointer instead of string (#18111)
* Registry: add a reusable function registry (#17047)
* grafana/toolkit: test improvements and show stats (#18137,
#18138)
* Metrics: use consistent naming for exported variables
(#18134)
* Build: copy .browserslistrc to node build container
(#18141)
* @grafana/toolkit: HtmlWebpackPlugin when in watch mode
(#18130)
* update yarn.lock (#18125)
* grafana/toolkit: prettier and lint fix in dev mode
(#18131)
* Chore: Fix about 200 noImplicitAny errors (#18067)
* Build: allow dynamically change docker image (#18112)
* grafana/toolkit: update the way config is being passed to
jest cli (#18115)
* Build: detect changes to packages based on the git diff
(#18118)
* Build: Release packages under next tag when changes
detected on master (#18062)
* SQLStore: allow to look for `is_disabled` flag (#18032)
* Metrics: add LDAP active sync summary metric (#18079)
* Docs: correct issue_triage.md texts
* ValuMapping: start with some values (#18092)
* Docs: Simplify download links & instructions and make
download link clearer (#18090)
* FieldDisplay: move threshold and mapping to Field (#17043)
* InfluxDB: Enable interpolation within ad-hoc filter values
for InfluxDB data source (#18077)
* Docs: Move data links down (#18072)
* grafana/toolkit: improve CircleCI integration (#18071)
* Build: consistently reference go binary (#18059)
* devenv: Fix typo in nginix docker for mac (#18068)
* noImplicitAny: 1670 errors (#18035)
* Add missing pull requests to Changelog (#18061)
* provisioning: escape literal '$' with '$$' to avoid
interpolation (#18045)
* grafana/toolkit: improve CircleCI stubs (#17995)
* Docs: clarify the ttl units (#18039)
* Update docs readme for running MySQL/Postgres tests
* Auth: Duplicate API Key Name Handle With Useful HTTP Code
(#17905)
* Chore: upgrade node-sass to 4.12.0 (#18052)
* API: Minor fix for nil pointer when trying to log error
during creating new dashboard via the API (#18003)
* Chore: update lodash (#18055)
* Update latest.json (#18043)
* Update Changelog (#18042)
* Chore: bump master version number to 6.4.0-pre
* Explore/Loki: Display live tailed logs in correct order
(#18031)
* Fix unused variable errors (#18030)
* Docs: First draft of whats new in 6.3 (#17962)
* Packages: create shared tsconfig.json (#18010)
* CLI: Fix encrypt-datasource-passwords fails with sql error
(#18014)
* LDAP: Adds bind before searching LDAP for non-login cases.
(#18023)
* Users: show badges for each auth provider (#17869)
* Loki: Don't use _ numerical separator (#18016)
* grafana-cli: allow installing plugins from a local zip
file (#18021)
* grafana/toolkit: Copy or extract static files (#18006)
* Packages: Use lerna for release orchestration (#17985)
* AnnoList: add alpha annotations list plugin (#17187)
* grafana/toolkit: Use babel-plugin-angularjs-annotate
(#18005)
* CSV Export: Timezone based on dashboard setting (#18002)
* LDAP: Adds back support for single bind. (#17999)
* Reducers: consistent result for first/last reducer
shortcut (#17911)
* SAML: Show SAML login button even if OAuth is disabled
(#17993)
* Fix: Break redirect loop if oauth_auto_login = true and
OAuth login fails (#17974)
* Refactor: fix range util imports (#17988)
* Refactor: move dom utils to @grafana/ui (#17976)
* Docs: Documents new features available with Loki data
source in Explore (#17984)
* Prometheus: added time range filter to series labels query
(#16851)
* Explore: Adds support for new loki 'start' and 'end'
params for labels endpoint (#17512)
* Chore: Removes custom debounce utility in favor of
lodash/debounce (#17977)
* Api: Fix auth tokens returning wrong seenAt value (#17980)
* Refactor: move more files to @grafana/data (#17972)
* @grafana/data: export dateMath and rangeUtil (#17971)
* Refactor: move some files to @grafana/data (#17952)
* noImplicitAny: Azure Monitor (#17966)
* grafana/toolkit: initial CI task and various small
improvements (#17914)
* First version of prettier checks in toolkit (#17964)
* LDAP: finishing touches (#17945)
* Graphite: Refactor lexer and parser (#17958)
* noImplicitAny: Datasource files, under 2500 (#17959)
* Auth: saml enabled check. (#17960)
* Auth: SAML login button. (#17932)
* grafana/toolkit: Add support for extensions styling
(#17938)
* Datasource: Refactor Graphite to class (#17942)
* SAML: Configuration defaults, examples and dependencies
(#17954)
* OAuth: deny login for disabled users (#17957)
* Build: Adds pre-commit check that fails if node versions
are not synced (#17820)
* Docs: minor ha-setup edit (#17950)
* Docs: Added very basic docs about revoking user sessions
(#17931)
* Docs: Updates documentation regarding logs integration in
Explore (#17896)
* noImplicitAnys: Fix InfluxDB type issues #17937)
* TimePicker: align position between dashboard and explore
(#17940)
* AzureMonitor: remove duplicate query logic on the frontend
(#17198)
* UserProfilePage: Fix team avatar urls #17866 (#17930)
* Explore: Introduces storage keys for last used data source
on per-orgId basis (#17934)
* Docs: added version notice to new ldap feature docs
(#17929)
* Explore: Restricts query text edit toggle to metrics mode
(#17921)
* grafana/runtime: Expose SystemJS from @grafana/runtime
(#17927)
* Templating: Correctly display __text in multi-values
variable after refresh (#17918)
* grafana/toolkit: bundle plugins with webpack (#17850)
* Explore: Adds orgId to URL for sharing purposes (#17895)
* grafana/toolkit: copy sass files (#17888)
* ChangePassword: Rewrite change password page to react
(#17811)
* AngularPanels: Fixed loading state indication for angular
panels (#17900)
* Explore: Adds support for toggling text edit mode in
explore (#17870)
* LDAP: Divide the requests (#17885)
* Build: fixes missing shebang in release tagging script.
(#17894)
* Teams: show proper label for each auth provider (#17860)
* Logging: Login and Logout logging actions (#17760)
(#17883)
* Loki: Adds comment explaining usage of RFC3339Nano string
(#17872)
* Explore: Query rows are now reset when changing data
sources (#17865)
* Codestyle: add guidelines for removing the m alias for
models (#17890)
* Docs: How to work with themes (#17876)
* Docs: Fix developing plugins index page (#17877)
* StatsPicker: Fix multiple value input layout etc. (#17827)
* Chore: Build grafana-cli when running bra run (#17788)
* Build: use golangci-lint as a make command (#17739)
* Explore: Log highlights only update when user stops typing
(#17845)
* Loki: getHighlighterExpressionsFromQuery Returns null if
filter term is not quoted (#17852)
* Docs upgrading deps (#17657)
* Testing: Include BatchRevoke for all tokens in the fake.
(#17728)
* Refactor: rename SeriesData to DataFrame (#17854)
* devenv: switch OpenTSDB docker block (#17849)
* Devenv:LDAP: couple simplifications for LDAP (#17807)
* Login: divide login errors by pkg and service (#17835)
* Auth Proxy: Respect auto_sign_up setting (#17843)
* OAuth: return github teams as a part of user info (enable
team sync) (#17797)
* noImplicitAny: Sub 3000 errors (#17821)
* TimePicker: Style and responsive fixes, restored dashboard
settings (#17822)
* Templating: Correctly display __text in multi-values
variable (#17840)
* Elasticsearch: Fix default max concurrent shard requests
(#17770)
* Explore: Fix filter by series level in logs graph (#17798)
* Docs: Add v6.3 version notes and encryption format
information (#17825)
* Graphite: use POST for /metrics/find requests (#17814)
* Dashboard: Force update after dashboard resize (#17808)
* Toolkit: moved front end cli scripts to separate package
and introduced very early version of plugin tools
* Explore: Uses new TimePicker from Grafana/UI (#17793)
* Explore: Uses RFC3339Nano string to retrieve LogRow
contexts from Loki API (#17813)
* noImplicitAny: Lower count to about 3450 (#17799)
* Graphite: Fixes issue with seriesByTag & function with
variable param (#17795)
* noImplicitAny: Reduce errors to 3800-ish (#17781)
* Graphite: remove feature that moves alias function last
(#17791)
* Explore: Adds URL support for select mode (#17755)
* TestData: add option to increase the number of test
streams (#17789)
* Usage Stats: Update known datasource plugins (#17787)
* Docs: Adds section on Querying Logs for Elasticsearch
(#17730)
* Docs: Adds section on Querying Logs for InfluxDB (#17726)
* Devenv: makes the grafana users default for saml. (#17782)
* Explore: Displays only one Time column as configured in
TimeZone settings (#17775)
* Markdown: Replace rendering library (#17686)
* ApiKeys: Fix check for UTC timezone (#17776)
* Prometheus: Minor style fix (#17773)
* Docs: fixed notifications table
* Auth: Allow expiration of API keys (#17678)
* 17278 prometheus step align utc (#17477)
* Docs: Update release guide (#17759)
* release: update latest.json to v6.2.5 (#17767)
* release: 6.2.5 changelog (#17766)
* Fix typo s/Applicaiton/Application/ in error messages
(#17765)
* UserAdmin: UI for disabling users (#17333)
* API: get list of users with additional auth info (#17305)
* TimePicker: fixed minor issues with new timepicker
(#17756)
* Explore: Parses and updates TimeSrv in one place in
Explore (#17677)
* @grafana/ui: release (#17754)
* Password: Remove PasswordStrength (#17750)
* Devenv:SAML: devenv block with saml test app (#17733)
* LDAP:Docs: add information on LDAP sync feature and update
LDAP sync default (#17689)
* Graph: Add data links feature (click on graph) (#17267)
* Explore: Changes LogsContainer from a PureComponent to a
Component (#17741)
* Chore: Remove tether and tether drop dependency in
grafana/ui (#17745)
* noImplicitAny: time region manager etc. (#17729)
* Panel: Fully escape html in drilldown links (was only
sanitized before) (#17731)
* Alerting: Improve alert rule testing (#16286)
* Elasticsearch: Visualize logs in Explore (#17605)
* Grafana-CLI: Wrapper for `grafana-cli` within RPM/DEB
packages and config/homepath are now global flags (#17695)
* Add guidelines for SQL date comparisons (#17732)
* Docs: clarified usage of go get and go mod (#17637)
* Project: Issue triage doc improvement (#17709)
* Improvement: Grafana release process minor improvements
(#17661)
* TimePicker: New time picker dropdown & custom range UI
(#16811)
* RemoteCache: redis connection string parsing test (#17702)
* Fix link in pkg/README (#17714)
* Dashboard: Use Explore's Prometheus editor in dashboard
panel edit (#15364)
* Settings: Fix typo in defaults.ini (#17707)
* Project: Adds a security policy (#17698)
* Project: Adds support resource docs (#17699)
* Document issue triage process (#17669)
* noImplicitAny: slate (#17681)
* config: fix connstr for remote_cache (#17675)
* Explore: Improves performance of Logs element by limiting
re-rendering (#17685)
* Docs: Flag serve_from_sub_path as available in 6.3
(#17674)
* @grafana/runtime: expose config and loadPluginCss (#17655)
* noImplicitAny: Fix basic errors (#17668)
* Docs: Update readme to reference correct repo (#17666)
* LDAP: small improvements to various LDAP parts (#17662)
* Chore: Fix noImplicitAny issues (#17636)
* AddPanel: Fix issue when removing moved add panel widget
(#17659)
* TablePanel: fix annotations display (#17646)
* middleware: fix Strict-Transport-Security header (#17644)
* Build: add @grafana/data package (#17436)
* Update latest.json for 6.2.4
* Update latest.json for 6.2.3
* Update the changelog with v6.2.4 information
* Build: Updates node image for e2e job (#17632)
* Explore: Prometheus query errors now show (#17470)
* Chore: Lowered implicit anys limit to 4599 (#17631)
* noImplicitAny: SingleStat panel (#17616)
* Build: Update node image for test-frontend job step
(#17628)
* grafana-cli: Fix receiving flags via command line (#17617)
* Typescript: Removes implicit anys (#17625)
* Explore: Removes minus button in adhoc query field
(#17573)
* Correct 6.2.3 release date (#17624)
* codestyle: styleguide and arch for grafanas backend
(#17545)
* JsonTree: fix jsonTree angular binding (#17608)
* HTTPServer: Fix X-XSS-Protection header formatting
(#17620)
* Changelog: Add known issues for v6.2.3 (#17615)
* Update the changelog with v6.2.3 information (#17612)
* Refactor buttons (#17611)
* Tests: Replaces e2e tests truth screenshot (#17609)
* cli: grafana-cli should receive flags from the command
line (#17606)
* AppPlugin: Fix load legacy plugin app (#17574)
* Typescript: A batch of implicit any fixes (#17590)
* RefreshPicker: Handle empty intervals (#17585)
* Docker: Switch base to ubuntu:latest (#17066)
* SQLStore: extend `user.SearchUsers` method (#17514)
* Explore: Tag and Values for Influx are filtered by the
selected measurement (#17539)
* ldap: makes mocks available for testing. (#17576)
* Devenv: Add nginx proxy for mac (#17572)
* Graph: Added new fill gradient option (#17528)
* Typescript: Reduce implicit any errors (#17550)
* SinglestatPanel: Manages when getColorForValue() function
returns null value. Closes #9747 (#17552)
* LDAP: refactoring (#17479)
* Elasticsearch: Fix empty query request to send properly
(#17488)
* SinglestatPanel: fix min/max config in singlestat
sparklines (#17543)
* AuthProxy: Optimistic lock pattern for remote cache Set
(#17485)
* Explore: Includes context parameter when invoking
getExploreState() from Prometheus datasource (#17569)
* Tests: Replaces truth image (#17570)
* Fix: Fixes merge conflict (#17568)
* Build: Fix failing e2e tests and implicit any check
(#17567)
* Explore: Fixes implicit any error in
AdHocFilterField.test.tsx (#17565)
* Fix so that correct cache is provided to di registry
(#17566)
* Build: Upgrades to golang 1.12.6 (#17542)
* Explore: Adds ability to remove filter from
<AdHocFilterField /> key dropdown (#17553)
* codestyle: moves cache to infra (#17519)
* Docs feedback: installation/debian.md (#17563)
* Chore: Lowered implicit anys limit to 5131 (#17562)
* Influx: Reset logs query field on clear all and clear row
in explore (#17549)
* Devenv: Add telegraf with log parsing to influxdb docker
block (#17546)
* Explore: Runs query when measurement/field and pairs are
selected in logs mode for influx (#17523)
* Influx: Adds start page for logs in Explore (#17521)
* OAuth: Fix for wrong user token updated on OAuth refresh
in DS proxy (#17541)
* middleware: add security related HTTP(S) response headers
(#17522)
* Docs: Clarifies from which version the Patch VERB is
available (#17532)
* Chore: Hugo upgrade (#17494)
* Codestyle: Fix some goconst issues (#17530)
* Docs: Adds clarification to the provider name for
provisioned dashboards (#17524)
* Singlestat: Add y min/max config to singlestat sparklines
(#17527)
* Explore: Clear queries when switching between metrics and
logs (#17505)
* 16223 user auth token list and revoke (#17434)
* Feature: Parse user agent string in user auth token api
response (#16… (#17504)
* Tests: Adds better logging to e2e tests (#17511)
* Codestyle: Add typecheck and unused linters (#17491)
* Docs: Add CircleCI step trigger-docs-update (#17481)
* remote_cache: Fix redis (#17483)
* auth_proxy: non-negative cache TTL (#17495)
* Explore: Adds LogQueryField for InfluxDb (#17450)
* sqlstore: clean quota and user_auth_tokens when removing
users (#17487)
* Prometheus: Preallocate data for Prometheus backend
response parsing (#17490)
* Docs: Fix a typo in Elasticsearch docs (#17492)
* gtime: some code style refactoring (#17369)
* Build: make bra a local dependency (#17414)
* Add tests for multildap (#17358)
* RefreshPicker: SetInterval comments to rxjs code added
(#17404)
* metrics: expose stats about roles as metrics (#17469)
* Explore: Handle newlines in LogRow Highlighter (#17425)
* Alerting: Add tags to alert rules (#10989)
* Config: Add comment before log_queries in sample ini file
(#17462)
* CLI: Search perf test data (#17422)
* Prometheus: Use overridden panel range as $_range instead
of dashboard range (#17352)
* Update latest (#17456)
* NavModel: Fixed page header ui tabs issues for some admin
pages (#17444)
* Update changelog for 6.2.2 (#17452)
* PluginConfig: Fixed plugin config page navigation when
using subpath (#17364)
* Tracing: allow propagation with Zipkin headers (#17009)
* Perf: Fix slow dashboards ACL query (#17427)
* Explore: Fixes crash when parsing date math string with
whitespace (#17446)
* Cloudwatch: Add AWS DocDB metrics (#17241)
* Provisioning: Support folder that doesn't exist yet in
dashboard provisioning (#17407)
* Codestyle: Fix govet issues (#17178)
* @grafana/runtime: expose location update (#17428)
* Fix: Adds context to list of keys that are not part of
query (#17423)
* Prometheus: Correctly escape '|' literals in interpolated
PromQL variables (#16932)
* Explore: Makes it possible to use a different query field
per mode (#17395)
* DataSourceApi: remove ExploreDataSourceApi (#17424)
* Fix: change angular loader paths (#17421)
* Build: specify build flag for `docker-compose up` (#17411)
* Add a @grafana/runtime package with backendSrv interface
(#16533)
* Database: Initialize xorm with an empty schema for
postgres (#17357)
* docs: configuring custom headers in the dataproxy (#17367)
* Explore: Queries the datasource once per run query and
uses DataStreamObserver (#17263)
* Feature: Adds redux action logging toggle from url params
(#17368)
* Build: Adds e2e tests back to master workflow with better
error messages and with artifacts (#17374)
* Explore: Handle datasources with long names better in ds
picker (#17393)
* Annotations: Improve annotation option tooltips (#17384)
* InfluxDB: Fixes single quotes are not escaped (#17398)
* Chore: Bump axios to 0.19.0 (#17403)
* Alerting: golint fixes for alerting (#17246)
* Batch disable users (#17254)
* Chore: Remove unused properties in explore (#17359)
* MySQL/Postgres/MSSQL: Add parsing for day, weeks and year
intervals in macros (#13086)
* Security: Prevent csv formula injection attack (#17363)
* LDAP: remove unused function (#17351)
* Enterprise: remove gofakeit dep (#17344)
* Explore: Update time range before running queries (#17349)
* Build(package.json): improve npm commands (#17022)
* Chore: upgrade webpack analyser (#17340)
* NewDataSourcePage: Add Grafana Cloud link (#17324)
* CloudWatch: Avoid exception while accessing results
(#17283)
* Build: ignore absence of docker-compose (#17331)
* Build(makefile): improve error handling (#17281)
* adds auth example for the cli cherrypick task (#17307)
* docs: remove my email from docs examples (#17325)
* 16365 change clashing variable names (#17140)
* Frontend/SeriesData: Fix for convert SeriesData to Table
format (#17314)
* Frontend/utils: Import has only from lodash (#17311)
* Frontend/utils: Add missing type (#17312)
* update v6.2-beta1 changelog with missing pr (#17308)
* explore: don't parse log levels if provided by field or
label (#17180)
* HTTP Server: Serve Grafana with a custom URL path prefix
(#17048)
* update latest.json to latest stable version (#17306)
* release: v6.2.1 changelog update (#17303)
* Build: Removes e2e-tests from Grafana master workflow
(#17301)
* Build(devenv): correct the context issue (#17291)
* Build: Enables end-to-end tests in build-master workflow
(#17268)
* Gauge/BarGauge: font size improvements (#17292)
* Chore: Update jquery to 3.4.1 in grafana ui (#17295)
* CLI: Add command to migrate all datasources to use
encrypted password fields (#17118)
* Auth Proxy: Log any error in middleware (#17275)
* devenv: metricbeat and kibana for elasticsearch 7 block
(#17262)
* LDAP: reduce API and allow its extension (#17209)
* database: retry transaction if sqlite returns database is
locked error (#17276)
* Tech: Update jQuery to 3.4.1 (#17290)
* fix typo in basic_concepts.md (#17285)
* Feature: do dev environment via makefile (#17136)
* devenv: adds auth proxy load test (#17271)
* Table: various minor fixes (alpha panel) (#17258)
* Singlestat: fixes issue with value placement and line
wraps (#17249)
* Devenv: Update Graphite port in dev datasources (#17255)
* Chore: bump grafana-ui version (#17256)
* Release: Updated latest.json
* Auth: Logout disabled user (#17166)
* docs: fixes typo in provisioning docs (#17248)
* CloudWatch: Made region visible for AWS Cloudwatch
Expressions (#17243)
* Panel: Pass transparency prop down to React panels.
(#17235)
* Build: Fix filter for building msi during release (#17236)
* DataSourcePlugin: Avoid anuglar injector if only one
parameter (#17239)
* Alerting: Support for configuring content field for
Discord alert notifier (#17017)
* Explore: Update the way Loki retrieve log context (#17204)
* Docs: Fix grammar in docs (#17233)
* LDAP: consistently name the LDAP entities (#17203)
* Panels: Show Drilldown links in top-left corner of custom
React panels (#17142)
* Build: Fix final prompt for @grafana/ui npm publish
confirmation
* Docs: Updated versions selector
* Docs: Example for multiple LDAP servers (#17216)
* Release: Updated changelog
* Release: updated changelog with v6.2 entries (#17201)
* Search: removed old not working search shortcuts (#17226)
* azuremonitor: revert to clearing chained dropdowns
(#17212)
* Search: changed how search filter on current folder works
(#17219)
* AzureMonitor: docs for multiple subscriptions (#17194)
* Defer closing of files (#17213)
* Docs: Add guidelines for PR/commit messages (#17190)
* Users: Disable users removed from LDAP (#16820)
* docs: what's new in v6.2 fixes (#17193)
* DataSourceMeta: add an option to get hidden queries
(#17124)
* Panel: Apply option defaults on panel init and on save
model retrieval (#17174)
* BarGauge: Fix for negative min values (#17192)
* Azuremonitor: multiple subscription support for alerting
(#17195)
* AppPlugin: add types for jsonData (#17177)
* MSI: Generate sha256sum during MSI build process in
circleci (#17120)
* explore: fix null checks (#17191)
* Fix: Fixes so new data is pushed during live tailing
(#17189)
* testdata: logs scenario (#17182)
* testdata: scenarios returned are now sorted in a
consistent way (#17181)
* TablePanel: Check for table using keys (#17185)
* Fix gosimple issues (#17179)
* AppPlugin: add an init function (#17150)
* Fix: Changes WebSocket protocol to wss:// for https
(#17173)
* alerting: golint fixes for alert notifiers. (#17167)
* LDAP: add tests for initialBind (#17132)
* Explore: Adds Live option for supported datasources
(#17062)
* alerting: fix a bunch of lint issues. (#17128)
* chore: mocks plugin loader for DataSourceSettingsPage
tests (#17157)
* Release: Improved cherry pick task (#17087)
* Explore: Fix selection/copy of log lines (#17121)
* Explore: Fix empty space in toolbar on smaller devices
(#17110)
* Explore: display log line context (#17097)
* Plugins: expose rxjs matching 6.4.0 (#17148)
* Chore: fix codespell issue with build (#17144)
* Feature: LDAP refactoring (#16950)
* explore: fix issues when loading and both graph/table are
collapsed (#17113)
* explore: make sure datasource is added to target (#17116)
* Fix: tighten revive exit code & make it happy (#17127)
* GraphPanel: Don't sort series when legend table & sort
column is not visible (#17095)
* Chore: Update grafana-ui version to 6.2.0-alpha.0 (#17109)
* add support for periodically reloading mysql client certs
(#14892)
* Chore: Deduplicate sqlstore transaction code (#17069)
* Alertmanager: Replace illegal chars with underscore in
label names (#17002)
* Adjusted documentation for gcs to reflect the code
(#16947)
* fix: Initial url update in Explore should replace existing
url history #17030 (#17061)
* Explore: Allow switching between metrics and logs
(#16959)
* Chore: explore possibilities of using makefile (#17039)
* Chore: Bump jest to 24.8.0 (#17094)
* Chore: Bump ts-node to 8.1.0 (#17093)
* Release: Updated changelog
* backend: replace /pkg/errors with errutil (#17065)
* Explore: Fixes filtering in Prometheus queries when
clicking in Table (#17083)
* Remotecache: Avoid race condition in Set causing error on
insert. (#17082)
* Build: Support publishing MSI to grafana.com (#17073)
* InputDataSource: better empty value support (#17075)
* Panels: Fixed alert icon position in panel header (#17070)
* GraphPanel: use SeriesData directly (skip legacy
transformation) (#17037)
* Streaming: support streaming in MetricsPanelCtrl (#17034)
* Gauge: Fix switching orientation issue when switching from
BarGauge to Gauge (#17064)
* serverlock: run tests async should be more linear time
wise (#17059)
* InfoPopover: Fixes transclude undefined error (#17063)
* Dashboard: Fixes lazy loading & expanding collapsed rows
on mobile (#17055)
* fix: Azure Monitor adds missing closing div tag to query
editor (#17057)
* Chore: Use executable dir instead of pwd in CLI for isDev
check (#16974)
* Search: Set element height to 100% to avoid Chrome 74's
overflow (#17054)
* Docs: adds note about removing session storage (#17003)
* Chore: remove use of `== false` (#17036)
* Explore: use @grafana/ui legend (#17027)
* tech: avoid alias for importing models in alerting
(#17041)
* DataSourcePlugin: support custom tabs (#16859)
* Dashboard: Fixes scrolling issues for Edge browser
(#17033)
* SeriesData: remove color from Field (#17044)
* chore: remove x character in explore
* Dashboard: show refresh button in kiosk mode (#17032)
* Devenv: Updated gauge test dashboard
* Chore: reintroduce gosec (#17021)
* Gauge: tweaks to background color and height usage
(#17019)
* Feature: provide multildap server configuration (#16914)
* (feat/explore): Support for new LogQL filtering syntax
(#16674)
* fix(explore): Prevent double querying for Prometheus and
Loki (#17004)
* Chore: No implict any fixes (#17020)
* move log package to /infra (#17023)
* Chore: Lowered implicit anys limit to 5386
* Chore: Updated snapshot
* Select: Fixed isOpen issue
* Chore: Typescript no-implicit any fixes progress (#17018)
* GraphPanel: show results for all SeriesData (#16966)
* Fix: Wrap value of multi variable in array when coming
from URL (#16992)
* GettingStarted: add key and remove ng-class (#17007)
* explore: add some extra time for angular query editors to
update query (#16955)
* Explore: Align Explore with Dashboards and Panels (#16823)
* Explore: Fix empty result from datasource should render
logs container (#16999)
* Explore: Fixes zoom exception in Loki/Graph (#16991)
* PanelEditor: Fix queries tab now showing, wrong
skipDataQuery logic (#16994)
* DataSourceApi: convert interface to abstract class
(#16979)
* Panels: Fixed error panel tooltip (#16993)
* Docker: Prevent a permission denied error when writing
files to the default provisioning directory (#16831)
* Notification: attempt to send notifications to all given
email addresses (#16881)
* GettingStarted: convert to react panel plugin (#16985)
* Plugins: Remove dataFormats key and add skipDataQuery
(#16984)
* AlertList: removed icon
* MetricsPanelCtrl: use shared queryRunner to support query
execution (#16659)
* TableData: support name (#16983)
* Changelog: Typo guage -> gauge (#16982)
* TestData: stream via fetch (#16963)
* plugins: fix how datemath utils are exposed to plugins
(#16976)
* NewDataSource: Updated page header title
* fix(prometheus): issue with click label to filter for
recording rules in Explore
* Explore: Removes Promise.All from runQueries thunk
(#16957)
* Chore: Add prometheus basic auth proxy (#16882)
* Snapshot: use given key and deleteKey (#16876)
* DataSourcePlugins: more generics improvements (#16965)
* AddDataSource: Updated page design & categories (#16971)
* Templating: Support selecting all filtered values of
multi-value variable (#16873)
* Chore: Add Input stories (#16897)
* FieldDisplay: Don't use group ui elements in field editors
(#16953)
* GettingStarted: Fixes layout issues, fixes #16926 (#16941)
* PanelModel: Fix crash after window resize, fixes #16933
(#16942)
* Singlestat: fixed centering issue for very small panels
(#16944)
* Tests: Adds end-to-end tests skeleton and basic smoke test
scenario (#16901)
* Chore: Replaces moment with Grafanas DateTime (#16919)
* InfluxDB: Fix HTTP method should default to GET (#16949)
* Chore: Skip unnecessary checks on pre commit (#16946)
* http: remove dualstack since its deprecated (#16940)
* devenv: add slow reverse proxy (#16943)
* AppPlugin: Menu Edit Url Fix (#16934)
* DataSource Plugins: consistent generics order
<TQuery,TOptions> (#16936)
* Plugins: update beta notice style (#16928)
* Chore: update version number for 6.3 (#16927)
* Plugins: Support templated urls in routes (#16599)
* changelog: add 5.4.4 release
* docs: add download link to what's new in v6.2
* update changelog
* Update changelog for 6.2.0-beta1
* AzureMonitor: adds support for multiple subscriptions per
datasource (#16922)
* docs: what's new in v6.2 (#16909)
* Chore: ban importing from @grafana/ui in grafana ui files
(#16920)
* BarGauge: New multi series enabled gauge like panel with
horizontal and vertical layouts and 3 display modes
(#16918)
* alerting: no notification when going from nodata ->
pending (#16905)
* rpm: start grafana after mysqld process (#16917)
* Build: fix failing grafana/ui build (#16913)
* BarGauge: Updated test dashboards and threshold fix
(#16911)
* PanelModel: Clear queryRunner on destroy (#16906)
* Panels: No title will no longer make panel header take up
space (#16884)
* Elasticsearch: Fix pre-v7.0 and alerting error (#16904)
* Gauge: Better handling of gauge repeat title (#16886)
* Refactor: move datemath to grafana/ui (#16890)
* PanelQueryState: check for existing running query (#16894)
* devenv: add alert list panel (#16896)
* Security: Add new setting allow_embedding (#16853)
* build: fix integer overflow in pkg/tsdb tests on 32bit
platforms (#16818)
* Security: Responses from backend should not be cached
(#16848)
* Alert: Support variables in Alert List filters (#12583)
(#16892)
* Chore: Lowered implicit anys limit to 5617
* FieldDisplay: shared options model for singlestat panels
(#16703)
* Refactor: rename statsCalculator to fieldReducer (#16867)
* PanelModel: expose isInView property to PanelModel
(#16877)
* CSV: escape quotes in toCSV (#16874)
* Dashboard: Lazy load out of view panels (#15554)
* LDAP: Added reload endpoint for LDAP config (#15470)
* PluginsList: Removed icons and updated snapshots (#16872)
* Panels: Fixed issue with panel type change and data
updates (#16871)
* Chore: fix modes for non-executable files (#16864)
* DataSourceSettings: Minor fix for uncontrolled input
(#16863)
* Chore: Lowered implicit anys limit to 5623
* TestData: Add dashboards to testdata (#16855)
* Input Datasource: convert from angular config to react
ConfigEditor (#16856)
* DataSources: minor typescript cleanups and comments
(#16860)
* TestDataDatasource: Add config editor (#16861)
* App Plugins: support react pages and tabs (#16586)
* Add Windows MSI generation to build process (#16502)
* Datasources: add support for POST HTTP verb for InfluxDB
(#16690)
* Add pattern validation in configs (#16837)
* Search: Enable filtering dashboards in search by current
folder (#16790)
* FormLabel: allow any rather than just a string for tooltip
(#16841)
* prometheus: fix regression after adding support for
tracing headers (#16829)
* area/circleci: Speed up circleci build process for
branches and pr (#16778)
* DataProxy: Restore Set-Cookie header after proxy request
(#16838)
* docs: clarify page parameter version support for
folder/dashboard search (#16836)
* Chore: revise some of the gosec rules (#16713)
* Refactor: consistant plugin/meta usage (#16834)
* Explore: Use SeriesData format for loki/logs (#16793)
* Refactor: move NavModel to @grafana/ui (#16813)
* Auth: Enable retries and transaction for some db calls for
auth tokens (#16785)
* Provisioning: Show file path of provisioning file in
save/delete dialogs (#16706)
* Add tracing headers for prometheus datasource (#16724)
* Config: Fixes bug where timeouts for alerting was not
parsed correctly (#16784)
* build: removes gopkg files from dev docker file (#16817)
* Provisioning: Trying to fix failing test (#16800)
* Table: React table fix rotate support in storybook
(#16816)
* TestData: add log level in dummy message (#16815)
* removes gopkg.lock from root folder
* Explore: Support user timezone (#16469)
* Plugins: rename vizPlugin to panelPlugin (#16802)
* Plugins: move app/feature/plugin properties into
PluginMeta (#16809)
* Plugins: move PanelPluginMeta to grafana/ui (#16804)
* Plugins: move datasource specific meta out of the main
meta type (#16803)
* updates changelog for 6.1.6
* Fix: Fetch histogram series from other api route (#16768)
* phantomjs: set web-security to true
* Chore: Lowered implicit anys limit to 5668
* build: restore postgres integration tests (#16801)
* docs: explain correct access control model of GCS buckets
(#16792)
* Chore: Fixed no implicit any Typescript errors (#16799)
* Feature: introduce LdapActiveSyncEnabled setting (#16787)
* Plugins: ReactPanelPlugin to VizPanelPlugin (#16779)
* UX: Improve Grafana usage for smaller screens (#16783)
* ThresholdEditor: Minor style fix for smaller screens
(#16791)
* Build: Use isolated modules for ts-jest (#16786)
* LDAP Refactoring to support syncronizing more than one
user at a time. (#16705)
* build: removes unused vendored files
* (fix/explore): remove vertical-align looks better for long
logs (#16736)
* Chore: bump jQuery to 3.4.0 in grafana/ui (#16781)
* Devenv: Updated home dashboard and added new influxdb test
dashboard
* Chore: Lowered implicit anys limit to 5946
* RefreshPicker: minor design update (#16774)
* Streaming: support streaming and a javascript test
datasource (#16729)
* GraphLegendEditor: use stats picker rather than switches
(#16759)
* Feature: add cron setting for the ldap settings (#16673)
* Build: Disables gosec until identified performance
problems (#16764)
* Chore: bump jQuery to 3.4.0 including prototype pollution
vulnerability fix (#16761)
* elasticsearch: add 7.x version support (#16646)
* Provisioning: Add API endpoint to reload provisioning
configs (#16579)
* Config: Show user-friendly error message instead of stack
trace (#16564)
* Chore: Lowered implicit anys limit to 5954
* Feature: Enable React based options editors for Datasource
plugins (#16748)
* sqlstore: use column name in order by (#16583)
* user friendly guide (#16743)
* Provisioning: Interpolate env vars in provisioning files
(#16499)
* admin: add more stats about roles (#16667)
* Feature: Migrate Legend components to grafana/ui (#16468)
* playlist: fix loading dashboards by tag (#16727)
* CloudWatch: Use default alias if there is no alias for
metrics (#16732)
* Provisioning: Support FolderUid in Dashboard Provisioning
Config (#16559)
* Refactor: Make SelectOptionItem a generic type to enable
select value typing (#16718)
* docs: fix upgrade instructions
* Chore: Small improvements to grafana-cli (#16670)
* Chore: Use x/xerrors instead of pkg/errors (#16668)
* Chore: a bit of spring cleaning (#16710)
* Fixes #15863 (#16684)
* Docs: Update notification services (#16657)
* PanelQueryRunner: add datasource name to queries (#16712)
* Chore: remove session storage references (#16445)
* Dashboard: Minor settings UI Update (#16669)
* Templating: Do not copy hide option (#16696)
* Docs: Fix advanced variable formatting examples (#16691)
* QueryEditors: pass PanelData and filtered PanelData to
each editor (#16692)
* Chore: remove extra logging (#16688)
* DashboardSrv: export getDashboardSrv to react (#16687)
* Refactor: split PanelQueryRunner into runner and state
(#16685)
* Docs: Googlechat provisioning config example (#16682)
* TestDataDatasource: add the query refId to each result
* AppPlugin: avoid app plugin navigation slowness (#16675)
* Refactor: improvements to PanelQueryRunner (#16678)
* Refactor: move getQueryRunner() to PanelModel (#16679)
* Docs: initial backend plugins development guide (#16631)
* build: remove dep config files since they are not used
anymore
* Fix typo in PULL_REQUEST_TEMPLATE.md
* refactor: move timeInfo to DataRequestInfo (#16664)
* QueryRunner: Move queryRunner to panelModel (#16656)
* PanelQueryRunner: move error handling to
QueryRunnerOptions (#16654)
* refactor: Merge PanelChrome and DataPanel, do query
execution in PanelQueryRunner (#16632)
* Search: Fixed search issue introduced in recent PR
(#16652)
* Cloudwatch: fix for flaky tests (#16649)
* UI: Remove old icons (#16335)
* Search: Fixes search limits and adds a page parameter
(#16458)
* Chore: Upgrade lodash to v4.17.11 (#16645)
* Chore: Lock dependencies (#16644)
* tech: replace bmizerany/assert with stretchr/testify
(#16625)
* Chore: update yarn.lock (#16637)
* Panel Plugins: pass query request/response to react panel
plugins (#16577)
* Explore: Adds logs highlighting in Explore on keypress
(#16596)
* Build: adding dependency used by extensions (#16622)
* TimePicker: Re-add apply button in time picker (#16619)
* Chore: refactor auth proxy (#16504)
* Docs: updated help for changelog cli task (#16615)
* replace dep with go modules (#16017)
* Docs: Updated changelog for 6.1.4
* Heatmap: Fixed auto decimals when bucket name is not
number but contains dots, fixes #13019 (#16609)
* build: partially replace gometalinter with golangci-lint
(#16610)
* Explore & Dashboard: New Refresh picker (#16505)
* Build: Fix missing icon typing (#16601)
* Plugins: added missing prop to type
* CloudWatch: GetMetricData refactoring & fix label handling
(#16383)
* Chore: prepare our SQL for cockroach db (#16471)
* AppPlugins: fix app support and add an alpha example
(#16528)
* Switch: made minor styling tweaks to switch to align to
4px grid (#16593)
* Docs: minor docs update for old urls
* Chore: Add more explicit typing (#16594)
* Chore: Lowered implicit anys limit to 5977
* Chore: Adds typings to lodash (#16590)
* PanelEditor: Change Queries heading to Query (#16536)
* Security: Store datasource passwords encrypted in
secureJsonData (#16175)
* More development dashboards (#16550)
* build: upgrades to golang 1.12.4 (#16545)
* Use package libfontconfig1, instead of libfontconfig
(#16548)
* Adjust Send on all alerts to default label (#16554)
* Chore: Lower limit of implicit anys to 6676
* DirectInput: new alpha datasource that lets you enter data
via CSV
* Plugins: expose getBackendSrv() to plugins (#15268)
* DataPanel: Added built-in interval variables to scopedVars
(#16556)
* TestData: Add minInterval query option
* Chore: Remove implicit anys for DashboardModel and tests
(#16553)
* Pushover alert, support for different sound for OK
(#16525)
* Chore: Lowered implicit anys limit to 6816
* CloudWatch: Fix template variable expand bug (#16405)
* CloudWatch: fix color order (#16408)
* Plugins: Unifying alpha state & options for all plugins
(#16530)
* Revert 'Build: Upgrades to go 1.12.3 (#16491)' (#16544)
* Annotations: Annotation list style improvements (#16541)
* QueryInspector: Now shows error responses (#16514)
* Build: Upgrades to go 1.12.3 (#16491)
* Build: Update master version number (#16532)
* Elasticsearch: Format elasticsearch test dashboard json
(#16537)
* Update jwt regexp to include = (#16521)
* Chore: docs fixes underscore formatting (#16516)
* Fix: Pass missing maxDataPoints to query in Explore
(#16513)
* Fix: Recalculate intervals in Explore on run queries
(#16510)
* devenv: add elasticsearch v6 filebeat integration (#16493)
* devenv: add worldmap panel panels for elasticsearch
(#16313)
* Plugins: Optionally preload some plugins during frontend
app boot (#15266)
* Panels: Add types for DataList and range (#16500)
* Chore: Lowered implicit anys limit to 6818
* PanelData: Rename ColumnStats type to FieldStats (#16494)
* DataSourceApi: add getCollapsedText(query) to
DataSourceApi (#16482)
* Graph: Add some typescript types for data (#16484)
* Build: Updates goconvey to work on go1.12 (#16483)
* Provisioning: Do not allow deletion of provisioned
dashboards (#16211)
* Chore: lower limit for implicit anys to 6829
* Singlestat-v2/Gauge: Show title when repeating (#16477)
* Docs: fix grammar in query hint, tests, and documentation
(#16444)
* Heatmap: Fix empty graph if panel is too narrow (#16460)
* Release: updated latest.json
* Docs: Updated changelog
* docs: fixes and update current version
* Docs: Updated changelog for v6.1.3
* Graph: fixed png rendering with legend to the right
(#16463)
* Fix: Disables auto open datasource picker on focus
(#16398)
* add some mock/stub guidelines to testing guideline
(#16466)
* Feat: Suggestion list in Explore is virtualized (#16342)
* Docs: Updated roadmap issue to link to the pinned roadmap
issues
* Graph: Fixed auto decimals in legend values (#16455)
* Styling: Aligned heading (#16456)
* add PromQL keyword for adhoc filter (#16426)
* Singlestat: Use decimal override when manually specified
(#16451)
* Graph: follow-up graph decimals fix, #16414 (#16450)
* Chore: use remote cache instead of session storage
(#16114)
* Docs: Minor changelog tweak
* Docs: Updated changelog with v6.1.2 release issues
* datasource: fix disable query when using mixed datasource
(#16409)
* Graph: Fixed series legend color for hidden series
(#16438)
* Templating: Fixed loading React variable query editor
(#16439)
* Styles: Fixed left menu highlight (#16431)
* Fix: remove test artefact (#16411)
* Theme: Reworking button styling (#16362)
* Graph: Fixed tooltip highlight on white theme (#16429)
* BarGauge: Round sizing to avoid float widths
* Graph: Allow override decimals to fully override (#16414)
* Units: Correctly use the override decimals (#16413)
* Docs: Remove broken youtube link in timerange reference
(#16415)
* BarGauge: Fixed minor margin issue (#16419)
* Docs: Updated GitHub PR Template
* Bar Gauge: Show tile (series name) & refactorings & tests
(#16397)
* Fix: align panel padding between sass & js theme (#16404)
* Fix: playlist now preserve the correct url query params
(#16403)
* Fix: Graphite query rendering fix (#16390)
* Fix: Query editor toggle edit mode fix (#16394)
* Refactor: Plugin exports & data source / panel types
(#16364)
* Chore: Update lockfile (#16380)
* Alerting: Notification channel http api fixes (#16379)
* Chore: Add task to find FocusConvey tests (#16381)
* CloudWatch: Update AWS/IoT metric and dimensions (#16337)
* Fix: Table Panel fix to re-render panel when options are
updated (#16376)
* Docs: Fix typo in Prometheus documentation (#16369)
* build: Fixed incorrect permissions for repo folders in
ci-deploy. (#16360)
* Docs: remove embedd info about samesite cookie from app,
docs only is better
* Chore: Lowered error count limit
* build: fixes bug in verification script.
* Tech: Bump typescript and jest (#16354)
* Automation: Updates to yarn cli cherrypick & changelog
tasks (#16357)
* Feat: Improve embed panel info text (#16344)
* Fix: Cloudwatch fix for dimension value (#16356)
* build: Script to check that our repos work and what the
latest package version is (#16350)
* Fix: Autoprefixer is now working (#16351)
* Chore: docs updates to what's new for 6.1 (#16346)
* build: Fix for renamed package for armv6.
* Chore: bump storybook and add build script (#16340)
* Refactor: React Panels to only use SeriesData[] (#16306)
* Docs: Suggest add-apt-repository to install APT repos
(#16333)
* Units: Add angle units, Arc Minutes and Seconds (#16271)
* Chore: Lowered implicit any limit to 6850
* Feat: Adds reconnect for failing datasource in Explore
(#16226)
* docs: improve alert notification channel provisioning
(#16262)
* Build: Moved the failing appveyor file so we can get green
builds in master
* Fix: Build report the correct directives before failing
(#16312)
* Fix: input elements autofill background (#16295)
* Fix: Bring back styles on Switch components when checked
* Chore: breaks build if certain FrontEnd limits are
exceeded (#16301)
* Fix: Graphite query ast to string fix (#16297)
* Fix: Template query editor this bind exception fix
(#16299)
* Fix: Alerting Notification channel http api fixes (#16288)
* Refactor: Move LogLevel and Labels utils to @grafana/ui
(#16285)
* Refactor: Rename Tags to Labels in SeriesData (simple)
(#16284)
* Elasticsearch: Fix view percentiles metric in table
without date histogram (#15686)
* Configuration: Improve session_lifetime comments (#16238)
* Alerting: Makes timeouts and retries configurable (#16259)
* Fix: Correct SnapshotData typing (#16279)
* Feat: Angular panels & SeriesData to Table/TimeSeries
(#16266)
* Fix: React Graph & Show message on no data (#16278)
* Feature: added actionable message in Explore when no
datasource configured (#16252)
* Feature: Case insensitive Loki search (#15948)
* Feat: Singlestat panel react progress & refactorings
(#16039)
* Chore: Implement gosec (#16261)
* Fix: Updated snapshot unit test that was failing
* Refactor: Theme & Removed the last rems (#16245)
* Refactor: Theme input padding variables (#16048)
* Feat: More robust csv support (#16170)
* Docs: Fix rpm dependencies example (#16272)
* Fix: HTML meta tags fix for iOS (#16269)
* Feature: Introduced CallToActionCard to @grafana/ui
(#16237)
* Refactor: Rename TimeSeriesVM to GraphSeriesXY (#16216)
* Chore: Implement revive (#16200)
* InfluxDB: Fix tag names with periods in alerting (#16255)
* Fix: Table Panel and string values & numeric formatting
(#16249)
* Tech: Patch lib updates, update yarn.lock (#16250)
* Chore: docs whats new article for the 6.1 release (#16251)
* Chore: Storybook improvements (#16239)
* Feat: Introduce Button and LinkButton components to
@grafana/ui (#16228)
* Chore: changelog adds note for #16234
* Fix: Prometheus regex ad-hoc filters w/ wildcards (#16234)
* Chore: changelog notes for #13825,#15205,#14877,#16227
* Fix: Alert email variable name typo fixed (#16232)
* Fix: scripts changelog cli per page set to 100
* Fix: Dashboard history diff & white theme fix (#16231)
* Merge pull request #16241 from
grafana/hugoh/no-implicit-any
* Chore: Theme consistency, rems => pixels or variables
(#16235)
* Chore: Theme consistency, rems => pixels (#16145)
* changelog: adds notes for #16229 and #16227
* Fix: Elasticsearch fix template variables in the alias
field (#16629)
* Fix: TablePanel column color style now works even after
removeing styles, fixes #16162 (#16227)
* Docs: Updated changelog for 6.1 release (#16224)
* Alerting: Notification channel http api enhancements
(#16219)
* Upgrades: Patch updates to yarn lock (#16215)
* Fix: DatasourceApi query response typing fix (#16214)
* chore(influx): no point of reading response when bad
status (#16212)
* docs: loki provisioning
* docs(dev): Update docs about devenv dir (#16208)
* fix(dashboard): time regions spanning across midnight
(#16201)
* fix(InfluxDB): Reads body and close request body even for
error status codes (#16207)
* chore: more TableData to SeriesData renaming (#16206)
* fix(panels/graph): Default option name for spaceLength was
accidentally changed (#16205)
* fix(explore): only show split close button when split is
active (#16203)
* fix(react2angular): Fixed react to angular wrapper
watching function expressions causing infinte digest loop,
fixes #16194 (#16196)
* fix(Alerting): Fixed alert rules with eval in day units,
fixes #16174 (#16182)
* fix(panel/table): Fix for white text on white background
when value is null
* refactor(grafana/ui): Replace <input />with Input
component from grafana/ui (#16085)
* fix(loki): Hide empty labels column
* build: fixes publishing version.
* refactor(data models): Renamed TableData to SeriesData
(#16185)
* chore(core/utils): Add typings to datemath.ts (#16195)
* only call onPanelMigration when the version actually
changes (#16186)
* feat(explore): make it possible to close left pane of
split view (#16155)
* feat(Explore): make sure Loki labels are up to date
(#16131)
* build: makes sure grafana.version is available when
deploying.
* fix: added missing event to function signature Fixes:
#16055
* build: refactoring
* build: updated build container with support for rpi1.
* build: support for publishing armv6.
* build: builds armv6 with rpi1 compat gcc.
* fix: added target and datasource as isMetric property
Fixes: #15862
* chore: Removed implicit anys in react container and test
helpers
* Pamels: Options are always there
* Panels: Support angular -> react migration via
PanelMigrationHandler
* Panels: Added more tests for change panel plugin
* Panels: Refactoring how panel plugins sets hooks and
components, #16166
* clarify notifications API docs
* remove processTimeSeries
* merge master
* don't use process timeseries
* rename stat to show in UI
* use display value in pie chart
* keep plugin versions
* remove panel plugin setters
* renamed float to flot
* prevOptions should be optional
* moved migration hook to its own function
* Minor refactoring of stats picker / shared singlestat code
* Makes it possible to navigate back/forward with browser
buttons in Explore (#16150)
* Moved DisplayValueOptions type back, #16134
* adding check for decimals
* add one more test
* Graphite: fixed variable quoting when variable value is
nummeric, fixes #2078
* Minor refactoring of #16127
* Update provisioning.md
* Graphite: Fixed issue with using series ref and series by
tag, fixes #15237
* move typings to types,
* Link license corrections
* remove logging
* add stat picker to single stat
* removed option to not check strings
* drop one level of nesting
* cleanup and guess all columns
* Small license correction
* update cloudwatch metrics/dimensions list
* Enable sass theme change in Storybook
* replaced rems with pixels or variables
* adding test
* updating usages in singlestat
* Sorting imports
* adding function
* Use grafana's logger implementation
* another change that didn't come with earlier commit
* change that didn't come with in last commit
* reversed dashboard-padding
* Update CloudWatch metrics/dimension list (#16102)
* brought back dashboard-padding and panel-padding
variables, made dashboard-padding more specific
* replaced rem with pixels or variables
* fix(prometheus): Change aligment of range queries
(#16110)
* fix, assign by event.time
* Minor refactoring of testdata query order PR #16122
* simplify
* deduplicate same value annotation
* cleaner version
* maintain query order
* Remove sleeps in test code by overriding time.Now()
* Update PLUGIN_DEV.md
* Abstract encrypt/encode and decode/decrypt into their own
functions
* Rename dispatched commands to make them easy to grok
* show all colums in graph
* Use structured logging instead of printf
* Make all http auth setting labels the same width
* Merge with master, and updated logo and name
* Rewrote creation of images tag
* Added missing commas
* Don't include non-existing image in MS Teams alert
* cast to column
* update table data model
* show all columns in singlestats
* fix(graphite): nonNegativeDerivative argument hidden if 0,
fixes #12488
* Correct table names of sql storage for remotecache
* more fixes to snapshot
* more fixes to snapshot
* Fixed gofmt issue in PR #16093
* removed empty space in snapshot
* fix: Update snapshot related to new jest version
* fixed snapshot for test
* Regenerate lockfile due to the amount of merge conflicts.
* removed dashboard variables, removed headings-font-family
variable, created theme variables for links and z-index,
removed unused class in _panel_editor and _dashboard
* Remove commented code
* flot pairs
* add more functions and tests
* Update org_user.go
* Minor progress on fixing no-implicit any issues
* refactor: merged types and updated references
* Remove leftover from first iteration
* Only keep certain query params when going to next playlist
* Snapshot update
* fix: ts issue on SelectOption test
* chore: Bump react and react-dom to 16.8.4
* Update latest.json
* Update templating.md
* chore: cleaning up noimplicit anys in search_srv and tests
progress: #14714
* Fix threshold editor color picker not working for custom
colors
* Updated comments
* Updated threshold editor test
* Re-render gauge / singlestat panels when changing options
* fix: refactored so members are loaded by TeamPages and use
hideFromTabs instead of filtering out children in navModel
* teams: explains the external property of a team
membership.
* fix: fixed snapshots and permission select not beeing able
to click
* fix: new team link goes nowhere for viewers
* teams: refactor so that you can only delete teams if you
are team admin
* permissions: removes global access to bus from
MakeUserAdmin.
* teams: local access to bus, moving away from dep on
global.
* teams: better names for api permissions.
* teams: refactor.
* permissions: refactor.
* teams: refactor.
* teams: hide tabs settings and groupsync for non team
admins
* teams: refactored db code.
* teams: disable new team button if user is viewer
* refactor: moved test from TeamMembers to TeamMemberRow
* refactor: splitted TeamMembers to TeamMemberRow
* teams: comment explaining input validation
* teams: cleanup.
* teams: cleanup.
* dashboards: simplified code.
* teams: disable buttons for team members
* teams: moved logic for searchteams to backend
* teams: viewers and editors can view teams
* teams: editor/viewer team admin cant remove the last
admin.
* teams: changed permission to permission type instead of
int
* teams: defaulting invalid permission level to member
permission level
* team: uses PermissionType instead of int64 for
permissions.
* teams: editors can't remove the last admin from a team.
* teams: tests use the new message for modifying team
members.
* team: renames teams.CanUpdate teamguardian.CanAdmin
* teams: remov permission select for non admin users
* docs: First take on describing feature toggle
* config: updated feature toggle name
* teams: cleanup.
* dashboard: only admin permission added to dashboard in
folder.
* dashboards: better error handling
* teams: team listing shows only your teams (editors).
* teams: teams guard on all teams update methods.
* teams: added delete team guard
* teams: removed feature toggle as it is already in
middleware
* teams: added feature toggle and refactor tests
* teams: cleanup.
* teams: test refactorings.
* teams: bugfix, user pointer.
* teams: start of team update guardian for editors
* teams: team update test
* teams: change back to permissionlevel for Member to 0
* teams: make sure we use TeamPermissionLevel enum
* teams: update only the selected user
* teams: only write error message if error
* teams: enabled so that user can update permission for team
members
* teams: feature toggle component
* teams: test for update team member.
* teams: can update team members permission.
* teams: basic ui for permission in team members view
* teams: editor added as admin for created teams.
* teams: editors can work with teams.
* teams: show teams and plugins for editors that can own
* teams: make test cases pass again
* folder: uses service to make user admin of created folder.
* permissions: broken out func for making creator admin.
* folders: admin for created folders
* dashboards: user automatically becomes admin for created
dashboards
* fix(ci): frontend tests was accidentially commented out
* Use SecretFormField in MSSql and Postgres datasources
* Add SecretFormField component
* Add possibility to pass custom input component to
FormField
* Allow angular react bridge to use kebab case attribute
names
* adding story and fixing tests
* build: migrates the build container into the main repo.
* build: updated deploy container with crcmod.
* build: crcmod speedups rsync to gcp for deploy.
* Update style_guides/backend.md
* remove the error collector
* Copied from new timepicker and unified component branch
* docs: renamed file and added redux framework file
* docs: moved examples to frontend.md
* docs: intial draft for frontend review doc
* Use ora#fail instead of console.log
* reorder imports
* test
* rename to char
* sorting imports
* moving
* Remove .only function
* Add more patterns to no-only-test task
* chore: Cleaning up implicit anys in DashboardExporter and
tests progress: #14714
* rename reducer to statsCalculator
* Great progress on bar gauge look
* Explore: Fix log stats for long labels
* calculate the column width
* disable react table cell measure
* dont test exists in the test... it will fail if not found
* add random_walk_table scenario
* adds backend code style guide
* add test file
* add startAt to random walk scenario
* get values from base options
* use singlestat base where appropriate
* feature(explore/table): Add tooltips to explore table
(#16007)
* Update changelog
* Bar gauge gradient mode
* Bar gauge auto lcd cell count
* Add check for Env before log
* Update index.md
* chore: Cleaning up implicit anys in manage_dashboard.ts
and manage_dashboard.test.ts progress: #14714
* chore: Cleaning up implicit anys in app.ts progress:
#14714
* panels: fix loading panels with non-array targets (add
tests)
* changelog: adds note about closing #15836
* set correct return type
* panels: fix loading panels with non-array targets
(refactor)
* Bar gauge styling tweaks
* panels: fix loading panels with non-array targets
* changelog: adds note about closing #6359 and #15931
* add partial
* no inheratance
* improve single stat display
* revert most options sharing
* Refactoring the bar gauge and the orientation modes
* add migration tests
* renaming function
* using refId from panel model
* Tooltip: show percent instead of value
* Add check so that header is not sent for anonymous users
* Update config docs
* Add custom header with grafana user and a config switch
for it
* changelog: adds note about closing #10816
* Right tooltip position
* Add 'No data points' message
* use constants for cache type
* makes variables template prettier complient
* Make recently used auth_module test more robust by adding
another 'log in'
* changelog: adds note about #15744
* updates old distcache names
* dont allow inifinite expiration
* chore: Upgrade all babel related packages that is lagging
behind
* return error if cache type is invalid
* Add more info to victorOps alert notifications
* fix: papaparse must have gone missing during rebase
* chore: Bump jest to 24
* fix: describe() should not be async
* fix: Use proper syntax for plugin-syntax-dynamic-import
* fix: Downgrade ts-node to 8.0.2 due to broken theme
generation
* chore: Bump ora
* chore: Bump tslint (again)
* chore: Bump axios
* chore: Bump npm
* chore: Bump glob
* fix: Invalid css
* chore: Bump clean-webpack-plugin,
html-webpack-harddisk-plugin, postcss-reporter
* chore: Bump file-loader and css optimizer webpack plugin
* chore: Bump css-loader and remove minimize option since
its removed in css-loader
* chore: Bump npm packages and lock down some versions
* chore: Bump mini-css-extract-plugin
* chore: Lock down versions of expose-loader and html-loader
* chore: Bump fork-ts-checker-webpack-plugin
* chore: Prod builds should not cache
* chore: Replace Uglify with Terser
* chore: Bump webpack, webpack-bundle-analyzer, webpack-cli
and webpack-dev-server to latest
* reuse more gauge settings in bargauge
* set the unit on time data
* add error when not found
* Added metric math docs
* check types better
* check types better
* docs: Change type of 'tags' in annotationQuery result
example to list
* single hook
* Change import path for social in the tests
* Change import path for social since it has moved
* generic repeater
* generic repeater
* Remove todo about index on user_id in user_auth because it
exists
* Add function in ds_proxy to handle oauthPassThru headers
* Remove auth_module settings from oauthPassThru ui
* Remove auth module from ds_proxy oauth test
* Get most recent oauth token from db, rather than lookup by
auth_module
* Improve tooltip look
* explore/logs: Hide empty duplicates column
* merge master
* fix for firefox checkboxes not appearing properly, added
appearance as none
* Always return most recently used auth_module from
GetAuthInfo
* used regex instead of string replacing
* Fixed issue with alert links in alert list panel causing
panel not found errors, fixes #15680
* Add comments
* Add simple test for the ColorPicker
* Use render props pattern in color picker
* Move ColorPicker trigger to separate component and cleanup
css
* Improved error handling when rendering dashboard panels,
fixes #15913
* fix return type
* Only send ci metrics to hosted metrics instance
* adding types
* Added back branch guard
* moved delete button from sidebar to general tab and
renamed it
* Refactoring the ci metrics a bit more making it easier to
re-use
* removed unused and very specific variables, also variables
with same value as general variable
* reduce loglevel to debug
* Updated bar gauge snapshot
* added some comments about state of components things
* better comments
* comment cleanup
* force circleci to try again
* format
* touch
* touch
* make sure the validator is called before setState
* API to fix/update properties before load
* more tests
* more options in storybook
* adding simple widget to pick the reducer
* heatmap: fix for negative values
* Fixed more typescript no implicit any issues
* Also push to ci metrics to new shared HM instance
* move sort to table processing
* Fixed type issues introduced by adding angular types
* Typescript noAny fixes, start of a long journey
* Updated code stats collection
* Updated path to new script
* POC on collecting metrics in ci process
* changelog: add notes about heatmap issues #15683 #14019
* added two new variables in default theme for panel
padding, replaced panelhorizontalpadding and
variables.panelverticalpadding with new variables
* renamed default variables: s -> sm, m -> md, l -> lg
* removed gf-form-margin variable and replaced with space-
variables where it was used
* add table reducer
* heatmap: able to hide buckets with zero value #12080
* s -> sm, m -> md, l -> lg
* heatmap: fix prometheus buckets sorting, closes #15637
* s -> sm, m -> md, l -> lg
* removed headings-margin-bottom variable
* rename to displayValues
* remove kbn test
* more tests
* use new settings
* fix tests
* make value processing reusable
* Call ora instead of instantiating it
* Added scopedVars argument in datasourceSrv.get in
DataPanel
* MutableColumn
* cleanup after review
* rename handleXXX to onXX events
* torkel feedback
* onCellClick
* heatmap: able to reverse Y buckets order, #15683
* fix(explore/logs) not collapsing whitespace (#15737)
* Refactoring of multi-value datasource PR #15812
* fixed minor misstake with dashboard padding
* removed -margin, replaced with new general variables
* Move oauth token migrations in user_auth_mig
* heatmap: fix middle bucket bound for prometheus
* Refactoring / fixing password hint PR #15868
* chore: Move sidemenu out of context service and use the
logic we have in the router already for hiding the
sidemenu
* Fix deduplication results displaying wrong data (#15755)
* added new space variables to margins in AddPanelWidget,
add_data_source, dashboard_settings and sidemenu
* use `Get` instead of `Find`
* avoid exposing cache client directly
* add docs about remote cache settings
* renames distcache -> remotecache
* renames key to cache_key
* build steps for cache servers
* code layouts and comments
* rename put -> set
* reverts package.json I made during the flight >.>
* `memcache` -> `memcached`
* removes memory as distcache option
* test redis and memcached during integration tests
* adds config to default settings
* avoid exporting test helpers
* uses set instead of add for memcache
* adds memory as dist storage alt
* extract tests into seperate files
* avoid exposing internal structs and functions
* heatmap: don't display cut cards
* heatmap: fix error when series empty
* heatmap: middle bucket bound option, #15683
* rotate!
* added new variables for spacing, set margins in _cards
with new variables
* better css
* Revert 'Fix Datasource Update to no User/Password'
* rotate!
* fix imageurl in notification test
* add comment
* attach themes to table story
* reuse deprecationWarning
* move to string.ts
* move stringToJsRegex
* get field mapping to actually work
* add variable size storybook
* cell builder cleanup
* minor storybook cleanup
* fix typos
* autofill space rather than force with/height values
* return table directly, not the debug info
* Minor fix in values to histogram conversion
* Fix histogram x-axis min/max
* moved utillities to util
* Change xaxis min and max form input types to number
* Fix histogram xaxis min/max tests
* Optionally set histogram x-axis min/max
* table using MultiGrid
* cleanup
* cleanup
* adding toolbar
* adding stub table input CSV
* docs: Fix indentation level for OAuth2 config
* docs: update CONTRIBUTING.md
* merge master
* docs: update slack alert notification settings
* docs: update admin and user http api documentation
* feat(api): support list/revoke auth token in admin/current
user api
* support get user tokens/revoke all user tokens in
UserTokenService
* @grafana/ui - release docs v1 (#15835)
* Minor refactoring of copy tags when saving feature, #15446
* Simple implementation for preserve tags, closes #11627
* Updated prettierignore
* Refactoring of PR #14772
* Simple storybook
* fix typo in pr template
* add nil/length check when delete old login attempts
* Minor refactoring of new react text panel
* Improve rendering
* fix allow anonymous server bind for ldap search
* changed all rems to pixels in defaults and template,
changed back root font size
* piechart -> pieChart
* Rename: Piechart -> PieChart
* Import only what is used from d3
* less nesting and add test
* remove type field and add helper functions to check if
data isTableData
* add storybook
* fixes typo in redis devenv
* add support for memcached
* add support for redis storage
* add garbage collector for database cache
* test at interface level instead impl
* cache: initial version of db cache
* don't include stuff from app/...
* fix scss
* rename to Table
* rename to Table
* fix type errors
* move to grafana/ui
* better sort function
* use TableData, not interface
* Make password hint configurable from settings/defaults.ini
* move toTableData to grafana/ui
* don't require x & y columns for timeSeries
* use TableData for timeseries in react
* Update README.md
* heatmap: reduce number of legend segments to reasonable
value and round x values to prevent gaps
* heatmap: fix legend padding
* heatmap: fix legend for small values, #14019 #15683
* status: alpha
* changed root font to 100%(default 16px), changed font-size
from px to rem, updated rem sizes in template and
default.ts files, removed display classes and variables
since not used, removed lead class and variables since not
usedremoved serif font since not used and probably never
should be used
* Update core:start cli command to watch theme changes again
(#15856)
* Updated pull request template
* Updated pull request rtemplate
* Removed title case from issue template title
* Updated issue template titles
* Updated issue templates
* Updated templates
* fix: Update error message and replace npm with yarn #15851
* fix: Make sure we dont add &autofitpanels to the url if it
already exists #15849
* fix: Update test snapshot
* fix: Logo goes Home instead of toggling side menu #15482
* Update upgrading.md for wrong spell
* remove _
* cleanup
* use pure component
* return the same panelData unless it changes
* sortable class
* Map dataSourceTypeSearchQuery state from redux to search
input.
* move rendering to its own file
* try virtualized
* Initial tooltip
* Minor refactoring of PR #15770
* Revert 'Fix for leaving playlist mode'
* Alternative fix to detecting when to stop a playlist,
fixes #15701 and #15702
* fix discord notifier so it doesn't crash when there are no
image generated
* fix: Consistency in unit labels #15709
* Update latest.json
* Run prettier
* position from add panel, dimensions from copied panel
* Fix donut rendering
* Run prettier
* Fix pieType change
* changelog: add notes about closing #14509 #15179
* Render svg instead of canvas
* fix: Add class for input fields with help icon to avoid
icon hiding the text #15771
* restore to current folder when restoring old dashboard
version
* fix(renderer): Vendor ansicolor as typescript
* log phantomjs output even if it timeout and include orgId
when render alert
* keep size from copied panel and not from add panel widget
* Added basic cherry pick helping task
* Prevent search in VizPicker from stealing focus (#15802)
* fix only users that can edit a dashboard should be able to
update panel json
* Updated changelog task
* Fixed image rendering issue for dashboards with auto
refresh, casued by missing reloadOnSearch flag on route,
fixes #15631
* use props.replaceVariables rather than templateSrv
* Updated to add PR author, skip PR issue references
* Added first iteration/poc of changelog task
* Enable @grafana/ui version bump based on package.json
contents
* Fixed styling of gicon's in dropdown menus
* cleanup plugin versions
* use explore icon
* fix comments
* typescript functions on replace
* remove console.log
* add ScopedVars to replace function
* Make datasource variables multiselect and dashboard
repeatable
* set height
* add test file (ignored)
* fix variable name
* use typescrit in angular table
* use react-table
* add a basic alpha react table
* Ensure clean master only when publishing package to npm
* Remove log
* Ensuring master branch when performing release
* upgrade xorm packages to latest versions
* Expose onQueryChange to angular plugins
* docker: update prometheus2 block to version 2.7.2
* use replaceVariables
* Add a keybinding that toggles all legends in a dashboard
* fix allow anonymous initial bind for ldap search
* changelog: adds note for #8253
* prettier
* Aftermerge fixes
* use default min interval of 1m for sql datasources
* changelog: adds note about closing #15608
* Fixed scrollbar not visible due to content being added a
bit after mount, fixes #15711
* Added comment to Docker file
* moving
* style: add gicon-shield to sidemenu class Closes #15591
* remove `UseBool` since we use `AllCols`
* fix: Move chunk splitting from prod to common so we get
the same files in dev as prod
* fix: update datasource in componentDidUpdate Closes #15751
* changelog: add notes about closing #15739
* Moved Server Admin and children to separate menu item on
Side Menu (#15592)
* update version to 6.1.0-pre
* Viewers with viewers_can_edit should be able to access
/explore (#15787)
* Fixed scrolling issue that caused scroll to be locked to
the bottom of a long dashboard, fixes #15712
* reordered import
* Wrapperd playlist controls in clickoutsidewrapper
* Turn off verbose output from tar extraction when building
docker files, fixes #15528
* Hide time info switch when no time options are specified
* Made sure that DataSourceOption displays value and fires
onChange/onBlur events (#15757)
* Updated react select fork to 2.4.1
* utils: show string errors. Fixes #15782
* Update frontend.md
* Update frontend.md
* Minor refactor of cli tasks (core start, gui publishing)
* Fixed url of back button in datasource edit page, when
root_url configured (#15759)
* use onOptionsChange
* use replaceVariables rather than onInterpolate
* use updateOptions rather than onChange
* changelog: add notes about closing #15650
* changelog: add notes about closing #15765
* fix: Kiosk mode should have &kiosk appended to the url
#15765
* changelog: add notes about closing #15077
* org admins should only be able to access org admin pages
* only editor/admin should have access to alert
list/notifications pages
* Added MaximumUsedTransactionIDs metric to list of AWS RDS
metrics.
* fix: When in tv-mode, autofitpanel should not take space
from the navbar #15650
* devenv: fixes incorrect influxdb config.
* Fixes #15739
* Don't mutate seriesList parameter in mergeSeriesByTime
(#15619)
* new stable docs version
* Fix: #14706 Incorrect index pattern padding in alerting
queries
* fix
* changelog: adds note about closing #14239
* fix: prevent datasource json data stored as nil (#15508)
* changelog: adds note about closing #10506
* changelog: adds note about closing #15651
* Return 404 on user not found (#15606)
* Catch bad regex exception at controller level
* Prettier fix
* Add PiechartOptionsBox
* docs: missing field added to example
* 11780: invalid reg value can cause unexpected behaviour
* Fixed right side scrollbar margin on dashboard page
* fix: Return url when query dashboards by tag
* Fix prettier
* Initial rendering
* Add PiechartType enum
* Install d3
* Remove extra props
* Removed commented code
* Fixed alias in Cloudwatch Expressions
* Explore: Enable click on name label
* Bumping grafana ui version (#15669)
* Style and grammar fixes
* big text option
* Need this to be available for plugins
* service: fix for disabled internal metrics.
* docs: 6.0 whats new
* Toggle stack should trigger a render, not a refresh
* Updated latest.json with 6.0
* docs: grafana 6.0 has been released.
* moves social package to /login
* moves tracing packge into /infra
* changelog: adds notes for #14509 and #15179
* graph: fixes click after scroll in series override menu
* moves metric package to /infra
* Explore: Make sure line graphs get different colors
* stackdriver: change reducer mapping for distribution
metrics
* stackdriver: fix for float64 bounds for distribution
metrics
* update
* style tweaks
* Refactoring orientation stuff
* Refactoring bar gauge
* Refactoring bar gauge
* Added missing file
* refactoring repeater and code in gauge and bar gauge to
reuse more code
* docs: link to azure monitor from what's new in v6.0
* Fixed value dropdown not updating when it's current value
updates, fixes #15566
* docs: tweaks to AzureMonitor docs
* Added feature toggle to defaults.ini and sample.ini after
PR comments
* Moved variable to config struct after PR comments
* Added feature toggle editors_can_own
* updates all cols except created so user and password of
the database can be chaned to no user and password
* Fixed bug with getting teams for user
* Improve Loki logs render with ANSI colors (#15558)
* grafana/ui 6.0.0-alpha.0 release version bump
* removed color in color variables names
* changelog: add notes about closing #15303
* changelog: add notes about closing #1441
* update changelog
* grafana/ui 1.0.0-alpha.0 release
* Update grafana/ui readme
* docs: landing page update
* Bring back plugins page styles
* docs: layout fixes
* prettier fix
* Make published package public by default
* docs: fix link
* docs: fix order of datasources in menu/index and update
alert support
* Fixed prettier issue in color picker
* Update docs to match current npm scripts
* Added keywords and description go grafana/ui package
* Fixed failing tests because of circular dependency
* Fix version and name in grafana/ui package.json
* Imports updates
* Implemented scripts for building and releasing grafana/ui
* changed some more color variables to use variables
* fixed tests
* panel: defensive coding that fixes #15563
* Minor fix/polish to gauge panel and threshold editor
* copying options between visualizations
* fixed issue in dark sass template
* Updated body & page variables to use variables from code
theme
* updated building from source docs
* fixed snapshots failing in master
* Synced variable template files
* fix: mysql query using __interval_ms variable throws error
* Fixed scrollbar issue introduced in theme changes
* Fix build
* minor touch ups
* Fix heading levels in generic-oauth.md
* updated colors in light, dark and theme files, in template
file basic colors uses variables from dark/light files,
also changed to -basic in some files
* ValueOptions -> PiechartValueEditor
* Make it build
* fixes
* added orientation option
* export PiechartDataPoint from @grafana/ui
* change valueOptions
* get label and color from series
* prettier fix
* PieChartDataPoint -> PiechartDataPoint
* Rename PieChartPanelEditor to PiechartPanelEditor
* docs: adds Azure Monitor docs
* Fix blue in dark theme
* Readme update
* Minor fixes
* Review fixes
* Fixes after merging #15468
* Pass dashboardModel to PanelCtrl class. Fixes #15541
* Add piechart to builtInPlugins
* logo: svg -> png
* Remove old overwritten sass vars
* first draft of repeater component
* docs: howto for recreating our debian repositories.
* fix: Filter out values not supported by Explore yet #15281
* Bump Prettier version (#15532)
* updated theme variables to master
* updated theme template files variables to master
* add new issue templates
* Fixes #15506
* chore: graph2 panel plugin should use the new
ReactPanelPlugin from @grafana/ui
* fix: Have the tab param removed from the url when leaving
edit mode #15485
* reduce loglevel to debug
* Fixes #15505
* fix native annotation filtered by template variable with
pipe
* Fixed navbar backbutton padding
* Updated explore icon and style tweaks Lowered icon size
and improved paddings, tried to align placement between
dashboard and explore
* Display graphite function name editor in a tooltip
* Fixing array direction, adding simple render test, fixes
#15478 Fixed unit test and updated gauge Added migration
for threshold order
* changelog: adds note for #15500
* fixed page-header-bg
* cli: chmod 755 for backend plugin binaries
* reversed most of grays in dark theme
* Fixes #15477
* Changed how react panels store their options (#15468)
* Remove maxDataPoints and interval props from props to
remember in panel model
* Fix typo in view mode cykle button
* Variables regenerated
* Make clear that variable scss files are generated from
templates
* Fixed spelling issue in templating docs
* Removed primary class from Add Query button, and changed
name of Panel Options tab o General Options
* improved formatting of variable docs
* Datasource docs for Loki
* Replace require with import in start task
* Added enable_gzip documentation (#15322)
* Add Lux to units
* Fixed issue with PanelHeader and grid-drag-handle class
still being applied in fullscreen, fixes #15480
* Began work on handling panel type switching and keep
setting
* Fixed unit tests
* Fixed gauge issue that will require migration later and
also value options editor did not handle null decimals or
0 decimals
* Added missing Gauge props
* Bar gauge icon updated
* Added bar gauge icon
* Began work on adding options
* Added basic tests
* bar-gauge storybook
* Began experimenting with a bar gauge
* Also remove nested options prop that was there due to bug
* Moved gauge value options into a sub oject and made editor
more generic, will be moved out of gauge pane later and
shared between singlestat, gauge, bargauge, honecomb
* Added a ReactPanelPlugin as the interface that react
panels export, this way react panels have clearer api, and
gives us hooks to handle migrations and a way for panel to
handle panel changes in the future
* Changed how react panels store their options
* Fixed prettier issue (#15471)
* Initial commit
* Added bar gauge icon
* Began work on adding options
* Added basic tests
* run db tests in all packages
* bar-gauge storybook
* new dark-3 became new dark-2, created new lighter dark-3,
changed panel-bg, empty-cta etc to dark-2
* Began experimenting with a bar gauge
* docs: suggested changes
* docs: fix header
* fixed handling of alert urls with true flags, fixes #15454
* Fixed dashboard navbar buttons being visible in
fullscreen, fixes #15450
* Added missing strict type checking options to grafana/ui
and fixed type errors
* Extracted common code for diff calculation
* fix spelling error
* whats new: rename security section
* Fix percent_diff calculation when points are nulls
* Restored loading spinner to DataPanel
* rearrange bullet points in PR template
* added another error message scenario
* link to contributing guidelines in pr template
* Fixes to error handling and clearing, also publishing of
legacy events so old query editors work with react panels
fully
* contributing: adds link to help wanted label
* contributing: adds link to our CLA
* removes testing instruction from contributing doc
* docs: move alerting above session
* docs: mention samesite setting
* increased blue in dark-1-5, dark-3 and dark-4
* docs: adds note about new login cookie name
* changed color for blue light in light theme + small
changes in naming etc
* Add missing nodemon dependency
* make bug/feature titles more verbose
* mentioned closes/fixes for new features
* docs: improve removal of session storage for what's new in
v6.0
* docs: add upgrade notes for v6.0
* docs: add note regarding auth proxy and user session
requirement
* docs: fix typo
* removed more unused variables, restyled scrollbar
* allow 90 percent of alertTimeout for rendering to complete
vs 50 percent
* Fixed issue with sass variables used from typescript, the
prettier lowercases export variables
* using error callback from datapanel instead
* docs: add availability note regarding non-compliant
providers
* Fixed sass vars template files
* Added deprecation warning to npm watch script - use start
script instead
* added new dark variable to dark theme(the color used for
page-bg), changed some backgroud colors that doesn't use
variables to use variables, made some slight tweaks to
dark variables, fixed so item hover is the same as card
hover
* Simple CLI for running grafana in dev env
* Added common theme variabless generation, created
GrafanaThemeCommons interface
* contributing: improve guide for bug fixes
* Changed devenv default data source to testdata
* added support for influxdb non_negative_difference
function in tsdb
* added support for influxdb non_negative_difference
function in tsdb for alerting
* Remove precommit from npm scrips
* More files that has fixed with prettier
* Added prettierignore and check script
* devenv: use grafana:dev image in ha test per default
* devenv: send nginx logs to loki in ha test
* devenv: proper fluentd conf for grafana and loki
* devenv: use grafana/fluent-plugin-loki
* devenv: trying to make fluentd with inoffical
fluent-plugin-loki work
* fixed issue with updatePopperPosition
* Prettier had not been running as a precommit hook for some
time so had to run in on all files again
* removed _plugins.scss and _settings_permissions.scc,
removed unused classes in _login.scss, reduced dark
variabels in light theme and alignied light theme a bit
with dark theme, turned blue-gray, dark-3 and panel-bg
variables into one variable and removed gray-7 in dark
theme
* feat: Add EmptySearchResult ui component and use it in
VizTypePicker
* Revert 'feat: Add css-support for invalid form input
elements'
* Revert 'feat: Highlight vizpicker input when there are no
panels matching the search query'
* Regenerating variabless sas on theme edit v1
* Fixed a minor plugin json lingering issue
* Removed some icons in action button Trying to align some
title case issues
* implement show error in panelcorner
* Forgot about the snapshots
* Renamed to FilterInput and added label and search icon
* feat: Highlight vizpicker input when there are no panels
matching the search query
* Updated a few plugin json files with dataFormats
* feat: Add css-support for invalid form input elements
* remove comments
* bubble error from datapanel to panelchrome
* Changed noQueries to a dataFormats array that will allow a
panel to define supported formats and prefered (first in
array)
* use authtoken for session quota restrictions
* Fixed issues with double page body and husky pre-commit
hook
* fix: No need to have edit permissions to be able to 'Save
as' a dashboard
* Revert 'chore: wip: Replace brace with ace-builds to get
latest version of ace'
* chore: wip: Replace brace with ace-builds to get latest
version of ace
* fix: Error tooltip should have white text on red
background. Not red text on red background
* Move explore selectors to a separate file
* removes unused session code
* chore: Rename renderPanel to renderPanelBody
* chore: Rename renderDataPanel to renderPanel
* chore: Rename renderHelper > renderDataPanel and move
logic to smaller functions
* chore: PR feedback, shorten boolean check
* chore: Rename isDataPanel to noQueries
* chore: Only show Queries tab for panel plugins with
isDataPanel set to true
* feat: Only use the DataPanel component when panel plugin
has isDataPanel set to true in plugin.json. And fix
PanelData when using snapshots
* feat: Add util to convert snapshotData to PanelData
* feat: Introduce IsDataPanel attribute to plugin.json
* fix: Add missing typing
* Fixes #15372 with number input and parseFloat
* Revert 'hard move'
* chore: PR feedback, shorten boolean check
* chore: Rename isDataPanel to noQueries
* Merge with master
* Found another input that was tied to a regexp
* Fixes bug #12972 with a new type of input that escapes and
unescapes special regexp characters
* enable testing provsioned datasources
* Fixed elastic5 docker compose block
* Added one more test case for color resolving helper
* Fix error caused by named colors that are not part of
named colors palette
* Fixed issue with gauge requests being cancelled
* Update package.json
* changelog: adds note for #15363
* Move deduplication calculation from Logs component to
redux selector
* style tweak to alert
* Removed plus icons
* hard move
* restoring green CTA
* Removed double page container
* chore: Only show Queries tab for panel plugins with
isDataPanel set to true
* Removing default thresholds values.
* adds edition to build_info metric
* Updated lint-staged
* changelog: adds note for #14623
* Fixed double page class on api keys and org details page
* Color tweaks
* azuremonitor: don't use make for maps and array
* changed back to old green in light theme
* changelog: add notes about closing #15258
* changelog: add notes about closing #15223
* changelog: add notes about closing #15222
* changelog: add notes about closing #15122
* changelog: add notes about closing #15219
* changelog: add notes about closing #14432
* update changelog
* changelog: adds note for #15131
* changelog: add notes about closing #15284
* Fixed issue with light theme introduced by #15333
* devenv test dashboard
* minor style update
* revert ds_proxy timeout and implement dataproxy timeout
correctly
* changelog: adds note about closing #15295
* azuremonitor: fix auto interval calculation on backend
* Minor style fixes
* Remove not related code
* make sure opentsdb takes dashboard timezone into
consideration
* make sure influx takes dashboard timezone into
consideration
* Do not read store state from toggle panelaction creator
* make sure graphite takes dashboard timezone into
consideration
* Review changes
* return series label if selected stat is name
* Fix plugin loading failure message not being displayed
* fixes invalid folder check
* extract notifiers folder creation to new if statement
* interval: make the FormatDuration function public
* Fixed missing time axis on graph due to width not being
passed
* make sure notifiers dir exists for provisioning in docker
* should be able to navigate to folder with only uid
* renames usage state name for auth token
* Clear visualization picker search on picker close
* Update README.md
* changelog: adds note about closing #15288
* v1
* removed extra semi-colon
* Commented out the Loki dashboard query editor
* added old green to dark-theme
* Fixed issue with logs graph not showing level names
* set secondary to new blue
* removed unused directive
* Fixed issue where double clicking on back button closes
sidemenu
* changelog: add notes about closing #8570
* update changelog
* changelog: add notes about closing #14233
* changelog: add notes about closing #15189
* changelog: add notes about closing #13324
* azuremonitor: small refactoring
* azuremonitor: handles timegrain set to auto on backend
* Navbar back button, no title edit this time
* provide time range to angular query controllers
* azuremonitor: add test for dimension filter
* azuremonitor: refactor azure monitor api code into own
file
* azuremonitor: handle multi-dimensions on backend
* use timeSrv in metricFindQuery as timeRange
* remove unnecessary spy
* azuremonitor: add support for aggregations on backend
* Fix formatting
* Add aws ec2 api metrics for cloudwatch
* Improve usability showing disabled lines in forms
* Fixed issues with plus button in threshold and panel
option header, and current state in viz picker, fixes
#15329
* support three letter hex color strings
* azuremonitor: simple alerting for Azure Monitor API
* use unique datasource id when registering mysql tls config
* azuremonitor: builds a query and sends it to Azure on the
backend
* mark packages as Apache license
* Minor refactoring around theme access
* Use TS instead of JS to store theme variables@next
* Do not use js theme variables in sass (poor dev experience
for now)
* Update config mock in metrics panel controller test
* ldap: refactoring.
* ldap: fixes #14432. Fix for IPA v4.6.4
* ldap: adds docker block for freeipa
* feat: Only use the DataPanel component when panel plugin
has isDataPanel set to true in plugin.json. And fix
PanelData when using snapshots
* feat: Add util to convert snapshotData to PanelData
* feat: Introduce IsDataPanel attribute to plugin.json
* fix: Add missing typing
* slight tweaks
* fixed explore width-0 issue, fixes #15304
* Persis deduplication strategy in url
* Support ANSI colors codes in Loki logs
* adds usage stats for sessions
* Panel edit navbar poc
* make sure to create provisioning/notifiers directory for
deb and rpm packages
* log root cause error when reading from provisioning
directories
* moves usage stats sender to new package
* changelog: add notes about closing #15291
* Removed unnecessary code from ColorPicker and extended
theme type
* Selecting theme variable variant helper function
* added reducers tests
* update docs
* added way to test action called from react component
* Added annother initDashboard test
* removes cleanup setting from docs
* make hourly cleanup the default behavior
* fix single gauge
* removed direction and series mode options, cleaned up the
code somewhat
* Simplified condition
* support json format templating
* support /api/v1/labels
* devenv: update ha test and load test
* run token cleanup job when grafana starts, then each hour
* Added another error object message detection
* Fixed some remaining issues
* Improved dashboard page test
* Improved dashboard page test
* Big refactoring for dashboard init redux actions
* Fix SemVersion.isGtOrEq
* making changes suggested in review and improving typings
* fix
* show timeseries label under gauge
* Minor cleanup
* Added test for SASS variable retrieval function from JS
definition
* Updated stories to use new theming
* move authtoken package into auth package
* vertical and horizontal, removed mode option
* move UserToken and UserTokenService to models package
* Add failing test
* Rename version_test to version.test
* change UserToken from interface to struct
* replaced some hex values with variables
* some changes i forgot to save in first push in
variables.dark
* removed trailing whitespace
* removed unused theme variables, removed empty sections,
aligned the order of sections in the files
* combine mode with avg value
* Fix issue with graph legend color picker disapearing on
color selection
* changelog: add notes about closing #12546
* Added a basic test for initDashboard thunk
* docs: update annotaions http api
* azuremonitor: improve autocomplete UX
* Added DashboardPage tests that tests view mode transition
logic
* azuremonitor: fix autocomplete menu height
* Revert 'chore: Replace sizeMe with AutoSizer in
DashboardGrid'
* Revert 'chore: Remove react-sizeme'
* fix spelling
* wip: tests
* middleware fix
* enhanced expiration logic for lookup token
* changelog: add notes about closing #15265
* Address review comments
* auth token clean up job now runs on schedule and deletes
all expired tokens
* changes needed for api/middleware due to configuration
settings
* change configuration settings in auth package
* document login, short-lived tokens and secure cookie
configurations
* refactor login/auth token configuration settings
* remove unused code
* Added ServerlessDatabaseCapacity metric to list of AWS RDS
metrics.
* changelog: add notes about closing #8207
* Minor code simplification
* Delete template.html
* cloudwatch: Add tests for resource_arn template query
* cloudwatch: Add resource_arns template query function
Implements feature request #8207
* update to aws-sdk-go v1.16.15
* Updated add panel related flows
* Update types and themes usage in components
* Implemented theme context and renamed/moved theme related
types
* refactor panel
* changelog: adds note for #15182
* Breaking init dashboard up in to fetch & init
* stackdriver: fixes #15182
* Closing timepicker when clicking outside the picker
* Optimized so we only do checks when dropdown is opened
* stackdriver: add some more typings
* Fixed so that we close angular TimePicker when user clicks
outside the dropdown
* Moved remove panel logic to dashboard srv
* first working draft
* Removed unused controllers and services
* Improved error handling
* fix: Update snapshot
* chore: Explore: Remove inner AutoSizer, spread the
size-object to width/height, change height type to number
* chore: Remove react-sizeme
* fix: Calculation issue with AutoSizer in explore
* chore: Replace withSize with AutoSizer in
explore/Graph.tsx
* chore: Replace sizeMe with AutoSizer in DashboardGrid
* Prevent viewers from going into edit mode
* Expand rows for panels in collapsed rows
* Basic loading state for slow dashboards
* Fixes #15223 by handling onPaste event because of bug in
Slate
* Fixed add panel should scroll to top
* minor layout change, simple render test
* azuremonitor: improve autocomplete experence
* docs: fixes #14940
* Added custom scrollbar and remember scroll pos to jump
back to same scroll pos when going back to dashboard from
edit mode
* created new color variables, changed primary to blue,
changed success-btns to primary-btns.
* azuremonitor: more autocomplete suggestions for built-in
functions
* Updated playlist test
* added missing typing to explore props
* added comment to initDashboard
* improve the stackdriver logo
* Fixed so onBlur event trigger an QueryChange and
QueryExecute if values differ
* Renamed initialQueries to queries
* Added PATCH verb end point for annotation op
* move auth token middleware/hooks to middleware package
* auth package refactoring
* render after leaving fullscreen
* added flags to vizpicker from query param
* Added playlist controls to new react DashNav
* Fixed lots of loading flow issues and updated solo route
page
* Set page title on dashboard load
* now /api/login/ping returns Response
* Added handling of kiosk mode
* WIP Enable js defined theme to be used in SASS
* fix: Explore: Query wrapping on long queries #15222
* azuremonitor: fix where suggestions
* prepping go to visualization
* azuremonitor: use kusto editor for App Insights
* basic layout
* fixed unit test
* Made dashboard view state srv panel view state obsolete
* fix: Set ace editor min height to avoid problem with
scrollbar overlapping ace content #15122
* Missed to save
* fix: Data source picker in panel queries options should
overlap content below, including ace scrollbar #15122
* Fixed handling of orgId
* Fixed template variable value changed handling
* Fixed bug with removing a QueryRow thats not part of
nextQueries
* Now handles all dashbord routes
* Replaced intialQueris with queryKeys
* fix util for splitting host and port
* azuremonitor: where clause autocomplete
* azuremonitor: don't go back to dashboard if escape pressed
in the editor
* azuremonitor: suggest tables initially
* azuremonitor: add more builtin functions and operators
* Reverted redux-logger
* Added more typings
* added submenu, made sure submenu visibility is always up
to date
* changelog: add notes about closing #14231
* Removed modifiedQueries from state
* fixing logging action
* devenv: switching back using loki master plus various
fixes
* Fix save provisioned dashboard modal
* Merge with master
* Refactor of action, actionTypes and reducer
* More types and some refactoring
* Alignment of interfaces and components
* Removed the on every key change event
* Add AWS/Neptune to metricsMap and dimensionsMap
* added time picker
* refactorings and cleanup
* mssql: pass timerange for template variable queries
* improving dash nav react comp
* fixed panel removal
* Added more buttons in dashboard nav
* wip: progress
* Url state -> dashboard model state sync starting to work
* Dashboard settings starting to work
* wip: dashboard in react starting to work
* wip: minor progress
* wip: dashboard react
* base64 encode encrypted oauth token fields
* Add string quote func
* Remove option used to control within browser
* Remove length from text columns
* Add oauth pass-thru option for datasources
* did not add file, removing centerered
* Legend toggle should only trigger a re-render, not a
refresh
* first stuff
* updated snapshot
* Adding pointer to colorpicker
* Minor post review changes
* More style tweaks to panel option group add button
* Made some style tweaks
* setting margin on label
* Make runQueries action independent from datasource loading
* fixing test
* add button in header
* minor fix
* Made really good progress on loki support in dashboards
* Temporarily run queries independently from UI state of
explore panels
* Remove extra newline
* Clearify the Run from master instructions
* Use slate-plugins from app/features/explore
* Remove newline && runner plugins
* Move prism to app/features/explore
* Restoring explore panels state from URL
* Remove version.ts
* introduce samesite setting for login cookie
* sending paneldata to component, gauge can handle table
data
* always delete session cookie even if db delete fails
* New solo panel route working in all scenarios I can test
* Removed unused factory and fixed index based mapper lookup
* Fixed dashboard row title not updating when variable
changed, fixes #15133
* Removed comment from panel editor
* signout user if /api/login/ping returns 401 unauthorized
* must return json response from /api/login/ping
* adds more tests signing out session
* changes some info logging to debug
* wip
* tailing grafana logs and temporaily using an older build
* add missing ngInject annotation
* renames signout function
* delete auth token on signout
* typing data
* changelog: adds note about closing #10780
* Do not render time region line or fill if colors not
provided
* Fixed row options html template location, fixes #15157
* creating table data type
* wip: New react container route for solo panels that
supports both angular and react panels
* build: enterprise release co project.
* Fixed another type of fluent reducerFactory
* Moved dashboard state components to state folder
* Moved time_srv to services folder, this should not belong
to dashboard feature but it is too dependant on dashboard
to move it out now, needs a bigger refactoring to isolate
from dashboard
* Moved a few things around
* Removed then clauses, no need to test the test within the
test
* Updated what's new article
* Added reducerTester, reducer tests and tests
* Removed ActionTypes and fixed a
noPayloadActionCreatorFactory
* Replace usages of kbn.valueFormats with ui/getValueFormat
* Refactored Datasources as POC
* Fix anchor
* Added download links to docs
* Updated docs
* Updated version again
* Updated version and made some changes to changelog and
what's new article
* docs: Added version notice for time range variables
* Added loki video
* spell fixes
* chore: Add typings for react-grid-layout and
react-virtualized
* fix: Don't open panel menu when dragging (react-)panel in
dashboard #14946
* chore: Add missing typings in PanelResizer
* chore: Fix typings and remove bindings for arrow functions
in DashboardGrid
* Updated explore section again
* Updated explore section
* fixe merge issue
* updated what's new article
* adjusting types to match
* Add storybook script to run it from root dir
* Minor change to Action interfaces
* Simplified inteface for reducerFactory
* Fixed a small bug and added case sensitivity
* docs: whats new tweaks
* Added reducerFactory and tests
* Minor updates to text and image placements
* docs: add video link to what's new
* whats new: note about session storage
* first implementation
* Added actionCreatorFactory and tests
* whats new: provisioning for alert notifiers
* Rename SetInitialQueries action to QueriesImported
* Add missing code
* changelog: adds note for #15129
* docs: update to what's new
* docs: wip - what's new for 6.0
* Minor style fix to button group
* Fixed failing unit test
* Added basic docs
* Minor refactoring and adding some typing
* changelog: add notes about closing #14709
* fixed sqlite issue introduced by #14709
* Change primaryAggregation to crossSeriesReducer in
Stackdriver
* update changelog
* changelog: add notes about closing #12764
* fix: Remove legacy title-prop and update document.title
when navModel is changed #15108
* Explore: query field should not propagate non-text change
* Wait for queries to be imported before proceeding with
datasource change
* removing alpha
* Remove commented code
* Tweaked panel option group styles
* Import queries before datasource is changed
* fixed prettier on switch component
* adding from and to built in variables
* azuremonitor: adds macros to slate intellisense
* Fixed issue with explore changeTime redux action not being
hooked up, fixes #15115
* Fixed explore query editor styling issues
* azuremonitor: remove wrong completions
* azuremonitor: autocomplete on enter
* Progress on tooltip style update
* azuremonitor: fix tests
* devenv: loki provisioned datasource
* azuremonitor: revert 'memory for webpack build'
* Azure Monitor: replace monaco by slate with initial Kusto
syntax
* docker: block for loki
* Make language provider cancelable in Loki and Prometheus
QueryField, to avoid setting state on unmounted component
* Add util for handling promise cancelation to avoid setting
state on unmounted components
* stackdriver: remove beta notice from config page
* increasing font size on longer strings
* magic number solution
* Propagate event to onChange prop in Switch component
* two minor bug fixes introduced in recent refactorings
* Minor progress on react query editor support, solving
updating query persisted state
* did some styling changes
* Updated Explore query styles to align them to other query
editor to make them fit in better
* chore: Fix typings and add Page-component to
FolderPermissions #14762
* chore: Fix typings and add Page-component to ServerStats
#14762
* chore: Fix typings and add Page-component to AlertRuleList
#14762
* chore: Fix typings and add Page-component to
DataSourceDashboards #14762
* fix: Add plugins to StoreState interface
* chore: Fix typings and add Page-component to
NewDataSourcePage #14762
* chore: Fix typings and add Page-component to
DataSourceSettingsPage #14762
* chore: Fix typings and add Page-component to
FolderSettingsPage #14762
* test: Updated snapshot
* chore: Fix typings and add Page-component to TeamPages
#14762
* fix: Add pageName default to avoid 'Loading undefined...'
* changelog: adds note about closing #10487
* pkg/util/{filepath.go,shortid_generator.go}: Fix golint
issues
* pkg/util/{ip.go,url.go}: Fix some golint issues
* pkg/util/*: Add missing function comments.
* docs: updates docs to refer to using uid
* azuremonitor: increase memory for webpack build
* gofmt issue
* moves test files into testdata folder
* renames alert_notifications -> notifiers
* changelog: add notes about closing #14711
* update inline documentation
* extract parsing of datasource tls config to method
* extract tls auth settings directive from datasource http
settings directive
* changelog: add notes about closing #13711
* changelog: add notes about closing #5699
* Fix for annotations not clearing when switching
dashboards, fixes #15063
* Import fix
* build: ignore latest
* Spelling/grammar fixes in top level markdown files
* build: publishes armv6 to grafana.com.
* Removed the initial data source as I could not see it
being used anywhere
* Initialize named colors palete lazily
* Fix thresholds default colors not being applied
* removes unnessecary db request
* Making sure we do not pass a long invalid queries and save
to state
* single import for types from @grafana/ui
* tab/spaces formatting
* Revert 'Updated home dashboard, removed home dashboard
header'
* Fixed wrong line in test
* Made sure we only resetTypeahead if mounted
* Delayed explore query loading indicator and implemented
minor ux improvements to it
* fixing test
* support both uid and id for showing/removing notifiers
* Revert 'Use the same panel loading indicator in explore as
on dashboard's panel'
* Firing off an action instead of listening to location
changes
* Handle undefined graph and table results
* enable explore by default
* Use the same panel loading indicator in explore as on
dashboard's panel
* Prevents query result cleaning when new query trransaction
starts
* Changes after PR Comments
* Made ExplorerToolbar connected and refactored away
responsabilities from Explore
* Removed some split complexity
* Fixed some more styling
* Fixed close split look and feel
* Fixed position of Closesplit
* Fixed small issue with TimePicker dropdown position
* Simplified some styles and dom elements
* Fixed some more with the sidemenu open and smaller screens
* Fixed so heading looks good with closed sidemenu
* Restructure of component and styling
* Refactored out ExploreToolbar from Explore
* updating state if no panel
* updated the color palette
* Fixed reinitialise of Explore
* changelog: add notes about closing #13929
* changelog: add notes about closing #14558
* changelog: add notes about closing #14484
* changelog: add notes about closing #13765
* changelog: add notes about closing #11503
* changelog: add notes about closing #4075
* changelog: add notes about closing #14722
* update changelog
* changelog: add notes about closing #10322
* changelog: add notes about closing #12991
* update changelog
* Update datasource before the loading has started
* Add cursor pointer to color swatches
* Fixed import path
* changelog: adds note about closing #14701
* upgrade golang to 1.11.5
* moves timeout tests to an integration test
* Moving a few things from dashboard folder
* Correct formatting of sqlstore_test.go
* pkg/services/dashboards/dashboard_service.go: simplify
return
* Updated url query param encoding to exctly match angular
encoding
* Updated snapshot
* Added missing props not being passed to scrollbar
component, fixes #15058
* Parse database host correctly when using IPv6
* Document /api/health
* some working solution, needs refactor
* changelog: adds note for #15062
* Do not update color picker popover position on tab change
* change default rotate_token_minutes to 10 minutes
* Rename deprecation warning helper
* Implemented tests for ColorPickerPopover and
NamedColorsPalette
* fix
* load test/ha fixes
* set low login cookie rotate time in ha mode
* Fix light theme issues with named colors disabled
* Stories cleanup
* fix multiple piechart instances bug
* scripts/build/*: Fix some golint issues
* scripts/build/*: Fix golint issues Url => URL
* build: fixes building grafana completely within docker.
* dont specify domain for auth cookies
* monaco-kusto: fix imports
* use @alexanderzobnin/monaco-kusto package for kusto syntax
highlight
* New snapshot reflecting changes
* Makes the clickable side menu header look great in light
theme again
* org id fix for load test
* user auth token load tests using k6.io
* add global datasource proxy timeout setting
* moves cookie https setting to [security]
* Azure Monitor: build monaco with webpack WIP
* Use Switch to control y-axis in series color picker
* Move Switch component to grafana-ui
* improves readability of loginping handler
* Bug Fix #14961
* minor styling changes to gaps, font-size and width
* makes sure rotation is always higher than urgent rotation
* use defer to make sure we always release session data
* Enable custom picers on color color picker popovers (for
y-axis support in legend picker)
* feat: Use CustomScrollbar in explore #14752
* chore: Better comment
* chore: Remove comment and unneeded export
* fix: Enable -webkit-scrollbar related css when there's no
overlay scrollbar #14807
* fixes broken test
* Make series overrides color picker display correctly
* removes unused/commented code
* removes old cookie auth configuration
* makes auth token rotation time configurable
* Update story for NamedColorsPalette
* Update imports of NamedColorsPalette
* Restore missing styles
* Fixed issue with color name retrieval not being aware of
current theme
* Fixed dashboard import issue after move
* Moved add panel panel and renamed it to add panel widget
* Fixed react key warning for loki start page
* Moved row options to it's own component folder
* Removed old query inspector (that was opened by clickin
error in panel title) think the new query insector from
Queries tab can replace this old one.
* Moving files to better locations
* Disable query should trigger refresh
* added docs entry for check_for_updates config flag, fixes
##14940
* Loki query editor is starting to work, had to make changes
to explore query field in order to update query from the
outside without unmount between
* store oauth login error messages in an encrypted cookie
* Removed sass import of spectrum.scss
* replaced palette colors with current palette adjusted for
dark and light theme
* Remove spectrum.js vendor dependency from grafana/ui
* changed light-theme tool-tip to be a bit lighter, trying
different paddings
* Fix hide timeout for color picker
* Rename colorsPalette util to namedColorsPalette
* Make small swatches react to theme changes
* redirect logged in users from /login to home
* Explore: Fix scanning for logs
* Update styles of selected named color swatch
* restrict session usage to auth_proxy
* Implement pointer component for spectrum palette sliders
* minor updates
* Make default color picker close on trigger mouse leave
* Moved ad hoc filters and upload directive
* Added deprecation warning to old color picker API props.
Moved named color support handling to color popovers
* changed color for label tooltips from blue/red-yellow
gradient to black/white
* Moved dashboard srv and snapshot ctrl
* Moved share modal
* Moved dashboard save modals to components folder
* Moved unsaved changes service and modal
* Removed unused alertingSrv
* Moved view state srv to services
* Moved timepicker to components
* Moved submenu into components dir
* Moved dashboard settings to components
* Moved dashboard permissions into components dir
* Moved history component, added start draft of frontend
code style guide
* fix: Use custom whitelist for XSS sanitizer to allow class
and style attributes
* Reduce padding in color picker popover
* Began work on improving structure and organization of
components under features/dashboard, #14062
* Fix a typo in changelog
* Implemented new spectrum palette
* Update ROADMAP.md
* use resetfolder instead so it shows current folder
* Updated home dashboard, removed home dashboard header
* fixes nil ref in tests
* add setting for how to long we should keep expired tokens
* stores hashed state code in cookie
* creates new config section for login settings
* based on encodeURIComponent() using strict RFC 3986
sub-delims
* fix: Dispatch the correct action (#14985)
* passing middleware tests
* Stories update for color picker
* Make named colors optional in color picker, enable named
colors in graph legend series picker
* Storybook - add actions addon
* fixes:#14282 - Do not change folder for persisted
dashboards
* extract auth token interface and remove auth token from
context
* Fixed issues with the sanitizie input in text panels,
added docs, renamed config option
* build: removes arm32v6 docker image.
* Updated version in package.json to 6.0.0-pre1
* build: armv6 docker image.
* build: skips building rpm for armv6.
* build: builds for armv6.
* CustomScrollbar - expose underlying's
react-custom-scrollbars API to allow scroll tracks config.
* Explore: mini styling fix for angular query editors
* Removed unused props & state in PromQueryField
* chore: Remove logging and use the updated config param
* chore: Reverse sanitize variable so it defaults to false
* feat: wip: Sanitize user input on text panel
* fix: Text panel should re-render when panel mode is
changed #14922
* Minor rename of LogsProps and LogsState
* Splitted up LogLabels into LogLabelStats and LogLabel
* Make popover hide delay configurable to enable better UX
* Stories - fix import
* Enable new color picker in Gauge and Thresholds editor,
use ThemeProvider instead of ContextSrv
* Updated table tests to new behavior for colors (values are
always rendered as hex/rgb)
* Make named colors usable in angular code pt 1
* Story updates
* Update grafana/ui exports
* Refactor color picker to remove code duplicartion
(introduced colorPickerFactory). Allow popver position
update on content change
* Fix lint
* Updated stories
* Rendering arrows for color picker, applying color changes
to time series
* Fix TS errors
* Stories updates
* Unified color picker API, allowed for color specified for
theme selection, updated code to changes in
PopperController API
* Get rid of unused renderContent prop on PopperController
* Enabled knobs for storybook and implemented some stories
* Lint fix
* Render series color picker with correct theme
* Added config provider to be able to access config easily
from react components
* Migrating color pickers to Popper from drop.js pt1
* Updates to Popper to be positions correctly within window
* Move tooltip themes to Tooltip component making
Popper/PopperController theme agnostic
* WIP Basics of named color picker
* Refactored out LogRow to a separate file
* Removed strange edit
* Added link to side menu header and fixed styling
* Moved ValueMapping logic and tests to separate files
* more auth token tests
* Fixed data source selection in explore
* Added refId to missing queries on panel model init
* adds cleanup job for old session tokens
* Fixed loading of default query editor
* Changed null logic for range value mappings after PR
comments
* fix tests after renaming now
* Added check for null value in ValueMappings and added
tests
* s/print/log
* avoid calling now() multiple times
* passing auth token tests
* fixed trailing whitespace
* handle expired tokens
* fixed circleci script run path for gometalinter
* Fixed circleci name for gometalinter exec step
* moved script and added exit_if_fail
* Moved gometalinter to a script instead of seperate
commands in circleci file, removed megacheck and added
staticcheck
* set userToken on request when logging in
* moves initWithToken to auth package
* set cookie name from configuration
* Added function hasAccessToExplore in ContextSrv and
refactored tests
* change rotate time
* mixor fixes
* dead code
* fix ip address parsing of loopback address
* removes commented code
* moves rotation into auth since both happens before
c.Next()
* fix: Viewers can edit means that viewers have acces to
Explore #14281
* Add loop counter for full refresh in playlist
* decreased panel height in edit mode
* toggle collapse when clicking on collapse state text
* Query editor row style update & sass cleanup
* Delete .all.ts@neomake_22624_74.ts
* Further refinements of typings
* more typings work around data query and data source
* wip: progress on adding query types
* wip: more typings
* wip: typings
* Revert 'Specify expected encoding for access/secret key'
* Moved add query button to the right
* Updated removing notification channel by uid
* Check that alert notification with id already exists in
notification settings
* change enabled to true
* Fixed scrollbar issue where it jumped to the top
* Added test case dashboard
* fix: Hack for getting the same height in splitted view,
view could use refactor IMHO #14853
* Minor refactoring and name changes
* Fixed issue with explore angular query editor support
introduced by recent angular query editor changes
* Redid logic for fontcolor and thresholds in Gauge and
added tests
* Make sure we do not change -Infinity
* Passed the theme to Gauge
* Added tests for formatted value
* Small refactor of Gauge and tests
* Added typings and refactored valuemappings code
* Moved Gauge to ui/components
* Preparing move to ui/viz
* Fixed getFontColor, added tests and fixed thresholds logic
* Removed baseColor
* add timeout test for alert handling.
* remove maxage from session token
* fix broken code
* fix cannot set cookie when response is written
* began work on react query editor props and integration
* Added data source type to explore state
* updated snapshot
* renaming DataSource type to DataSourceSettings and moved
to grafana ui
* Fixed issue with team and user picker, fixes #14935
* Moved data source and data query types
* Moved plugin types to @grafana/ui
* log fix
* inital code for rotate
* wip: moved plugin exports
* build: usage instruction for repo test.
* build: comments
* Minor fix scrollpos when duplicating
* build: updates ci deploy.
* build: fixes the path for gsutil and gcloud.
* build: fixes permissions issue.
* removed unused props from angular query component
interface
* Additional query editor row tweaks
* Query editor row in react is working
* shortening callback functions
* Explore: Fix datasource selector being empty with single
datasource
* Scroll to top when visualization picker is opened
* Made scrollbar have scrollTop and setScrollTop props so we
can control scroll position
* build: only build amd64 for enterprise.
* azuremonitor: guard for when switching from monaco editor
* azuremonitor: move files into grafana
* Query editor row react progress, buttons working
* build: test script for rpm repo.
* chore: Replace the deprecated SFC with FC
* chore: Wrap footer with React's memo hoc
* chore: Reduce code duplication by letting the page
component adding the header and taking care of the page
title
* mini stylefix to select component
* cloudwatch.md - quick typo fix
* removing Label and going with FormLabel
* Use light theme in storybook
* Toggle edit mode works
* login users based on token cookie
* test: Update snapshots and mocks
* build: deb repo update test usage instructions.
* fix: Use Page component on 'Api Keys' and 'Preferences'
under Configuration
* build: uploads binaries before metadata in deb repo.
* feat: Generate page titles from navModel
* test: Updated snapshots
* chore: Better way of getting the body node
* chore: Reactify footer
* fix: Add Pages component to Plugins and TeamList
* fix: Configuration: Users should also use the Page
component
* feat: Possibility to change document title on pages using
the Page component
* fix: Add CustomScroller on DataSources page
* fix: Proper types for linter
* test: Snapshot update
* fix: Fix import path after Scrollbar move to @grafana/ui
* POC of page layout component
* Added uid to AlertNotification json
* Converted notification id to uid via fmt for old alert
notification settings
* Returned id for alert notifications which were created
without uid
* Formatted errors to err
* Using func InitNotifier for verifying notification
settings
* Added uid for alert notifications
* Renamed validation funcs for alert notification
* Commented alert_notifications sample config
* Instantiating notifiers from config before using
* Added parameter org_name of alert notification to
documentation
* Added orgName parameter for alert_notifications
* Added alert_notification configuration
* redoing input props
* another minor style change
* More style tweaks to thresholds
* fix: Manually trigger a change-event when autofill is used
in webkit-browsers #12133
* move styling
* renaming after pr feedback
* minor style change
* wip: testing new query editor row design
* Removed snapshot
* Refactored ValueMappings
* Moved ValueMappings to grafana/ui/component and renamed it
ValueMappingsEditor
* Moved Label to grafana/ui/components
* build: repo update testable and more robus.
* Experimenting with generating doc for ui component
* Move action properties to payload
* Fixed small bug with entries outside the min max values
* Fixed NaN issue when parsing
* Remove BasicGaugeColor from state
* Fixed so that we can not change base threshold
* Fixed so added threshold colors are always unique
* Fixed issue with changing value not changing index
* Fixed styling for small screens
* Reordered the input row
* Fixed the circle
* Fixed styling
* Refactored logic in ThresholdEditor
* File organization, action naming, comments
* Fix reducer issues
* Connect Explore child components to store
* Update comments
* Move types to types/explore
* Save state in URL and fix tests
* Allow multiple Explore items for split
* WIP Explore redux migration
* Fixed a bug with prefix and suffix not showing when using
value mappings
* fixing imports, minor fix on mapping row
* test and minor fix on mapping row
* updated snapshot
* Added suffix interpolation
* Scrollbar select fix
* Remove duplicated import
* Initial commit
* changelog: adds note for #14795
* Move ColorPicker leftovers to @grafana/ui
* inject login/logout hooks
* begin user auth token implementation
* utils
* fix: It should be possible to scroll in the unit picker
before selecting a value #14871
* fix go fmt
* [Feature request] MySQL SSL CA in datasource connector
https://github.com/grafana/grafana/issues/8570
* removes debug2 logging
* removes error2 logger
* WIP: good progress on react query editor support
* Updates to latest checking.
* 5.4.3 changelog
* changelog: adds ntoe about closing #12864
* fix that alert context and result handle context do not
use the same derived context.
* docs: add a title to the Explore docs
* stackdriver: converts some variables from any to types
* FormGroup component and implements
* Restored http settings directive that was hidden in an
unused angular controller page
* stackdriver: small fixes after reactifying
* changelog
* stackdriver: add help text for bucket alias
* Prometheus: Fix annotation step calculation
* stackdriver: fixes space before caret icon in query editor
* Fixed Syntax for folder permission's JSON
* avoid infinite loop in the dashboard provisioner
* build: fixes release problems.
* changelog: add notes about closing #5968
* wip: another wip commit
* Moved panel editing components to it's own folder
* removed old unused angular stuff, rename
* wip: react query editors
* Move panel width/height calculation to PanelChrome
* Updated singlestat to use new value format function syntax
and capitalized unit categories, fixes #12871
* build: build specific enterprise version when releasing.
* Fixed Gauge being cropped when resizing panel
* units: adds back velocity units. Fixes #14851
* Fix bug tls renegociation problem in Notification channel
(webhook) #14800
* Fix Error 500 on unexisting /api/alert-notification/<id>
* updated snapshot
* Minor renames and other fixes
* pushover: add support for attaching images (closes #10780)
* panel option section moved to grafana-ui and new panel
option grid component
* Simplified folder structure in grafana-ui lib
* Addedd assertions about raw time range when panel time
overriden
* Panel time override tests
* add feedback to what interval is being used (calculated in
the backend)
* use typings for ds and template srv
* value formats: another rename and updates code to use new
valueFormats func
* value formats: renamed folder
* Reverted move of defaults for GaugePanelOptions
* refactoring alias by
* Move Select styles to grafana/ui
* Moved defaultProps to ui/components
* Moved the rest of Threshold dependencies to ui/components
* Renamed Threshold files
* Renamed Thresholds to ThresholdsEditor
* Moved Thresholds and styles to grafana/ui/components
* Removed default export for colors
* Fixed typings
* Small change in SeriesColorPickerPopoverProps
* Moved colorpicker to ui/components
* Fixing test and small refactor
* Moving to grafana ui, fix issue with TestRuleResult
* Fix panel time overrides not being applied fully
* access scope directly from this. update tests
* build: makes sure all builds use the latest container.
* changelog: docker images for arm.
* Renamed Select related components: Picker* to Select*,
Option* to SelectOption*
* build: removes curl install from build.
* build: tags arm as well as amd64 as latest.
* Docker image for ARM
* Fixing TS and updating snapshot
* make sure frequency cannot be zero
* refactoring. fix broken test
* Migrate Select components to @grafana/ui
* provide angular directive scope props correctly
* docker: enable flux in influxdb docker block
* Moved Thresholds and styles to grafana/ui/components
* Update README.md
* 11503: escape measurement filter regex value
* 4075: Interpolate tempvar on alias
* rename
* fixing unitpicker
* removing tests
* React graph panel options component rename
* Minor refactor of Gauge panel
* Revert 'Docker image for ARM'
* Revert 'build: fixes docker push.'
* build: fixes docker push.
* feat: Add brand as tooltip theme and use it on panel edit
tabs #14271
* Docker image for ARM
* fix broken test
* chore: Remove ScrollBar component, superseded by
CustomScrollbar
* Update storybook static files option to load statics
correctly
* unregister event listener correctly
* Changes after PR comments
* Removed unused refClassNameprops from Propper
* Fixed a small bug when toggling items in toolbar
* build: deploys enterprise to its own repo.
* build: inline docs
* build: publishes beta releases to separate repos.
* refactoring
* build: makes repo update enterprise compatible.
* build: uses official deployment image.
* build: adds aptly and createrepo to deploy tools.
* build: handles unexpected cases.
* build: only adds the correct packages to the repo.
* build: rpm repo deploy.
* build: repo update input error.
* build: release of debs to our debian repo.
* Added tests for TestRuleButton
* Removed Test Rule button from Angular and view
* Added TestRuleButton
* Hint for user on when the repeat is applied
* Removes unnecessary warnings from webpack output about
missing exports
* Use factors for max repeated panels per row
* Fixing TS errors and updating snapshot
* Move Portal to @grafana/ui
* chore: Move sass code related to custom scrollbar into
@grafana/ui #14759
* Post merge updates
* chore: Move CustomScrollbar to @grafana/ui #14759
* changed light theme page background gradient
* WIP
* Max number of repeated panels per row
* wip
* Make tooltips persistent when hovered
* docs: rpm/deb beta repo.
* update snapshot
* add form grow
* fix: Clean up per PR feedback. Thanks @dprokop
* removing duplicated things
* minor code refactor
* splitting into more files
* Moved AlertTab and StateHistory to app/features/alerting
* fix: When loki is default data source, datasource is
passed as undefined to QueryOptions #14667
* remove redundant max-width. it's already declared in
gf-form-select-box__menu-list
* add typing for metric descriptor
* Removed unused Popover component
* Update components to fit updated PopperController API
* make templateSrv a prop
* Refactored withPoper HOC to PopperController using render
prop
* use correct event handler name convention. register
directive on startup
* fix: Remove the onRenderError prop and add an
ErrorBoundary component
* replace fragment with empty jsx tags
* refactoring tests
* ugly fix. will be removed later on
* adds note for #13914 and #14581
* moved all units
* fix: GraphPanel should be a PureComponent
* fix more broken tests
* feat: Display error when plot fail to render
* wip: fix broken tests
* adding more units and functions
* Remove the jump effect on run query button
* ugly temporary fix for scope issue. will be removed later
on
* refactoring
* fix filter bug
* fix: Light theme corner bg color update
* set max width on the whole menu list instead
* bind array instead of function
* feat: Add 'theme' to Tooltip
* Notify user on query error
* Revert 'Revert 'add max width to group header
description''
* Revert 'add max width to group header description'
* remove not used property
* fix broken tests
* use correct type for select option
* set issearchable default value to true
* make variable type more slim
* remove group name from select component. let the parent
set group name instead
* move component to components dir. also move directive
registration out from datasource
* add template variable type
* rename template variables prop
* rename selected prop
* rename searchable prop
* improve component performance
* add max width to group header description
* remove debug logging
* rollback test state to before template variables were
added
* cleanup
* move template variable logic to component
* remove extra arrow div
* fix condition that expands group if it has a selected
child. also make it possible to pass expanded as a prop
* align input widths
* remove console log
* rename directive
* remove linebreak
* remove old group heading
* use new generic picker
* remove on metric type change
* fix remove filter bug
* use same color for label as in explore dropdown
* cleanup query filter
* update failing tests
* remove redundant default value
* use new option group in aggregation directive
* remove redundant default value
* wip: add option group component
* wip: add basic option header
* Wrap react select component in angular directive
* updated scrollbar snapshot
* remove not used files
* Fixed new gometalinter issues
* fix JSON in responses for Admin API documentation
* 14722 - removing unnecessary arn check that breaks assume
role feature in other AWS partitions
* Fixed issue with cut legend in firefox & mobile devices,
fixes #14744 and #14489
* Some cleanup
* EqualFold()
* forgot go fmt
* pull connection string args from url instead
* Add mean on distribution as well
* docs: updated debian and centos repo.
* Fix stackdriver aggregation series merge
* first stuff
* Updated documentation for new macros
* Minor refactoring of EditorTabBody
* Fixed timepicker css issue introduced by PR #14700 and
remove hotfix from 297241c
* AlertTab style fixes
* Updated alert tab layout & markup
* Changed datasource list page default layout mode
* Fixed timepicker css issue introduced by PR #14700
* Added macros to mysql
* FIxed syntaxis mistake unixEpochNanoFrom and
unixEpochNanoTo
* Added previous macros to mssql
* Added unixEpochNanoTo and unixEpochNanoFrom macros to
postgresql
* Renamed unixEpochFilterNano to unixEpochNanoFilter
* cleanup
* add aggregation tests
* add tests
* Fix issue with value disappearing when selecting stat
* Fixing issue with value color being wrong
* initial design for way to build value formats lazily and a
backward compatability layer via Proxy
* fix template variable bug
* Don't cut off subsecond precision for postgres macros
* Nanosecond timestamp support postgresql
* remove not used file
* Fixed new gotmetalinter warning
* add support for defining additonal database connection
string args via extra_connection_string_args
* clear history
* cleanup. remove comments, not used files etc
* state history tab
* fix broken tests
* use correct type for select option
* set issearchable default value to true
* make variable type more slim
* remove group name from select component. let the parent
set group name instead
* move component to components dir. also move directive
registration out from datasource
* add template variable type
* rename template variables prop
* rename selected prop
* rename searchable prop
* improve component performance
* add max width to group header description
* remove debug logging
* rollback test state to before template variables were
added
* cleanup
* move template variable logic to component
* remove extra arrow div
* fix condition that expands group if it has a selected
child. also make it possible to pass expanded as a prop
* align input widths
* remove console log
* rename directive
* remove linebreak
* remove old group heading
* use new generic picker
* remove on metric type change
* fix remove filter bug
* use same color for label as in explore dropdown
* cleanup query filter
* update failing tests
* remove redundant default value
* use new option group in aggregation directive
* remove redundant default value
* wip: add option group component
* wip: add basic option header
* Wrap react select component in angular directive
* s/initialDatasourceId/initialDatasource/
* add alert in react instead of angular
* Fixed issues with panel size in edit mode, fixes #14703
* hide protip if not defined
* fix filter bug
* add help text component
* Tweak datetime picker layout for mobile
* Explore: Remember last use datasource
* Update yarn.lock
* Logs data model: add more log levels
* Review feedback
* Explore: fix loading indicator z-index on panel container
* Loki: change query row to be single field again
* Explore: logging UI style fixes
* Loki: query limit configurable in datasource
* Removed rxjs compat
* ldap: adds extra debug logging
* reactify annotation query editor
* adds orgId to user dto for provisioned dashboards
* Update rxjs
* closes the body properly on successful webhooks
* makes cache mode configurable
* Fix general tab typos
* added node-sass as dev dependency, needed after I removed
grunt-sass
* Husky and sasslint fixes, fixes #14638
* Added a form component to @grafana/ui
* created visualizations folder
* Fixed JQuery typing issues
* Typings issues
* wip: moving react graph component to grafana/ui
* Don't do a full frontend release build in test-frontend
job, added typescheck (tsc noEmit) instead, fixes #14639
* Moved sass for component to @grafana/ui lib
* Moving a couple of types to @grafana/ui
* Testing moving out one type to grafana/ui
* Increased margin between controls in logs panel, fixes
#14637
* Fixed dashboard links not updating after variable or time
range change, fixes #14493
* Fixed group button tooltip placement from auto to bottom,
fixes #14634
* Removing erroneous backtick in docs
* Updating docs for auth_proxy whitelist CIDR support
* Add timestamp back to log entry type
* Update
public/app/plugins/datasource/loki/result_transformer.ts
* Loki: fix timestamp field
* Fixed panel height & scroll issue with flexbox in firefox,
fixes #14620
* remove segment srv prop
* use ds template srv reference
* remove not used stuff
* add event handler
* add help component
* Add support for InfluxDB's time zone clause (backend)
* note to future me
* delete works
* grunt test task update
* Add support for InfluxDB's time zone clause
* @grafana/ui lib now contains one components, seperate lint
& tsc steps
* changelog: add notes about closing #14519
* Grafana ui lib is starting to work
* typings and renamings
* breaking up grafana into multiple packages poc
* add project and help component
* add alias by component
* add alignment periods component
* cleanup aggregation picker
* move alignment population code to parent component. make
alignment a stateless component instead.
* flatten target obj
* Grafana ui library poc
* elasticsearch: support bucket script pipeline aggregations
* Add units for blood sugar concentration 💉
* on deselect when reducer is set to none
* add alignment component
* Fixes undefined issue with angular panels and editorTabs
* changelog: adds note about closing #14562
* refactor aggregation picker
* use render props pattern
* Update field name
* Add documentation
* use template variable prop
* cleanup
* Rename the setting and add description
* export init notifier func
* render editor toolbar buttons
* Increase recent and starred limit in search and home
dashboard, closes #13950
* changelog: adds note about closing #14486
* Panel help view fixes
* rewrite angular view
* Add min/max height when resizing and replace debounce with
throttle
* changelog: adds note about closing #14546
* Adding tests for auth proxy CIDR support
* fix only add column if not exists for mysql
* changelog: adds note about closing #14109
* fix handling of indices with multiple columns (mysql)
* fix only create/drop database indices if not exists/exists
* fix signed in user for orgId=0 result should return active
org id
* Another take on resizing the panel, now using
react-draggable
* only update session in mysql database when required
* Raise datasources number to 5000
* improve component performance
* add max width to group header description
* copy props to state to make it visible in the view
* remove debug logging
* rollback test state to before template variables were
added
* cleanup
* move template variable logic to component
* remove extra arrow div
* refactor to not crash when no links
* updating snaps
* renaming component
* panel help working
* snapshots: Close response body after error check
* fix condition that expands group if it has a selected
child. also make it possible to pass expanded as a prop
* align input widths
* Update sample and default configs
* Add OAuth provider flag to indicate if it's broken
* Register BrokenAuthHeaderProviders if needed
* Add units for Floating Point Operations per Second
* remove console log
* rename directive
* remove linebreak
* remove old group heading
* use new generic picker
* remove on metric type change
* fix remove filter bug
* use same color for label as in explore dropdown
* cleanup query filter
* update failing tests
* remove redundant default value
* use new option group in aggregation directive
* remove redundant default value
* wip: add option group component
* wip: add basic option header
* Wrap react select component in angular directive
* Minor update
* Make sure panel id is unique since some datasources
(Graphite) will cancel ongoing requests with the same
panel id
* changelog: adds note about closing #14548
* Adding CIDR capability to auth_proxy whitelist
* Minor cleanup now that angular panel edit is no longer
* Gauge option form markup fixes
* toolbaritems viztab
* filter out table responses that don't have columns and
rows
* enable goto explore from query panel editor for all
datasources
* started with component for generic panel help
* moves migrations to /sqlstore/migrations
* adds integration tests to ci build
* renames main lock function
* clean up integration tests
* change from db_text to nvarchar
* adds server lock package
* initial verison of server lock
* Minor react graph panel refactorings and fixes
* sorting tests for change value
* Fixes issues with user and team picker
* fixing coloring
* upgrade to golang 1.11.4
* remove printed index
* updating test
* adding threshold
* Refactoring react graph
* updated dropdown typeahead to place down instead of up,
works better when inside scrollable area
* minor style tweak
* propagate initial state back to explore query runner
* Update gitlab.md
* Update github.md
* minor style fixes
* Updated snapshot
* Switched to react-select fork
* ldap: upgrades go-ldap to v3
* table: fixes #14484. Renders epoch string if date column
style
* changelog: adds note for #14483
* Fix for no metrics panels, now goes to viz tab and does
not show queries tab
* minor style fix
* minor change to table panel edit options
* minor tweaks to text panel
* Fixes and cleanup
* Show predefined time ranges as first in timepicker on
small screens
* code cleanup in add panel, and switched off grid css
transforms to fix z-index issuse
* minor tweaks to alert tab
* fixed name of alert tab
* removed unnessary test
* updated add panel a bit
* minor style fix
* updated snapshot
* fixes to unit picker
* updates on thresholds component
* remove check on axis.used in flot #13765
* Added custom scrollbar to select component
* removed a test that isn't neccessery any more
* replaced content in addpanelpanel with three buttons that
can create new panel, paste copied panel, and add a new
row, to paste panel one must copy one first, code is still
quite rough
* fixed cloudwatch issue
* select refactor fixes
* gauge working without thresholds
* changin colors
* explore using data source picker
* fixing issue with copy invite link
* getting closer with no thresholds
* renamed folder to select
* User picker using common select componnet
* wip: unifying select components
* fixing input unit test failure
* fixed issue with switching panels
* refactored panel-option-section into react component
* removed console log
* updated styles
* starting with threshold refactor
* wip: convert angular directives to react components
* wip: style change progress
* Update latest.json
* wip: styles are starting to come together
* wip: styles
* wip: testing new styles
* wip: style changes
* fixed ordering changing panel types, fixes issues with
loading panel options
* moving min/max to gauge options
* log error when resolvePath
* wip: minor style changes
* wip: changes
* break out metric picker and filter
* migration: renames logging ds to loki ds in data_source
table
* loki: updates the logo
* fixing tests
* mixing color when
* wip
* wip
* remove on metric type change
* things are working
* fix remove filter bug
* use same color for label as in explore dropdown
* cleanup query filter
* changelog: add notes about closing #8843 #11175
* fixed unit tests
* update failing tests
* remove redundant default value
* wip
* wip
* redone state
* display value map or range map
* add oauth_auto_login setting to defaults file
* use new option group in aggregation directive
* wip
* remove redundant default value
* Adding mixed query
* Check with lowercase
* wip metrics tab changes
* changelog: adds note about closing #13754
* wip: making things work again
* React-select refactorings
* wip: add option group component
* wip: add basic option header
* wip: react select css refactoring
* docs: fix broken link on explore page
* wip
* changing type and started on Gauge
* fix threshold test
* Adding label
* styling on dropdowns
* Using drop down instead
* Filter tags select box on text input #14437
* fixed id bug
* Using an id to identify mappings
* Change KeyboardNavigation from hoc to render prop
component
* Clean up hoc and extend component props automatically
* Let VizTypePicker use the keyboard navigation hoc
* Moved more metrics tab to react
* Wrap react select component in angular directive
* Don't show heading for first tab
* snapshots: Add support for deleting external snapshots
* docs: explore
* snapshots: Move external snapshot creation to backend
* snapshots: Add external_delete_url column
* Add keyboard navigation to datasource picker via a hoc.
* Use react's onKeyDown event on the input instead of event
listener on document
* Explore: Improved line parsing for logging
* fixed typings and remove
* updated publish script
* Unmount component when fading out to reset its state, such
as search..
* Variable rename. Did not make sense at all.
* Fix styling for vizPicker keyboard nav and change so only
arrow up/down is OK to use
* fixed styling
* Start adding keyboard navigation to VizPicker
* use links instead of bridge network
* fix time regions bugs
* fixed issue with colorpicker position above window, fixes
#14412
* fixed issue with singlestat and repeated scopedVars, was
only working for time series data sources, and only if
there was any series, now scoped vars is always set, fixes
#14367
* fix search tag issues, fixes #14391
* Clear query models when changing data source type, fixes
#14394
* fixed issue with grid responsive mode
* fixed max height issue not being respected by react select
dropdown
* removed side menu for column styles, added small header to
column styles with a border
* Use correct variable name in fail text
* Fix search field styles
* Enable search also after editing
* Explore: Split logging query into selector and search
* Fix logs panel meta wrap
* Explore: dont pass all rows to all rows, fixes profiler
* Explore: Logging dedup tooltips
* Explore: Hide scanning again after result was found
* Explore: Fix timepicker inputs for absolute dates
* Switch to global match for full browser support of escaped
custom vars
* Allow backslash escaping in custom variables
* Fixed issue with logs graph and stacking
* align yellow collor with graph in logs table
* minor style change
* Add the AWS/SES Cloudwatch metrics of BounceRate and
ComplaintRate. Pull request #14399
* logs style polish
* allow sidemenu sections without children still have a
hover menu/header
* explore logs options styling
* transparent toggle style and new button group style
* Toggle buttons
* render a value mapping row
* removed side menu from display options, kept overrides in
display options, moved thresholds and time regions to its
own section in visualization
* changelog: adds note about closing #11221
* removes unused code
* fixes merge error
* remove result format. might add this later
* filter out build in datasources. add unit test
* click on dashboard title moves you back to dashboard
instead of search
* graphInterval needs to update after query execution, fixes
#14364
* Explore: Parse initial dates
* Aligned styling of stats popover/box with rest of grafana
& minor css refactoring
* Remove Explore > 'New tab' from sidebar
* initialize empty variables array in constructor so that
datasources can use the array in explore
* Prometheus: Make result transformer more robust for empty
responses
* add table support flag in influx config
* add scoped vars to query options
* Rebase fixes
* Explore: Logging line parsing and field stats
* fixed unit tests
* made unknown color theme aware and sync with graph color,
some minor cleanup
* initial stuff
* Explore: improve error handling
* use render props instead of cloneElement
* sort of a hacky way to figure if the small variation
should be used for the label
* add basic button group component, using the the same label
style as is
* Restore PluginEditCtrl accidently removed
* explore logs styling
* wip: alternative level styling & hover effect
* wip: explore logs styling
* more detailed error message for loki
* If user login equals user email, only show the email once
#14341
* UserPicker and TeamPicker should use min-width instead of
fixed widths to avoid overflowing form buttons. #14341
* wip: explore logs styling
* restoring monospace & making sure width are correct when
hiding columns
* fixed logs to time series calculation issue, increased
bucket size, fixes #14248
* Always open panel links in new window if user asked for it
#14333
* Changing from PureComponent to Component to re-render on
link updates made in Angular #14333
* minor tweaks, now table renders faster and changes less on
second stage rendering
* explore logs css refactoring, step1
* explore logs styling poc, WIP
* Fix transparent option #14333
* Add prop key to panelPropsString to avoid a bug when
changing another value and the render doesnt trigger
* loki: adds proper error handling for config page
* renames Grafana Logging ds to Loki
* Pass some panel props down as strings to trigger render
#14333
* Trigger panel.render on title, description, links change
#14333
* Put issue number to test code
* Fix bug what updating user quota doesn't work
* Fix bug what updating org quota doesn't work
* public/app/plugins/*: Fix some misspell issues
* public/sass/*: Fix misspell issue
* public/app/features/*: Fix some misspell issues
* public/app/core/*: Fix some misspell issues
* README.md: Fix small typo
* fix snapshots
* Added isDefault switch on settings
* fix to switch component
* Rename BodyPortal to Portal and accept prop 'root' which
is where the portal should be placed
* Create a portal and use it with our popper component
(tooltip and popover) to avoid potential
overflow-/zindex-bugs
* add icon
* explore data source selector fix
* Update css to use the border-radius variable and add a new
variable for the popper's distance to its ref
* Update README.md
* fix for panel-initialized event not being called
* refactored and added tests for panel model remember
properties
* redact value for plugin proxy routes
* pkg/*: Fix misspell issues
* fix for panel embedding. Solo panel height was not
correctly set. Made panel--solo into panel-solo class. in
develop branch we have remove the need for the panel class
* added support for influxdb cumulative_sum function in tsdb
* Use buildTableConstraint instead of buildSchemaConstraint
to find the datatype of a column if using a table from a
different database schema
* Readme: We should write Node.js the same way in all places
in the readme
* Small tooltip css-adjustments and add css for position
'bottom-start' used by the panel header corner
* Explore: Display duplicate row count as number
* Adapt styles
* Explore: Logging query live preview of matches
* added max-widths to explore start pages boxes
* Alert tab fails when datasource method
targetContainsTemplate doesnt exist #14274
* improve comments
* fixed promql and loggging syntax so all punctuation chars
are treated the same, remove hover move
* remove all query empty related code. root cause of the
problem was to fix hasNonEmptyQuery
* Let the cached props from previous visualization be the
masters, unless specified in keepLatestProps const
* POC on how to save away settings from a viztype and
restore when switching back to it #14274
* remove redudant spread
* Set query empty condition in render function. Also clear
query transactions when no valid query is present
* Remove query empty from model
* fixed logging start page
* Use popover styles for stats popover
* Fine tune stats styles
* Tests for label stats calculation
* Explore: Logging label stats
* stop scanning when clear all button is clicked
* build: update latest when pushing docker.
* Use origin meta
* only display scan button if there is at least one existing
selector that returned an empty result
* minor refactoring
* Explore: return to grid layout for logs table
* Add VizPicker search #14274
* changelog: add notes about closing #11067
* fixed grabage in markup
* fix: align input backgrounds for code editors
* fixedUnit for Flow:l/min and mL/min
* feat: #11067 prevent removing last grafana admin
permissions
* another style fix for broken dark theme word highlight
* fix time regions using zero hours
* Misc styling fixes to explore: start page, slate code
editor colors, text highlight in auto completeter
suggestion
* Revert commit
* only make it possible to scan for older logs if there is
at least one non failing selector
* update package.json to next version
* Stick to .tsx? for babel file test
* changelog: add notes about closing #13815
* changelog: add notes about closing #14246
* arrow function
* changelog: add notes about closing #12653
* fix for add/remove labels
* Hid 'Forgot your password' link from login menu when reset
is disabled
* Prevent password reset when login form is disabled or
either LDAP or Auth Proxy is enabled
* fix for initial options
* minor css fixes
* update changelog
* update latest.json to latest stable version
* new stable docs version
* minor css fix
* redid props for gauge options
* dataproxy: Override incoming Authorization header
* changelog: add notes about closing #14228
* Explore: Show logging errors from backend
* change obj order when merging so that correct format is
being used
* Explore: Fix logging query parser for regex with
quantifiers
* Update README.md
* Fixed typo in function name
* Explore: Fix label and history suggestions
* tidy import
* let each sql datasource handle timeFrom and timeTo macros
* style changes for panel placeholder (move and resize)
effect
* never load fallback query field. remove commented code
* add an error alert component that will be displayed when
there was an error loading ds in explore
* fix: minor style changes, removed hover scale increase
* react-panel: Add nullcheck to prevent error on datasources
without meta options
* react-panel: Options button should always be enabled now
when Time Range-options are there
* react-panel: Move time range options to its own component
and render it under the options button instead
* created color enum
* make sure target obj is not destructured so that angular
copy of objected can be mutated
* Review feedback
* react-panel: Add test for Input with validation on blur
* react-panel: Input validation should be optional
* react-panel: Clean up input validation and increase code
readability
* react-panel: Time range options moved to 'Queries' tab
* react-panel: Remove mock response button for now
* react-panel: Remove comments and improve readability in
render()
* react-panel: Use correct type for children prop to avoid
the use of fragments <></>
* react-panel: Remove json-formatter-js since we will
continue with the 'patched' version
* react-panel: Move all query inspector logic into
QueryInspector component and start with the 'Mock
response'
* react-panel: Toggle Expand/Collapse json nodes in Query
Inspector
* react-panel: Add CopyToClipboard-component and separate
QueryInspector to its own component from QueriesTab
* react-panel: Trigger panel refresh when opening inspector.
Add loading-message
* react-panel: Replace JSONFormatter npm package with the
current monkey patched JsonExplorer
* react-panel: Clean up the JSONFormatter and make sure it
updates both on mount and when props update
* react-panel: Get real datasource query for query inspector
* react-panel: Create component for JSON formatting and use
it on query inspector
* changelog: add notes about closing #14167
* make getAll return array instead of object
* remove obsolete test
* Update README.md
* Add AWS/CodeBuild namespace for CloudWatch datasource
* Fixed styling issues with new checkbox style
* Fix other misspell issues
* docs/*: Fix misspell issues
* CHANGELOG.md: Fix misspell issues
* Explore: Logging render performance
* remove log
* min and max value
* update gauge on remove threshold
* user added thresholds state
* console logs and code layout
* pass data correctly to event handler
* revert Label change
* update color on gauge when changing
* remove explore check - make it possible to load all
datasources
* add table support flag for stackdriver
* add table support flag for prometheus
* add table support flag for postgres
* add table support flag for opentsdb
* add table support flag for mysql
* add table support flag for mssql
* add table support flag for logging
* add table support flag for graphite
* added google_tag_manager_id from defaults.ini
* removed extra whitespace
* Update export_import.md
* added new icons, fixed so different icons in different
themes, added animation to hover on icons, styled choose
visualization and datasource for both themes, made som
styling adjustments to whole panel editor
* sorting tests
* remove border
* color indicator
* add new flag in order to be able to indicate whether the
datasource has native support for tables
* prevent explore from crashing when table is not present in
response
* Explore: Logging label filtering
* Logging: fix query parsing for selectors with multiple
labels
* using percentage to not hide search when smaller screen
* build: explaining the linux build.
* check for null with toLocalString (#14208)
* Fix elastic ng-inject (build issue) (#14195)
* add current editor to panel targets
* Added stop scan button
* Explore: Scan for older logs
* color picker
* remove time srv initialization
* restructure imports
* get intervals from explore function
* unregister all query editor event listeners
* remove comments
* temp remove until stackdriver implements explore
* sort on value
* use default range from time picker
* Requested Backend changes, removed link in popover
description for the offset field
* Remove confusing <> from variable intro
* includes ranges correctly in the options object
* docker: Upgrades base packages in the images.
* small fixes
* logic for adding rows, styling
* chore: correct pause-all-alerts auth in docs
* Requested Backend changes, added details to popover
description for the offset field
* Explore: Fix JS error when switching between 2 prometheus
datasources
* color touches
* Add support for Offset in elasticsearch datasource,
date_histogram aggregation, fixes grafana #12653
* Fix tests to account for sortText
* build: always test publisher.
* build: packages linked to dl.grafana.com.
* Fix tests to account for loglevel long names
* Explore: Filter logs by log level
* styling
* created test for some functions
* update changelog
* mock interval data
* fix handle of elasticsearch 6.0+ version
* rename variable
* hide row specific buttons when query editor is rendered
from explore
* add support for explore events
* minor style fix
* minor fixes
* docs: various fixes of what's new in v5.4
* use plugin_loader directly instead of using the wrapper
* docs: fix old ldap url redirect
* fixed issue with babel plugin proposal class properties
that initiated properties to void 0. This breaks angularjs
preAssignBinding which applies bindings to this before
constructor is called. Fixed by using fork of babel
plugin.
* Explore: make query field suggestions more robust
* Fix abbreviations of Litre/min and milliLitre/min (#14114)
* Sort Prometheus range suggestions by length
* docs: what's new in v5.4
* Explore: swtiching to logging should keep prometheus
labels in case of error
* tweaks to gf-inline-form style PR #14154 change
* adding back button
* styling tweaks
* initial commit
* docs: signout_redirect_url description in auth overview
* minor style changes
* Sticky footer for all pages
* edit mode styling
* edit mode styling
* edit mode styling
* Added comments
* style tweaks
* render and sort
* return actual error if failing to update alert data
* Fix issue with deleting a query (empty string not
updating)
* Fix history rendering for DataQuery
* margin when listing multiple gf-form should be right
* styling progress
* Fix a typo
* panel edit ux experiments
* changelog: add notes about closing #14150
* temporary fix for starting grafana not running systemd
* cloudwatch: handle invalid time ranges
* cloudwatch: recover/handle panics when executing queries
* Combine query functions
* Renamed targets to queries
* added icons for panel-edit side menu
* updates time range options for alert queries
* format: remove </input> and align tabs
* updating state
* Explore: Introduce DataQuery interface for query handling
* Fix set utilities for explore section
* typos in docs/sources/alerting/rules.md
* typos in docs/sources/alerting/rules.md
* fixed failing graph tests
* gfdev: fixes unparseable for duration
* fixed issue with new legend not checking if
panel.legend.show
* gfdev: adds alert always in pending state
* docs: adds example timeline for alerting for
* build: docker build for ge.
* react-panel: Avoid duplicate keys
* added alert tab to new react panel editor
* update path to alerting for image
* started on thresholds
* react-panel: Add data source 'options'. Needs UX, WIP.
* update release publish script links
* fixes to view mode for panels, can now go back as before
* Add visibility toggle for explore graph series
* what's new in v5.4 placeholder
* fix label and default threshold
* react-panel: Add data source 'help'
* fix for issue with error view in production builds
* changelog: adds note for #13561
* update changelog
* stackdriver: remove not used variable
* fixed menu to go to panel view mode
* stackdriver: use angular dropdown so that we can restrict
user input
* stackdriver: make sure object type queries are also
checked for vtemplate variables
* minor style update
* changelog: adds note about closing #13577
* adds basic auth configuration to default.ini
* added header section to legacy tabs
* stackdriver: reset defaults.ini
* changelog: add notes about closing #14120
* changelog: add notes about closing #14129
* switch slider changes
* linters.
* build: correct filters for ge build artifacts.
* build: releaser supports releasing only some artifacts.
* Revert 'docs: building Grafana on arm.'
* Add doc for api 'GET /api/users/:id/teams'
* Re-organize packages and add basic auth test
* Revert 'Update google analytics code to submit full URL
not just path'
* Add Cloudwatch/CloudHSM Metrics and dimensionMaps
* remove react warning
* added chekbox and other tweaks
* refactor options, show labels and markers
* docs: building Grafana on arm.
* stackdriver: add query keyword to service, metric and
project since these were the only fields in the editor
that was missing it in the whole editor
* Explore: POC dedup logging rows
* stackdriver: add query keyword style to query fields
* stackdriver: fix failing test
* stackdriver: reimplementing service variable query type
* Revert 'typo fix'
* typo fix
* prefix and suffix
* decimals
* update snapshot
* stackdriver: fix failing tests
* changelog: add notes about closing #13352
* changelog: add notes about closing #13810
* changelog: add notes about closing #13605
* changelog: add notes about closing #13876
* changelog: add notes about closing #13946
* changelog: add notes about closing #13555
* changelog: add notes about closing #13425
* changelog: add notes about closing #13655
* stackdriver: update docs
* stackdriver: add support for template variables
* react-panel: Finish the data source search on query tab
and start moving switch-data-source-logic from angular
* linter.
* fixed issue switching back from mixed data source,
introduced by react panels changes
* build: minor refactor.
* build: fixes a bug where nightly rpm builds would be
handled as stable.
* some touch ups on unit
* go meta lint errors
* update changelog
* builds: introduces enum for relase type.
* fix group sync cta link
* picker and functionaliy
* fixed issue with panel size when going into edit mode
* stackdriver: join resource and metric labels. split them
in values and keys
* changelog: add notes about closing #13924
* build: table-driven tests for publisher.
* fix id returned from google is a string
* changelog: adds note about closing #7886 & #6202
* changelog: adds note about closing #11893
* Fix param
* Add GET /api/users/:id/teams for orgAdmin
* Tooltip should be able to take up space when used on an
absolute positioned element
* minor fixes
* panel-header: Move the corner information in the panel
header to its own component
* changelog: add notes about closing #12550
* fix selected home dashboard should show as selected even
though its not starred
* panel-header: Move the panel description/links/error
container outside of panel header to not interfere with
the react-grid stuff
* reload browser after preferences been updated
* panel-header: Unmount popper when not needed.
* fix snapshot tests
* panel-header: Updated snapshots for popper
* panel-header: Add fade in transition to tooltip
* Trying to reduce the amount of duplication with
preferences
* panel-header: Make it possible to style the reference
element and fix so panel description looks good
* filter out alpha plugins in api call, fixes #14030
* panel-header: Simplify condition
* panel-header: Avoid undefined classNames and use the real
panel description
* panel-header: Updates for the new react-popper api and
make it possible to hover the tooltip popper without it
closing
* panel-header: Bump @types/react, @types/react-dom, react,
react-dom, react-popper to latest versions
* panel-header: Display description in modal
* update changelog
* changelog: add notes about closing #11977
* changelog: add notes about closing #6367
* docs: team http api update
* [elasticsearch] Do not set a placeholder to index name, if
it's already specified.
* changelog: adds note about closing #14043
* fixed issue with save.
* fixed mutability issue in dashboard dropdowns
* Explore: Fix table pagination styles
* team preferences ui
* feat: team preferences
* Explore: Dont set datasource in state if navigated away
* fix switching from es raw document metric breaks query
editor
* alerting: reduce the length of range queries
* Mitigate XSS vulnerabilities in Singlestat panel
* Retain decimal precision when exporting CSV
* Added Id to BasicUserInfo returns
* Added google oauth account id
* switch style tweaks
* Explore: collapsible result panels
* removing test page
* format value
* default value
* created classes for new checkbox and variables
* Prometheus: fix rules expansion
* handle default value
* various fixes to angular loading
* Explore: POC for datasource query importers
* build: enabled darwin build.
* expand groups when searching
* build: darwin compatible build env.
* maxHeight and style overrides
* moved slider into label to make it clickable, styled
slider in dark and light theme, created variables for
slider
* fix: dont setViewMode when nothing has changed
* fix redirect issue, caused by timing of events between
angular location change and redux state changes
* fix datasource testing
* panel options now load even when changing type
* fixed issues when changing type, need to remove event
listeners and cleanup props
* build: refactoring.
* React edit mode for angular panels progress
* minor fixes
* fixed order of time range tab
* Update ReadMe.
* Update google analytics code to submit full URL not just
path
* devenv: elasticsearch datasources and dashboards
* fix pipeline aggregations on doc count
* changelog: add notes about closing #5930
* fixed alert tab order and fixed some console logging
issues
* Add tooltip
* some progress on groups and options
* changed time region color modes
* panel-header: Move the corner information in the panel
header to its own component
* changelog: add notes about closing #12550
* fix pending alert annotation tooltip icon
* alert rule have to be pending before alerting is for is
specified
* fix selected home dashboard should show as selected even
though its not starred
* build: internal metrics for packaging.
* panel-header: Move the panel description/links/error
container outside of panel header to not interfere with
the react-grid stuff
* alerting: improve annotations for pending state
* reload browser after preferences been updated
* panel-header: Unmount popper when not needed.
* fix snapshot tests
* panel-header: Updated snapshots for popper
* panel-header: Add fade in transition to tooltip
* Trying to reduce the amount of duplication with
preferences
* stackdriver: revert project test stuff
* stackdriver: revert test code
* panel-header: Make it possible to style the reference
element and fix so panel description looks good
* adds pending filter for alert list page
* adds pending state to alert list panel
* alertmanager: adds tests for should notify
* Extracted language provider variables for readibility
* devenv: graph time regions test dashboard
* fix time regions mutable bug
* set default color mode
* filter out alpha plugins in api call, fixes #14030
* alerting: support `for` on execution errors and notdata
* poc: handling panel edit mode in react even for angular
panels poc
* panel-header: Simplify condition
* wip: minor update
* minor fix
* css update to switch slider
* tests for supporting for with all alerting scenarios
* should not notify when going from unknown to pending
* Fix formatting and remove enabled toggle
* panel-header: Avoid undefined classNames and use the real
panel description
* wip: switch slider test
* panel-header: Updates for the new react-popper api and
make it possible to hover the tooltip popper without it
closing
* panel-header: Bump @types/react, @types/react-dom, react,
react-dom, react-popper to latest versions
* Add basic authentication support to metrics endpoint
* panel-header: Display description in modal
* minor panel options type fix
* docs: description about graph panel time regions feature
* update changelog
* changelog: add notes about closing #11977
* changelog: add notes about closing #6367
* docs: team http api update
* wip: adding general tab for react panel edit mode
* [elasticsearch] Do not set a placeholder to index name, if
it's already specified.
* devenv: graph time regions test dashboard
* create time regions solely based on utc time
* started on options and groups
* fix: added events to MetricsTabCtrl to closer mimic
MetricsPanelCtrl
* minor css change
* Moved query manipulations from metrics controller to
metrics tab so they are more easily shared between angular
and react panels
* fixed panel focus for react panels
* minor changes to react panels
* changed how size is calcualted and propagated and added
proper interval calc to DataPanel
* changelog: adds note about closing #14043
* first stuff
* pkg/cmd/grafana-server/server.go: Check
sendSystemdNotification return value.
* pkg/cmd/grafana-server/server.go: check
serviceGraph.Provide() errors
* pkg/cmd/grafana-server/main.go: Fix error value not
checked
* wip panel size handling
* fixed issue with save.
* fixed mutability issue in dashboard dropdowns
* adced clickoutside wrapper
* fixed singlestat guage ceneterd dot rendering issue
* refactoring back the interval calculation, needs to be
different for react panels
* fix case where timeshift and time override is used
* wip: refactoring interval and time override handling
* updates latest to 5.3.4
* changelod: add release date for 5.3.3 and 5.3.4
* devenv: graph time regions test dashboard
* graph: Time region support
* Explore: Fix table pagination styles
* devenv: update alerting with testdata dashboard
* stackdriver: use arrow functions
* stackdriver: use new naming convention for query editor
all over
* adds redis devenv block
* restore user profile preferences
* changelog: add notes about closing #13328 #13949
* updates macaron session package
* minor react panels refafactor
* removed console.log
* some cleanup of unused stuff and type fixes
* completed work on panel not found view
* Clarify wording of playlist protip
* team preferences ui
* feat: team preferences
* Explore: Dont set datasource in state if navigated away
* Explore: Don't suggest term items when text follows
* wip: panel plugin not found
* fixed scrollbar autohide prop
* wip: panel-header: On panel refresh, get new timeRange
from timeSrv, not the old one from the state
* wip: panel-header: Avoid null returning to get better code
readability. High five @ peterholmberg
* wip: panel-header: Remove the TimeData type
* wip: panel-header: Add proper typings to maxDataPoints and
interval + remove code in comment
* wip: panel-header: Move getResolution and
calculateInterval into utils-functions and use the same
code from react and angular
* wip: panel-header: Start implementing the
applyPanelTimeOverrides in the react panels by moving it
to a util, make it pure and call it from angular and
react.
* import changes
* updated text styling when switching views
* Add `gofmt -s` to CircleCI
* minor fixes based on code review
* Fix gofmt issues
* Add pic into actionCard message
* minor style fixes & polish
* minor update
* disable custom webkit scrollbar styles
* refactoring & cleaning up css
* Minor progress on edit mode
* improve dropdown pane connetion to tab toolbar
* Add megacheck to gometalinter CircleCI target
* pkg/tsdb/influxdb/influxdb.go: Fix surrounding loop is
unconditionally terminated.
* scripts/build/release_publisher/publisher_test.go: Fix
trivial megacheck warning.
* draw gauge
* data source picker demo state
* stackdriver: remove service query tyhpe
* stackdriver: correct aligner name
* fix in to not render multiple labels
* stackdriver: typescriptifying props
* stackdriver: remove redundant try catch
* Update stackdriver.md
* Adjust UI depth of query statistics
* stackdriver: rename query function
* stackdriver: rename query variable
* stackdriver: remove debug log
* stackdriver: add documentation for the template query
editor
* stackdriver: test saved variable
* stackdriver: fix failing tests
* stackdriver: remove services query type
* stackdriver: update tests
* stackdriver: add tests for render snapshop and default
query type
* stackdriver: remove lodash since object assign will do the
trick
* stackdriver: make sure we don't crash when selected
service doesnt have a value
* stackdriver: add simple render test
* stackdriver: rename params
* stackdriver: remove not used prop
* stackdriver: persist template variable definition
* stackdriver: add default value for query type
* stackdriver: pass query definition from react, making it
possible to use another definition than the query string
only
* stackdriver: make it possible to use alignment period
template variable
* stackdriver: make it possible to use aligner template
variable
* stackdriver: make it possible to use aggregation template
variable
* stackdriver: make it possible to use aggregation template
variable
* stackdriver: make it possible to use metric type template
variable
* stackdriver: set currentdatasource when editview is
enabled
* stackdriver: return correct value
* stackdriver: reset query value on datasource changed
* stackdriver: fix default value bug
* stackdriver: extend label width
* stackdriver: revert refactoring
* stackdriver: extract variables for pickers
* stackdriver: cleanup
* stackriver: rename interface
* stackriver: use type for state
* stackdriver: rename state vars
* stackdriver: extract common function
* stackdriver: streamline the way labels are refreshed when
a new value is picked in the dropdowns above
* stackdriver: handle default state
* stackdriver: refactor dropdown component
* stackdriver: replace components with basic stateless
select
* stackdriver: remove not used func. wrap query in exception
* stackdriver: reload all child dropdown and update selected
accordingly
* stackdriver: improve default state handling
* stackdriver: use standard naming convention for selects
* stackdriver: streamline label change
* stackdriver: refactor TemplateQueryComponent
* stackdriver: use enum for query type
* stackdriver: add aggregation query
* stackdriver: add alignment periods
* stackdriver: add aligner query
* stackdriver: add resource types query
* stackdriver: add support for resource label queries
* stackdriver: return friendly display name
* stackdriver: add metric labels query
* stackdriver: move response parsing to datasource file
* stackdriver: return values for services and metric types
* stackdriver: rename default component
* stackdriver: more renaming
* stackdriver: refactoring - rename react components and
file structure changes
* stackdriver: remove not used code
* stackdriver: add selector components for service and
metric type
* stackdriver: refactor stackdriver query ctrl
* stackdriver: make sure default template query editor state
is propagted to parent angular scope
* stackdriver: conditional template component rendering
* stackdriver: add react component for template query editor
* stackdriver: make it possible to load react plugin
components from template query page
* stackdriver: add basic directive for loading react plugin
components
* Preserve suffix text when applying function suggestion
* wip: progress on edit mode ux with tabs
* can render something
* don't drop the value when it equals to None
* changelog: adds note about closing #13993
* Remove Origin and Referer headers while proxying requests
* Refactored log stream merging, added types, tests,
comments
* docs: improve helper test for `For`
* alerting: adds docs about the for setting
* panel-edit-ux-tabs on top alternative
* Add new option to set where to open the message url
* added loading state
* Fixes #13993 - adds more options for Slack notifications
* fix switching from es raw document metric breaks query
editor
* add auth.proxy headers to sample.ini
* add auth.proxy headers to default.ini
* refactored how testing state was handled, using redux for
this felt way to require way to much code
* adds debounce duration for alert dashboards in ha_test
* fixed issue with reducer sharing url query instance with
angular router
* fixed exporter bug missing adding requires for datasources
only used via data source variable, fixes #13891
* minor text change in export modal
* build: removes unused.
* clear test box if success
* Fixed issues introduced by changing to PureComponent
* Added testing state in reducer
* further refactoring of #13984
* minor fix
* refactorings and some clean-up / removal of things not
used
* Update
docs/sources/permissions/dashboard_folder_permissions.md
* Fix typo in docs/sources/reference/scripting.md
* experimental option boxes
* ux: changed panel selection ux
* move enterprise down in menu
* wip: panel-header: Fix shareModal compatibility with react
and angular
* wip: panel-header: Remove custom menu items from panels
completely
* wip: panel-header: Reverted a lot of code to pause the
'custom menu options' for now
* wip: panel-header: More merge conflicts during cherry pick
* wip: panel-header: More merge conflicts during cherry pick
* Update docs/sources/permissions/datasource_permissions.md
* Update docs/sources/permissions/datasource_permissions.md
* Update
docs/sources/permissions/dashboard_folder_permissions.md
* Update docs/sources/http_api/datasource_permissions.md
* Update docs/sources/enterprise/index.md
* Update docs/sources/enterprise/index.md
* Update docs/sources/enterprise/index.md
* Update docs/sources/enterprise/index.md
* Update docs/sources/enterprise/index.md
* Update docs/sources/enterprise/index.md
* minor change
* wip: panel-header: More merge conflicts
* Fix loglevel tests for Explore loggging
* wip: panel-header: Merge conflicts
* wip: panel-header: Fragment not needed anymore
* wip: panel-header: Add possibility to add custom actions
to the menu by passing them in as props
* wip: panel-header: Separate all panel actions to its own
file so we decouple them from react
* wip: panel-header: Start implementing the Toggle legend,
but its not taken all the way
* wip: panel-header: Change DashboardPanel to a
PureComponent to avoid unwanted rerenders
* wip: panel-header: Refactor so 'Share' use the same code
in angular+react
* wip: panel-header: Add 'Edit JSON' functionality + make
sure everyone using the json editor pass in the model
property instead of the scope property when triggering the
json modal
* wip: panel-header: Add 'Copy' functionality
* wip: panel-header: Add 'Duplicate'
* wip: Add 'Share' to the react panels
* wip: panel-header: Move code existing in both
angular+react to utility functions
* wip: panel-header: Remove panel
* Mobx is now Redux
* wip: Initial commit for PanelHeaderMenu
* changelog: add notes about closing #13903
* changelog: add notes about closing #13932
* unify log level colors between rows and graph
* Graph log entries by log level
* fix selecting datasource using enter key
* Adaptive bar widths for log graph
* changelog: add notes about closing #13970
* build: fixes
* build: publisher handles nightly builds.
* rename and mark functions as private
* drag handle css
* moved drag handle
* fixed options
* Time selection via graph
* minor code style change
* basic panel options working
* Adding Cloudwatch AWS/Connect metrics and dimensions
* wip: react panel options architecture
* export: provide more help regarding export format
* build: minor publisher fixes.
* extract store from configurestore
* added actions
* build: publishes grafana enterprise to grafana.com
* changelog: adds note about closing #13322
* build: publisher uses local time.
* build: publisher supports both local and remote.
* build: publisher can find artifacts from local sources.
* build: refactor releaser.
* build: prepares release tool for finding local releases.
* build: improved release publisher dry-run.
* build: use build workflow id instead of build number.
(#13965)
* alerting: delete alerts when parent folder is deleted
* refactor dashboard alert extractor
* for: use 0m as default for existing alerts and 5m for new
* panel options wip
* Exposing digest from angular component
* adds tests for extracting for property
* minor fix
* changelog: add notes about closing #13606
* devenv: table panel links
* renames `debouceduration` to `for`
* introduce state `unknown` for rules that have not been
evaluated yet
* fixes go meta lint issue
* wire up debounce setting in the ui
* adds db migration for debounce_duration
* introduces hard coded deboucing for alerting
* always execute the user teams query
* handle error before populating cache
* build: fixes gcp push path.
* alerting: adds tests for the median reducer
* add minimal permission
* typo fix for 'has'
* Gitlab -> GitLab
* changelog: adds note about closing #13945
* Add tests covering alternate syntax for aggregation
contexts
* Handle suggestions for alternate syntax aggregation
contexts
* fix terms agg order deprecation warning on es 6+
* fix failing tests
* removed file I added accidentally
* fixed to template PR issues, #13938
* alerting: increase default duration for queries
* Explore: Logging graph overview and view options
* Load hash based styles in error.html, too
* Add [hash] to filename of grafana.{light,dark}.css
* minor tweak to back to dashboard buttons
* Fix minor JSON typo in HTTP API docs
* remove replaced components
* reverting babel change
* remove this
* removed these unused components
* reverting script change
* updated snap
* tests
* minor doc tweaks
* updated enterprise page
* Added new backend setting for license file
* updating state and save
* make permission sub items in sidemenu cleaner
* changelog: add notes about closing #13925
* Explore: fix metric selector for additional rows
* fix for responsive rule for footer
* Updated login page logo & wordmark and responsive behavior
* added new workmarks
* fixed react whitespace warning on teams page
* renamed org files to match new naming guide
* moved profile pages to it's own feature folder
* moved new teams page
* reload page after preferences update
* Add delta window function to postgres query builder
* Increase Telegram captions length limit.
* docs: enhanced ldap
* Explore: async starts of language provider
* listen for changes in angular land and propagate that back
to react
* docs: fix datasource permissions keywords
* build: grafana enterprise docker image.
* added caching of signed in user DB calls
* added actions
* IE11 fix for legend tables below graph
* cleaned up render
* renders angular component
* updated api keys snapshot
* restored transition
* removed logging call
* add table column date format
* fixed memory leaks and minor refactoring
* build: gpc credentials added to deploy.
* changelog: add notes about closing #13762
* update changelog
* build: deploys to gcp.
* build: deploys to gcp. (#13911)
* datasource permission http api
* restructure administration/permissions page into a section
with sub pages
* Fix TimePicker test by enforcing UTC on date string
* updated view to use angular loader
* Explore: repair logging after code restructuring
* docs: schema -> database
* build: deployment ci container. (#13902)
* docs: mysql
* minor progress
* Make Explore plugin exports explicit
* add functionality to override service in registry
* moved state
* register datasource cache service with proper name
* revert application lifecycle event support
* changelog: adds note about closing #13876
* Add new build info metrics that contains more info
(#13876)
* JS tooling: run TS grunt tasks only when files changed
* revert file name change
* remove unused code
* log error on datasource access denied
* include teams on signed in user
* application lifecycle event support
* refactor datasource caching
* Fix cell coloring
* Fix bug with background color in table cell with link
* add dashnav responsive rule to hide tv button on smaller
screens
* Implement oauth_auto_login setting
* Explore: fix copy/paste on table cells
* rename type
* using label component
* Pluggable components from datasource plugins
* fixed type
* removed angular code
* test and some refactoring
* build: adds branch info to binary build
* now that css is loaded sync again I can remove some styles
from index html body css
* WIP babel 7
* Revert to sync loading of css, sometimes js loaded before
css which caused issues
* Update grafana_stats.json
* Makefile: dependency-driven target to build node_modules
* removes old invalid release guide
* added missing alpha state prop to graph2 panel
* minor update
* added switch form component
* updated graph tests dashboard
* fixed width of panel edit mode
* Fix query hint tests after refactor
* Fixing issue 13855
* Add tests to cover PlaceholdersBuffer and sum hint
* Add sum aggregation query suggestion
* fixes to angular panel edit mode
* Reduce re-renderings when changing view modes
* updated singlestat logo
* more ux progress
* Add tests to cover aggregation context cases
* Fix label suggestions for multi-line aggregation queries
* panel edit mode changes
* Update snapshots.
* Use jest.fn instead of string.
* Explore: error handling and time fixes
* ux experiments
* build: builds grafana docker for enterprise at release.
* Add code to flot that plots any datapoints which to not
have neighbors as 0.5 radius points - fixes
https://github.com/grafana/grafana/issues/13605
* adding default value and update actions
* build: ge build fix.
* build: grafana enterprise docker. (#13839)
* moved state to redux, renamed entities
* testing panel edit ux idea
* changelog: add notes about closing #13769
* add test
* cache region result
* use default region to call DescribeRegions
* fix: updated backend srv to use appEvents and removed
parts of alertsSrv
* simple select
* build: correctly adds enterprise to the filename. (#13831)
* docs: improve ES provisioning examples
* changelog: adds note about closing #13723
* stackdriver: don't set project name in query response
since default project is now loaded in its own query
* Optimize the Dingding match values format
* Add Dingding message type to support mass text
notification
* graph legend: fix table padding
* Moved prom language features to datasource language
provider
* Split text template into variable
* Add match values into Dingding notification message
* graph legend: fix phantomjs rendering when legend is on
the right
* fix for annotation promise clearing, bug introduced last
week when merging react panels step1
* fix panel solo size
* mysql: fix timeFilter macro should respect local time zone
* load preferences
* support template variable in stat field
* only look in current database in findMetricTable
* graph legend: fix table alignment
* fix dingding doc error
* fixed routes and page
* graph legend: minor refactor
* Added types to query rows
* update latest.json to latest stable version
* changelog: update
* cleaned up the flow
* changelog: add notes about closing #13280
* delete provisioning meta data when deleting folder
* Update the regex-matching in templateSrv to work with the
new variable-syntax and be more flexible to regex-changes
#13804
* changelog: add notes about closing #13600
* changelog: update
* Move the variable regex to constants to make sure we use
the same reg… (#13801)
* docs: fix tutorials index page. Fixes #13799
* graph panel: fix legend alignment
* Explore: fix graph resize on window resize
* changelog: adds note for #13691
* docs: fix tutorials index page. Fixes #13799
* Resource type filter (#13784)
* Fix race condition on add/remove query row
* moving things
* typing changes
* changelog: add notes about closing #13764
* pkg/tsdb/stackdriver/stackdriver.go: Fix regular
expression does not contain any meta characters.
* pkg/tsdb/graphite/graphite.go: Fix regular expression does
not contain any meta characters.
* pkg/login/ldap.go: Fix warning comparison to bool constant
* Added margin and correct border radius
* Fix rebase, fix empty field still issuing query problem
* Changelog: Adds curl to docker image in 5.3.2
* fix: another fix for #13764 , #13793
* Submit query when enabling result viewer
* Get query hints per query transaction
* docker: adds curl back into the docker image for utility.
(#13794)
* Explore: query transactions
* connected to store, self remove logic
* fix: kiosk url fix, fixes #13764
* changelog: add notes about closing #13633
* changelog: add notes about closing #13666
* fix: Text box variables with empty values should not be
considered fa… (#13791)
* renaming things
* graph legend: review fixes
* add debug logging of folder/dashbord permission checks
* sync mysql query editor template with postgres
* add char as datatype for metric and group columns
* build: indentation mistake.
* build: fixes filename issues.
* fix injecting dependencies to graph legend directive
* changelog: adds note for #13669
* docs: update debian installation instructions
* stackdriver: some tweaks to the text on the config page
and in docs
* stackdriver: refactoring request builder
* stackdriver: remove not used struct
* stackdriver: remove not needed scope
* stackdriver: add provisioning example for gce
authentication
* stackdriver: add documentation for gce default account
authentication
* stackdriver: change name of authentication type
* stackdriver: improve config page info box documentation
* stackdriver: prevent backend query from being made when
there are not yet any defined targets
* stackdriver: fix failing tests
* stackdriver: improve error handling
* graph legend: fix legend when series are having the same
alias
* stackdriver: remove not used query file
* stackdriver: remove test datasource query. use
ensuredefaultproject instead
* stackdriver: remove debug comments
* stackdriver: improve error handling in the datasource
* stackdriver: fix typo
* stackdriver: add debug logging
* stackdriver: fix broken braces
* stackdriver: fix broken condition after rebase
* stackdriver: use constant instead of variable
* stackdriver: remove debug log
* stackdriver: fix failing test
* stackdriver: use gce variable
* stackdriver: add variable for gce authentication type
* stackdriver: get default project from backend. also ensure
default project could be retrieved when authentication
type is gce
* stackdriver: only load default project from backend if
it's not available on the target. this might happen when
using gce authentication and provisioning
* stackdriver: display error message if project name is not
present in jwt file
* stackdriver: only load project name if it's not already
stored in the ds info json
* stackdriver: add default value for authentication type
* stackdriver: wip - remove debug code
* stackdriver: improve ui for toggling authentication type
* stackdriver: only get default token from metadata server
when applying route
* stackdriver: only get default token from metadata server
when applying route
* stackdriver: make backend query a pure test datasource
function
* stackdriver: add status code
* stackdriver: wip - return metric descriptors in the format
of tablew
* stackdriver: wip - get metric descriptors in the backend
* stackdriver: wip - add logic for retrieving token from gce
metadata server in the auth provider
* stackdriver: wip - add very basic checkbox for gce auto
authentication
* stackdriver: break out project name resolving into its own
function in the stackdriver.go file
* stackdriver: wip - temp remove jwt token auth
* stackdriver: wip - always use gce default account for
stackdriver
* stackdriver: wip - add scope and remove debug code
* stackdriver: WIP - test retrieving project id from gce
metadata
* skip jwt token auth if privateKey is empty
* fetch token from GCE metadata server
* Revert 'for development'
* for development
* graph legend: fix quotes displaying
* graph legend: minor refactor
* Enterprise crosscompilation (#13783)
* component working
* graph legend: fix rendering after legend changes
* graph legend: refactor, fix another review issues
* fix: DataPanel isFirstLoad state fix
* Fix click-based selection of typeahead suggestion
* ux: remove duplicate placeholder attribute
* initial work to add shortcut to toggle legend - generic
* scripts/build/publish.go: Fix warning on err variable.
* pkg/services/alerting/reader.go: Fix should use for range
instead of for { select {} }.
* pkg/middleware/middleware.go: Fix empty branch warning.
* pkg/plugins/plugins.go: remove ineffective break
statement.
* fix order for mysql, remove postgres specific code
* using react component
* Explore: reuse table merge from table panel
* graph legend: refactor, move behaviour logic into
component
* stackdriver: add default project to provisioning
documentation
* adjust meta data queries for mysql
* fix references to postgres datatypes
* graph legend: review fixes
* changelog: add notes about closing #13667
* changelog: add notes about closing #13718
* fixed gofmt issue after go update
* fix cannot receive dingding alert bug
* fix: fixed variable srv tests
* stackdriver: only add unit to resonse obj if it has a
value
* make interpolateVariable arrow function
* fix: another set of fixes for refresh
* fixed issue with template refresh
* Fix tslint errors
* stackdriver: fix failing tests
* stackdriver: make sure unit is not returned to the panel
if mapping from stackdriver unit to grafana unit can't be
made
* Fix variable highlighting
* Fixed yarn.lock (previous merge took out integrity)
* changelog: add notes about closing #13710
* wip: enterprise docs
* allow unit override if cloudwatch response unit is none
* Revert 'don't overwrite unit if user set'
* don't overwrite unit if user set
* changelog: add notes about closing #13674
* fix LDAP Grafana admin logic
* graph legend: remove unused code
* graph legend: refactor
* docs: cleanup of how to build for docker.
* Review feedback, increased height
* changelog: add notes about closing #12342
* update changelog
* remove not used file
* simplify code
* Explore: fix render issues in split view
* A list of where to make changes when upgrading Go and
Node.js (#13693)
* tests
* Update PromQueryField tests to address fixed bug
* Fix typeahead behaviour for QueryField
* permissions: cleanup.
* hooked up actions
* Explore: Use react-table as table component
* created view
* docs: installing custom plugins in docker.
* Document oauth_auto_login setting
* changelog: add notes about closing #13692
* postgres: use arrow function declaration of
interpolateVariable
* Use closure for calling interpolateVariable
* changelog: add notes about closing #12308
* Add socket support for mysql data source
* changelog: adds note about closing #12330 and #6696
* remove addpermissions component
* cloudwatch: return a distinct list of regions
* docs: update cloudwatch iam policy description
* removes d in disableResolvedMessage
* removed snaps
* alerting: tests default value for disable resolve message
* re-add hard coded region list
* update doc due to client layout change
* clean up tests
* fix gofmt, add test, correct noted concerns with default
value
* fix gofmt, add test, correct noted concerns with default
value
* changelog: add notes about closing #13629
* add encrypt connstr param conditionally on the value
chosen via GUI.
* graph legend: add color picker (react)
* removing datasource permissions states from grafana
* update latest.json to latest stable version
* update changelog
* build: Upgraded nodejs to 8 on appveyor
* codestyle
* rename UI Option, align with control, update tests
* pausing for now
* Remove unwanted char
* Fix incorrect alt text on logo
* return default region list from backend
* don't merge hard coded region list
* add error message
* get regions from after datasource save
* show all CloudWatch regions
* get region list from ec2:DescribeRegions
* fix concurrent map writes
* update, don't remove 'Known Issues' docs section.
* update provisioning docs.
* fix new setting default value handling.
* rename new JSON data attrbute.
* changelog: add notes about closing #13464
* changelog: add notes about closing #13553
* update changelog
* doc(documentation) license
* doc(documenation)
* add channel option to disable the resolved alert (OK
Message) that is sent when condition returns to normal.
* Can render graph
* Add 'encrypt' setting to MSSQL data source.
* rendering settings
* build: makes sure publisher.sh is available when
deploying.
* Fix grammar in log message
* changelog: add notes about closing #13641 #13650
* Escape typeahead values in query_part
* Escape values in metric segment and sql part
* changelog: add notes about closing #13628
* update .bra.toml for using latest bra version
* progress on react time series infra
* wip: began first steps for a react graph component
* various fixes to to queries tab (in react mode)
* react panels query processing
* react panels: got data
* working on react data / query exectution
* changed DataPanel from HOC to use render props
* fixing unit tests
* Removed reference to plugin_api.md (SDK Readme) on the
development page as the file that it points to no longer
exists. This addresses an open issue on the grafana.org
repo
* Adding tests
* Adding time clockms and clocks
* pkg/cmd/grafana-server/main.go: remove os.Kill as it
cannot be trapped
* changed to plain errors further down the alerting
validation model so error did not get double wrapping in
ValidationError
* alerting: propagate alert validation issues to the user
instead of just 'invalid alert data' message
* updated gitignore
* fix for graph time formating for Last 24h ranges, fixes
#13650
* pkg/services/sqlstore/user_auth_test.go: comment unused
users slice
* fixed a typo
* fixed a typo
* fix: label values regex for single letter labels
* created component for http settings
* removes debug log.
* make sure to add all variable nodes to dag before linking
variables
* changelog: adds note for #13607
* updated jest to 23.10
* Adds backend hooks service so extensions can modify index
data
* fix route issue
* removed unused setting variable
* minor setting refactorings
* renamed extension point in the frontend
* updated circleci build-container version
* minor change to cloudwatch code formatting
* minor ux fix for new select
* fmt
* grafana/grafana#13340 complete oauth doc
* changed property name to UserWasDeleted and added an
assert for it
* Update check for invalid percentile statistics
* pkg/services/alerting/notifiers/telegram.go: check error
before close.
* pkg/tsdb/*: Fix do not pass a nil Context
* devenv: fix influxdb block
* docs: refer to v5.3 instead of v5.2
* removed unsused function
* docs: stackdriver fixes after review
* fix mutability bug, removed unused constructor
* stackdriver: check if array is empty to prevent filter
from crashing. This closes #13607
* Handle DescriptionPicker's initial state #13425
* stackdriver docs: metric query editor and annotations
* Update snapshots after merge
* Requests for ds via backend blocked for users without
permissions.
* Removes unused code.
* Remove CTA when CTA-action is clicked instead of a /new
route #13471
* Add fancy delete button for ApiKeys.
* Add form to both the CTA page and the regular list.
* Add onClick handler to CTA.
* Updated tests for new protip.
* Updated protip, not sure what to write there.
* Update tests for ApiKeys CTA screen.
* changelog: add notes about closing #13616
* Show CTA if there are no ApiKeys, otherwise show table.
* Extract ApiKeyCount from state.
* made it possible to have frontend code in symlinked
folders that can add routes
* Added Loading state on org pages
* fix phantomjs render of graph panel when legend as table
to the right
* changelog: add notes about closing #13172
* add test for es alert when group by has no limit
* poc: frontend extensions
* added the UserWasRemoved flag to make api aware of what
happened to return correct message to UI
* Remove user form org now completely removes the user from
the system if the user is orphaned
* remove tab
* bug fix
* Update time_series_query.go
* changelog: add notes about closing #11711
* add admin page to show enterprise license status
* docs: add version notes
* tests
* Css fix for selected option
* User without permission to a datasource won't see it.
* Updated test snapshot #13425
* Initialize Explore datasource correctly
* Refactors ds permissions to a filter.
* Remove the fixed widths and make it possible to pass it in
as a prop instead #13425
* User filtering now works properly at the backend #13425
* Removed old code #13425
* Rename css class 'gf-form-select2' to 'gf-form-select-box'
#13425
* Use new class names #13425
* Fixes for the tag filtering in the search #13425
* Start implementing the upgraded react-select in the tag
filter box #13425
* fix /api/org/users so that query and limit querystrings
works
* Bump grafana/build-container to 1.2.0
* Revert 'Lock down node version to see if we get rid of the
circleci build issue'
* Revert 'Try to remove circleci cache to see if that solves
the build issue'
* Try to remove circleci cache to see if that solves the
build issue
* Generate yarn.lock from older yarn
* Revert 'Add node version output for debugging'
* Add node version output for debugging
* Lock down node version to see if we get rid of the
circleci build issue
* Lock down webpack to 4.19.1 to avoid issue with
webpack-cli
(https://github.com/webpack/webpack/issues/8082)
* Bump react-select to 2.1.0 #13425
* Updated lockfile to get rid of build error #13425
* Add frontend filtering of users in user picker #13425
* Replace $white with a color working in both themes #13425
* Replace System.import() with import() to get rid of
warning
* Clean up css for react-select v2 #13425
* Upgrade Datasources-picker on Explore page #13425
* Enable trailing on the debounce in the TeamPicker (same as
in UserPicker) #13425
* Update typescript notifications #13425
* Update (js-) tests and snapshots for react-select 2 #13425
* Remove variables not used #13425
* wip: Remove code for old react-select component #13425
* wip: The pickers are stateful nowadays, no need to pass in
the current value #13425
* wip: Upgrade react-select #13425
* set v5.3 as root docs
* disable permissions
* whatsnew: adds image for Stackdriver
* fixing weird arrow in select
* update latest.json to 5.3.0
* changelog: set date for 5.3.0 release
* fixing permission rows
* changelog: add notes about closing #13575
* enable permissions for data source
* Use correct naming convention
* Fix typo
* Provide more information about what's included in the
Stackdriver plugin
* changelog: add notes about closing #13575
* cloudwatch: return early if execute query returns error
* fix tab switching
* add test for automatically unit set
* fix crach bug
* fix id validation
* refactoring after review comments
* changelog: adds note for #13559
* added setting top hide plugins in alpha state
* wip: fixed issues now things are starting to work as
before for angular panels
* pausing permissions list
* Block graph queries from being queued until annotation
datasource promises resolve
* Redone with DataSourcePermissions
* remove datasource permission admin for now
* reverted AddPermissions
* Explore: highlight typed text in suggestions
* Update provisioning.md (#13572)
* stackdriver: update docs, showing how to escape private
key and use yaml multiline strings
* modified AddPermissions component
* set unit for CloudWatch GetMetricStatistics result
* Remove duplicate labels in the datasource query
* render drag handle only in edit mode
* ux: minor update to look of stackdriver query help
* changelog: adds note for #13495
* add gopkg.in/square/go-jose.v2 to dependencies, update
github.com/hashicorp/yamux
* adding permissions component
* reverted back and using angular for settings and
dashboards
* stackdriver: improve filter docs for wildcards and regular
expressions
* stackdriver: always use regex full match for =~ and
!=~operator
* stackdriver: add tests from regex matching
* stackdriver: always use regex full match for =~ and
!=~operator
* stackdriver: test build filter string
* stackdriver: test that no interpolation is done when there
are no wildcards
* stackdriver: remove debug logging
* stackdriver: add more tests
* stackdriver: fix broken substring. also adds tests
* stackdriver: remove not necessary helper functions
* stackdriver: interpolate stackdriver filter wildcards when
asterix is used in filter
* stackdriver metric name fix. Fixes #13562
* Fixed nav model
* fix for influxdb annotation issue that caused text to be
shown twice, fixes #13553
* wip: restoring old angular panel tabs / edit mode
* ux: final fixes to new datasource page
* Fix text overflow on playlist search #13464
* docs: fix minor typos
* ux: more minor ds setting tweaks
* ux: more minor ds setting tweaks
* ux: tweaks to add datasource page and datasource settings
page
* Fixed typo in query editor placeholder text.
* Explore: do not show default suggestions after expressions
* Explore: trigger a query field render to fix highlighting
* Explore: compact state URLs
* fix gofmt tests output
* removed duplicate route
* Use size-me to resize explore Graph, added types
* algorithm to find new name if it exists
* ux: misc react migration fixes and info box style
improvement
* docs: new variable type text box that allows free text
input
* docs: annotations tag filter with template variable
support
* docs: whats new in 5.3 - a few tweaks
* mysql: note about connection max lifetime and wait_timeout
* Explore: reset typeahead on cursor move
* Explore: resize graph on window resize
* Fix rate function hint for series with nulls
* Extract query hints
* Prevent Explore from updating when typing query
* Avoid new metrics options being passed selector, made
PromField pure
* Perf on query field and typeahead
* Dont rebuild datasource options on each render
* contributing.md
* changelog: add notes about closing #13326
* react-2-angular: added generic angular directive loader
util that can be used from react
* search data source types
* mini fix
* css: minor fix to search
* bump master version to 5.4.0-pre1
* provisioning: adds more logging about failed to deletion
of provisioned dashboards
* various fixes and improvements
* changelog: set date for 5.3.0-beta3 release
* build: fix for invalid pathing for release publisher
* changlog: adds note about closing #13551 and #13507
* new grid layout add data source
* test: updated react snapshot
* ux: minor tweak to link
* stackdriver: adds missing nginject attribute
* docs: better wording and docs links.
* Fix issue with updating role permissions #13507
* fixed toggle buttons
* dataproxy should forward a trailing slash to proxy
* add datasource proxy test to verify trailing slashes are
forwarded
* centered dashboard icon in search with flexbox
* mssql: fix tests
* build: automatically publish releases to grafana.com.
* updated after pr feedback
* pkg/tsdb/postgres/postgres_test.go: pass
context.Background() instead of nil
* pkg/tsdb/mysql/mysql_test.go: pass context.Background()
instead of nil
* pkg/tsdb/mssql/mssql_test.go: pass context.Background()
instead of nil
* adjust mssql tests
* pkg/tsdb/elasticsearch/client/client_test.go: pass
context.Background() instead of nil
* added data source type type
* pkg/services/alerting/notifiers/telegram_test.go: pass
context.Background() instead of nil
* remove generic macros from macros_test and add integration
test for generic macros
* Revert 'Revert 'Org users to react''
* Revert 'Org users to react'
* add postgres test for global macros
* add test
* stackdriver heatmap support
* added slow queries scenario to test data source, added new
panel test dashboard with slow queries
* Fix 'appropriate'-typo
* Update configuration doc to include socket@server
* move timeFrom, timeTo, unixEpochFrom and unixEpochTo
macros to sql_engine
* wip: began work on support for testdata tables &
annotations support
* docs: connection limits for sql datasources
* ux: put connection limits under own section
* fiddling with validation
* changelog: adds note about closing #13492
* view and route
* wip: made sqlstore dialect accessable from outside
* better comment about state changes
* get or create alert notification should use transaction
* use notification state id instead of notifier id
* merges defaultShouldNotify and ShouldNotify
* move version conflict logging for mark as complete to
sqlstore package
* removed duplicate route
* improve local variable name
* avoid exporting notificationState and
notificationStateSlice
* avoid sending full notification state to pending/complete
* deleting obsolete things
* Make max open, max idle connections and connection max
life time configurable
* snap
* fix after merge from master
* rename GetNotificationStateQuery to
GetOrCreateNotificationStateQuery
* reminder: uses UpdatedAt to track state changes.
* snaps
* invitees
* changed from RFC to PureComponent
* devenv: add postgres ha test config example
* wip: going in circles
* typo in sample.ini
* pkg/tsdb/cloudwatch/credentials.go: Remove unnecessary
variable assignment
* pkg/cmd/grafana-server/main.go: '_ = <-ch' simplified to
'<-ch'
* pkg/tsdb/stackdriver/stackdriver_test.go: return
simplified
* Fix megacheck issue unused code.
* invites table
* Update ldap.md
* use alert state changes counter as secondary version
* wip: data source permissions hooks
* docs: stackdriver version notice.
* tests
* added default prop instead of specifying prop
* filter users in selector based on search
* Moved explore helpers to utils/explore
* Explore: jump to explore from panels with mixed
datasources
* functions and tests
* cleanup alert_notification_state when deleting alert rules
and channels
* don't notify if notification state pending
* remove unused code
* stackdriver: set default view parameter to FULL
* stackdriver: no tags for annotations (yet)
* stackdriver: add help section for annotations
* devenv: enable some debug logging for ha test setup
* alert -> ok with reminders enabled should send
* stackdriver: revert an accidental commit for text template
variable
* Added test for url state in Explore
* Make Explore a pure component
* first crude display
* stackdriver: remove metric.category alias pattern
* stackdriver: remove commented code
* stackdriver: unit test group by and aggregation dropdown
changes
* stackdriver: make it impossible to select no aggregation
when a group by is selected
* Explore: Store UI state in URL
* stackdriver: add relevant error message for when a user
tries to create a template variable
* stackdriver: make sure labels are loaded when service is
changed in dropdown
* stackdriver: change info logging to debug logging
* stackdriver: change pattern for annotation to metric.value
* stackdriver: add support for bool values
* stackdriver: add support for int64 values
* stackdriver: use correct default value for alignment
period
* stackdriver: fix reducer names
* fix set sent_at on complete
* snaps
* noop services poc
* implemented general actionbar
* handle pending and completed state for alert notifications
* stackdriver: fix froamt annotation text for value
* stackdriver: make it possible to use point values of type
string
* No need to get alert notification state in ShouldNotify
* using constant
* added no datasources added
* stackdriver: broadcasting through $scope doesnt work
anymore since query_filter_ctrl is now a sibling directive
to query_aggregation_ctrl, so broadcasting is now done
using $rootScope
* wip: test get alert notification state
* wip: send and mark as complete
* components, test, removed old not used files
* wip: impl so that get alertstate also creates it if it
does not exist
* fix: preloader element issue
* Adding AWS Isolated Regions
* wip
* stackdriver: pattern formatting for annotations
* stackdriver: fix alignment period bug
* stackdriver: set first metric as selected if no metric
could be retrieved from the target
* stackdriver: wip annotation support
* Compile TS of the whole project to detect type errors
* stackdriver: update tests
* stackdriver: es6 style directive, avoid using scope
* deletez
* refactoring: slight changes to PR #13247
* revert rename
* stackdriver: fix typescript error
* stackdriver: remove not needed alignment option
* using constant
* stackdriver: extract out filter, metric type directive
* stackdriver: add unit tests to resolve unit function
* rename to pluginlistitem
* fixing types
* stackdriver: convert most common stackdriver units to
grafana units if possible
* sqlstore: add support for checking if error is constraint
validation error
* rewrote to use react.sfc
* explore: fixes to dark theme, fixes #13349
* Remove angular code related to API Keys and point the
route to the React component #13411
* Open modal with API key information after key is added
#13411
* Add tests for the reducers & selectors for API keys #13411
* Update test-snapshot, remove dead code #13411
* Add tests for ApiKeysPage #13411
* Add 'search box' and a 'add new' box to the new API Keys
page #13411
* Pick up the type from app/types
* Pick up the type from app/types
* Move User type out of UserPicker and into app/types
* wip: Reactify the api keys page #13411
* add support for mysql and postgres unique index error
codes
* implement sql queries for transactional alert reminders
* stackdriver: fix typescript errors
* stackdriver: pass interval from panel to backend
* stackdriver: remove debug logging
* stackdriver: update docs so that they align with alignment
period rules in stackdriver gui
* stackdriver: update alignment period rules according to
stackdriver
* stackdriver: set target to be raw query
* stackdriver: publish docs to v5.3 (not root)
* initial rename refactoring
* changelog: adds note about closing #12534
* devenv: grafana high availability (ha) test setup
* stackdriver: use more appropriate test data
* Add goconst to CircleCI
* fix: also set dashboard refresh to false
* simplified fix for 12030
* prevent refresh on fixed time window
* using more variables
* stackdriver: fix broken test
* stackdriver: workaround for the fact the jest definitions
does not include not
* stackdriver: docs update
* stackdriver: WIP - implement stackdriver style auto
alignment period. also return the used alignment period
and display it in the query editor
* stackdriver: distinct grafana auto from stackdriver auto
in alignment period
* stackdriver: use correct name for variable
* stackdriver: remove montly from alignment periods
* Added constant
* tests
* stackdriver: add alignemnt period
* stackdriver: make sure service and metric display name is
used instead of value when loading a saved query editor
* alerting: move all notification conditions to
defaultShouldNotify
* stackdriver: use correct event name
* stackdriver: fix broken tests
* stackdriver: update aggregation and alignment before
refreshing when changing metric
* stackdriver: use correct naming convention
* stackdriver: get value type and metric kind from metric
descriptor instead of from latest metric result
* filter NULL values for column value suggestions
* changed to first and last child
* imguploader: Add support for ECS credential provider for
S3
* stackdriver: adds on-change with debounce for alias by
field
* cli: fix init of bus
* Remove .dropdown-menu-open on body click fixes #13409
* stackdriver: improve aggregation logic
* stackdriver: fix failing test
* stackdriver: wip: split metric dropdown into two parts -
resource and metric
* first test
* stackdriver: remove console.log
* filter plugins and layout mode
* stackdriver: typescriptifying controller
* render list
* stackdriver: break out aggretation logic into its own
directive and controller. also adds tests for new dropdown
population logic
* Remove option r from ln command since its not working
everywhere
* fix: updated tests
* using variable
* Fix spelling of your and you're
* Changed setting to be an alerting setting
* created test for graph disclaimer
* Remove non-existing css prop
* fix: Legend to the right, as table, should follow the
width prop. Removing css conflicting with baron's width
calculation. #13312
* stackdriver: populate alignment and aggregation dropdowns
based on metric type and value type
* docs: postgres gif.
* limit number of time series show in explore graph
* docs: whats new for 5.3
* rendering: Added concurrent rendering limits
* stackdriver: fix test after parameter added to constructor
* stackdriver: skeleton for more query types on the backend
* stackdriver: better error handling for getLabels
* stackdriver: move getLabels from query_ctrl to datasource
* Run all sql data source queries for one panel concurrently
* removed border, cleaned up css and fixed class naming
* devenv: fix uid for bulk alert dashboards
* Explore: moved code to app/features/explore
* target gfdev-prometheus datasource
* stackdriver: fix bug when multiple projects connected to
service account
* devenv: adds script for creating many dashboards with
alerts
* stackdriver: refactoring - extract out filtersegments
component
* stackdriver: alias patterns WIP
* Fix goconst issues
* When stacking graphs, always include the y-offset so that
tooltips can render proper values for individual points
* provisioning: changed provisioning default update interval
from 3 to 10 seconds
* Update render.js
* Update render.js
* Fix https://github.com/grafana/grafana/issues/13387 metric
segment options displays after blur
* docs: improve oauth generic azure ad instructions
* invalidate access token cache after datasource is updated
* Fix datbase > database
* Fix changed want md5 hash
* Revert Fahrenheit to Farenheit
* Fix some typos found by codespell
* Fix misspell issues
* fix: use same User-Agent header as in other places in
grafana when making external requests
* docs: changed Json Web Token wording to be just JSON key
file
* added beta notice
* created switch button for org users that can toggle
between users and invites
* pkg/tracing/tracing.go: replace deprecated cfg.New
function
* stackdriver: remove WIP tests
* pkg/services/sqlstore/user.go: empty branch
* pkg/tsdb/elasticsearch/response_parser.go: simplify
redundant code
* pkg/tsdb/elasticsearch/client/search_request.go: simplify
loop with append.
* Explore: remove closing brace with opening brace
* Explore: show series title in tooltip of legend item
* Explore: dont rate-hint on rate queries
* Explore: Fix metric suggestions when first letters have
been typed
* Fix misspelled authentication in Auth overview doc
* fix reader linux test
* resolve symlink on each run
* stackdriver: add templating support for metric, filter and
group by
* wip: panel options idea2
* stackdriver: use group by fields to create default alias
* make sure we don't add the slash twice
* Update render.js
* devenv: fix docker blocks paths
* Updated phantomjs render script to take full height
screenshots
* devenv: re-add missing docker-compose files
* Explore: Fix label suggestions for recording rules
* Explore: Fix click to filter for recording rule
expressions
* Don't use unnest in queries for redshift compatibility
* pkg/tsdb/elasticsearch/client/client.go: use time.Since
instead of time.Now().Sub
* pkg/plugins/dashboards_updater.go: Simplify err check
* pkg/services/sqlstore/alert_notification.go: Simplify err
check
* remove the test that does not do anything
* add the trailing slash
* stackdriver: add custom User-Agent header
* stackdriver: remove hardcoding of test project name
* updated
* set maxworkers 2 for frontend tests
* removes codedov refs
* disable codecov
* add a test
* Fix setting test
* stackdriver: improve query look
* moves /tests to /pkg/plugins
* stackdriver: add alignment period to query controller
* stackdriver: making sure we dont pass too big
alignmentPeriods to the stackdriver api
* stackdriver: fix broken tests
* stackdriver: adds default value for alignment period
* stackdriver: use alignment period that is passed from
frontend. if set to auto, use value provided from the
panel. also added tests for alignment period
* stackdriver: use alignment that is passed from frontend in
the query
* stackdriver: adds advanced options collapse to query
editor with the possibility to select secondary
aggregation and alignment
* removes testdata from getting started
* stackdriver: fix init labels bug
* moves benchmark script to devenv
* moves docker/ to devenv/docker
* changelog: adds note about closing #9735
* docs: add version disclaimer for postgres query editor
* moves files from /tests to more appropriate folders
* docs: template variable support for annotations
* Update getting_started.md
* pkg/services/sqlstore: Fix sess.Id is deprecated: use ID
instead. (megacheck)
* pkg/services/sqlstore: Fix x.Sql is deprecated: use SQL
instead. (megacheck)
* fix: increased team picker limit to 50, closes #13294
* rename folder
* Add documentation for PostgreSQL query builder
* stackdriver: improve query editor to handle no data better
* stackdriver: fixes in query editor
* stackdriver: type rename
* display team member labels
* new column for team_member table
* fix hipchat color code used 'no data' notifications
* stackdriver: makes sure filter dropdown doesnt crash if
clicked before values are loaded
* fixes strange gofmt formatting
* stackdriver: adds null check to query
* gdev: added test dashboard for polystat panel
* Explore: Add multiline syntax highlighting to query field
* stackdriver: add support for filtering to backend
* Hotfix for Explore (empty page after running query)
* stackdriver: add filters to query editor
* ldap: made minor change to group search, and to docs
* stackdriver: fixes remove option in filter
* dsproxy: add mutex protection to the token caches
* metrics: starts some counters at zero
* tech: remove all mobx stuff
* stackdriver: wip - filters for query editor
* stackdriver: adds remove group by option
* stackdriver: improve segments for group bys in query
editor
* stackdriver: load time series meta data for group by
dropdown
* stackdriver: make sure distinct labels are returned. also
added test
* stackdriver: fix failing test
* stackdriver: test get metric types
* stackdriver: wip - group bys
* stackdriver: update logo
* stackdriver: ux for config page, docs updated
* upload: make the button text configurable
* stackdriver: add simple readme
* stackdriver: reverse points array to be in ascending order
* stackdriver: adds support for primary aggregations
* stackdriver: better error handling and show query metadata
* stackdriver: tests for parsing api response
* stackdriver: add first test for parsing frontend queries
* Stackdriver: Fix weird assignment
* Stackdriver: Use metric type from query controller state
* Stackdriver: Set target correctly
* Stackdriver: Break out parse response to its own func
* Stackdriver: Use ds_auth_provider in stackdriver. This
will make sure the token is renewed when it has exporired
* Stackdriver: Restructured ds proxy tests
* stackdriver: fix test
* Stackdriver: Add new file
* Stackdriver: Start breaking out apply route to its own
file
* Stackdriver: Parsed url params
* Stackdriver: Parse datapoints correctly
* Stackdriver: Add backed query using
* Stackdriver: Prettify json
* Stackdriver: Move data to target
* Stackdriver: Load example metric and start parsing
response
* Stackdriver: Exposing stackdriver backend api
* Stackdriver: Use new access token API
* Stackdriver: Temporary exporting token lookup
* Stackdriver: Loads project name and metrics descriptions
into the query controller
* Stackdriver: Corrected field title and removed debug
logging
* Stackdriver: Removed debug logging
* Stackdriver: Improved feedback for when a JWT is already
uploaded in the ds config page
* docs: first draft for stackdriver datasource
* dsproxy: implements support for plugin routes with jwt
file
* Stackdriver: Added test for getProjects
* Stackdriver: Refactored api call to google resource
manager
* Stackdriver: Add scope for google resource manager
* Stackdriver: Fixed error message from google resource
manager
* Removes comment
* Adds skeleton for loading projects from google resource
manager
* Adds unit tests to test datasource
* Implemented datasource test
* Fixed broken if statement
* Adds jwt token signing google auth
* Improved user experience
* Upload: Fixing link function in directive
* Adds poc code for retrieving google auth accesstoken
* Build new stackdriver frontend script
* Add stackdriver backend skeleton
* Adds stackdriver frontend skeleton
* Use datasource cache for backend tsdb/query endpoint
(#13266)
* added underline to links in table
* fix: add permission fixes
* test: added simple dashboard reducer test
* feat: dashboard permissions are working
* Fix gauge display accuracy for 'percent (0.0-1.0)'
* use pluginName consistently when upgrading plugins
* removes old unused examples (#13260)
* fix: added loading screen error scenario (#13256)
* changelog: add notes about closing #11555
* Interpolate $__interval in backend for alerting with sql
datasources (#13156)
* anonymous usage stats for authentication types
* disabling internal metrics disables /metric endpoint
* wip: dashboard permissions to redux
* renames PartialMatch to MatchAny
* fix: add folder permission fix
* fix: fixed tslint issue introduced in recent prometheus PR
merge
* Folder pages to redux (#13235)
* folder permissions in redux
* minor fix
* fix test
* add annotation option to treat series value as timestamp
* wip: first couple of things starting to work
* fix: added reducer test
* Adhoc-filtering for prometheus dashboards (#13212)
* docs: include active directory ldap example and
restructure
* First pass at a text based template var, getting feedback
from devs
* fix: url update loop fix (#13243)
* wip: working on reducer test
* fix: gofmt issues
* fix: added loading nav states
* redux: moved folders to it's own features folder
* fix theme parameter not working problem while prefer theme
set to light (#13232)
* fix: added type export to fix failing test
* fix: fixed typescript test error
* mobx -> redux: major progress on folder migration
* another circleci fix
* Another circleci fix
* changed gometalinter to use github master
* commented out metalinter as gopkg is having issues
* wip: folder settings page to redux progress
* Fix prometheus label filtering for comparison queries
(#13213)
* Upgrade react and enzyme (#13224)
* enable partial tag matches for annotations
* put folder name under dashboard name, tweaked aliginments
in search results
* support template variables with multiple values
* Teams page replace mobx (#13219)
* renames jest files to match new convention
* upgrade of typescript and tslint and jest (#13223)
* fix nil pointer dereference (#13221)
* removes protoc from makefile
* wip: folder to redux
* changelog: note about closing #11681
* Adding Centrify configuration for Oauth
* wip: progress on redux folder store
* wip: moving option tabs into viz tab
* fix: changing edit / view fullscreen modes now work
* actions for group sync
* initial render/refresh timing issues
* team settings
* wip: began folder to redux migration
* test for team member selector
* flattened team state, tests for TeamMembers
* refactor: moved stuff into new features dir
manage-dashboards
* move: moved styleguide to admin
* fix: fixed singlestat test broken due to file move
* moved folders from features into the main feature folder
they belong to
* Add jsonnet with grafonnet-lib to provisioning docs
* fix: Dashboard permissions now shows correctly, fixes
#13201
* redux: do not use redux logger middleware in production
builds
* Allow oauth email attribute name to be configurable
(#13006)
* Document required order for time series queries (#13204)
* refactor: changed AlertRuleItem pause action to callback
* Fix query builder queries for interval start
* team members, bug in fetching team
* renaming things in admin
* graph legend: use refactored version of scrollbar, #13175
* Teampages page
* refactoring: custom scrollbars PR updated, #13175
* scrollbar: use enzyme for tests instead of
react-test-renderer
* changelog: add notes about closing #13121
* fix code formatting
* Fix quoting to handle non-string values
* scrollbar refactor: replace HOC by component with children
* graph legend: scroll component refactor
* scrollbar refactor: replace HOC by component with children
* adds usage stats for alert notifiers (#13173)
* changelog: typo
* docs: what's new in v5.3 placeholder
* tests for withScrollBar() wrapper
* tests for withScrollBar() wrapper
* changelog: restructure and add 5.3.0-beta1 header
* changelog: add notes about closing #13157
* wrapper for react-custom-scrollbars component
* graph legend: use 'react-custom-scrollbars' for legend
scroll
* wrapper for react-custom-scrollbars component
* docs: sql datasources min time interval
* changelog: note about closing #10424
* docs: minor fixes
* docs: Updated auth docs
* docs: updated
* spelling errors
* make default values for alerting configurable
* Adding Action to view the graph by its public URL.
* changelog: order changes by group (ocd)
* changelog: add notes about closing #13030
* added radix rule and changed files to follow rule (#13153)
* set search query action and tests
* docs: default paths in the docker container.
* delete team
* added only-arrow-functions rule and changed files to
follow new rule (#13154)
* load teams and store in redux
* build: uses 1.1.0 of the build container.
* creating types, actions, reducer
* Only authenticate logins when password is set (#13147)
* refatoring: minor changes to PR #13149
* Add min time interval to mysql and mssql
* build: updated build-container with go1.11.
* added no-conditional-assignment rule and changed files to
follow new rule
* fix test failures for timeInterval
* document postgres min time interval
* Add min time interval to postgres datasource
* Changed functions to arrow functions for
only-arrow-functions rule. (#13131)
* mobx: removed unused SearchStore
* fix: Updated test
* redux: minor changes to redux thunk actions and use of
typings
* Reactify sidebar (#13091)
* Changed functions to arrow functions for
only-arrow-functions rule.
* removed unused mobx state
* changed functions to arrowfunctions for
only-arrow-functions rule (#13127)
* fix: fixed home dashboard redirect issue when behind
reverse proxy, fixes #12429 (#13135)
* tests
* Changed functions to arrow functions for
only-arrow-functions rule.
* improve remote image rendering (#13102)
* handle new variables created not yet added
* changelog: add notes about closing #10095
* graph legend: implement series toggling and sorting
* docs: postgres provisioning
* changelog: adds note about closing #13125
* fixed title prefix, fixes #13123 (#13128)
* Reopen log files after receiving a SIGHUP signal (#13112)
* Fixed a bug in the test and added test for filter alert
rules
* graph legend: react component refactor
* added Bitcoin as a currency option
* added new-parens rule (#13119)
* cli: avoid rely on response.ContentLength (#13120)
* some basic selector tests
* fixed testcase
* pausing alert
* docs: v5.2 upgrade notice, ref #13084
* changelog: add notes about closing #7330
* extend from purecomponent
* remove log
* actions and reducers for search filter
* added rule use-isnan and and updated file to follow new
rule (#13117)
* added no-namespace and no-reference rules (#13116)
* added no-angle-bracket-type-assertion rule and updatet
files to follow rule (#13115)
* Updated rules for variable name (#13106)
* update wording and punctuation (#13113)
* redux: improved state handling
* redux: progress
* wip: load alert rules via redux
* refactor: changed nav store to use nav index and selector
instead of initNav action
* moving things around
* Fix array display from url
* wip: solid progress on redux -> angular location bridge
update
* wip: moving things around
* wip: moveing things around
* wip: redux refactor
* pass timerange in meta data queries
* ignore information_schema tables
* added jsdoc-format rule and fixed files that didn't follow
new rule (#13107)
* set member-access and no-var-keyword to true, removed
public in two files (#13104)
* fix: for text flickering in animation on chrome on windows
* graph legend: minor refactor
* use quoting functions from MysqlQuery in datasource
* render query from query builder
* graph: make table markup corresponding to standards
* graph: legend as React component
* wip: redux
* redux: wip progress for using redux
* fixed so preloader is removed when app is loaded
* removed console.log
* separated fade-ins for logo and text, tweaked delays and
timing for fade-in animations
* docs: minor updates, more work to do
* ux: minor fixes to loading screen
* start implementing mysql query editor as a copy of
postgres query editor
* reset metric column when changing table
* fix timeFilter resetting when changing table
* when changing table, refresh panel once after columns have
been changed
* added pro-tip text, removed pro-tip link
* fixed styling for background and text, added intro
animation, added fade in to text
* fix timecolumn handling when table changes
* set default for timeGroup in query builder to $__interval
* when changing table reset columns
* fix metric column suggestions
* fix suggestions for metric column
* Return correct path for OpenBSD in cli's returnOsDefault
(#13089)
* updated changelog
* New TV Mode, dashboard toolbar update (layout change & new
cycle view mode button) (#13025)
* added this:any to functions and changed functions to
arrowfunctions
* feat: loading css async & inline svg
* Explore: keep query when changing datasources (#13042)
* changed var to let in 50 files (#13075)
* changed var to let in last files (#13087)
* tsconfig: started on setting noImplicitThis to true
* tsconfig: format file
* document postgres version and TimescaleDB option
* tslint: added 1 more rule, #12918
* tslint: added 2 more rules and removed unused component,
#12918
* tslint: added a new tslint rule
* added rule prefer const to tslint (#13071)
* dep ensure (#13074)
* hide Query Builder button for table panels
* check for correct quoting of multiple singlequotes
* changed var to const 2 (#13068)
* changed var to const (#13061)
* update latest.json to latest stable version
* docs: corrected docs description for setting
* remove min time interval from datasource config
* remove unneeded queryOptions
* changelog: add notes about 4.6.4 and 5.2.3 releases
* fix quoting
* strip quotes when auto adding alias
* handle quoting properly for table suggestion
* link to github instead
* recheck timecolumn when changing table
* update filter macro on time column change
* string formating fixes
* go fmt fixes
* Moved tooltip icon from input to label #12945 (#13059)
* added empty cta to playlist page + hid playlist table when
empty (#12841)
* changed from rotating to bouncing, maybe to much squash
and stretch
* Update provisioning.md
* make default mode for table panels raw editor
* improve description for timescaledb option
* Review feedback.
* use series matchers to get label name/value
* changelog: add notes about closing #12865
* fixed so validation of empty fields works again
* added a loading view with a spining grafana logo
* fix handling of variable interpolation for IN expresions
* tslint: tslint to const fixes part3 (#13036)
* tslint: more const fixes (#13035)
* tslint: changing vars -> const (#13034)
* tslint: autofix of let -> const (#13033)
* fix: minor fix to changing type
* upgrades to golang 1.11
* wip: angular panels now have similar edit mode and panel
type selection enabling quick changing between panel react
and angular panel types
* add min interval to postgres datasource
* wip: major change for refresh and render events flow
* fix: going from fullscreen fix
* wip: minor fixes
* copy and docs update for alert notification reminders
* change/add tests for alerting notification reminders
* wip: trying to align react & angular edit modes
* WIP Update tslint (#12922)
* changelog: add notes about closing #12952 #12965
* build: fixes rpm build when using defaults.
* docs: reminder notifications update
* changelog: add notes about closing #12486
* docs: changes
* created a section under administration for authentication,
moved ldap guide here, created pages for auth-proxy,
oauth, anonymous auth, ldap sync with grafana ee, and
overview, moved authentication guides from configuration
to, added linksin configuration page to guides
* fixed so animation starts as soon as one pushes the button
and animation stops if login failed
* added link to getting started to all, changed wording
* tests: fix missing tests (with .jest suffix)
* docs: alerting notification reminders
* update copy/ux for configuring alerting notification
reminders
* heatmap: fix tooltip bug in firefox
* fix tableSegment and timeColumnSegment after table
suggestion
* Update notifications.md
* sql: added code migration type
* changelog: add notes about closing #11890
* Explore: Apply tab completion suggestion on Enter (#12904)
* Show min-width option only for horizontal repeat (#12981)
* Fix bulk-dashboards path (#12978)
* add suggestions for reminder frequency and change copy
* don't write to notification journal when testing
notifier/rule
* remove unnecessary conversion (metalinter)
* fix after merge with master
* Refresh query variable when another variable is used in
regex field (#12961)
* Webpack tapable plugin deprecation (#12960)
* unify quoting
* dsproxy: interpolate route url
* prefill editor with first metric table
* only allow 1 filter macro in where clause
* fix timeColumnType assignment
* make suggested filter macro depend on type
* use unixEpochGroup macro for unix timestamp
* alerting: inline docs for the slack channel.
* Replacing variable interpolation in 'All value' value
* changelog: add notes about closing #12229
* cleaning up test data
* changelog: add notes about closing #12892
* docs: es versions supported
* devenv: update sql dashboards
* when value in variable changes, identify which variable(s)
to update
* removed inverse btn styling and added bgColor to generic
oauth and grafana.com login buttons, added styling so log
in button uses dark theme inverse btn styling both for
dark and light theme
* suggest operators depending on datatype
* Doc - fix title level
* Update doc about repeating panels
* Doc - fix broken link
* build: beta versions no longer tagged as latest.
* docs: cleanup.
* docs: docker and restarts.
* update persisted parts on param change
* persist datatype information
* Don't do value suggestions for numeric and timestamp
* created a class for loading buttons, added a button for
when login slow on login page
* rename postgres_query.jest.ts to .test.ts
* fix variable escaping
* autodetect timescaledb when version >= 9.6
* build: duplicate docker run-script removed.
* detect postgres version for saved datasources
* Set User-Agent header in all proxied datasource requests
* use pointer cursor for buttons in query editor
* docs: cloudwatch dimensions reference link.
* require postgres 9.4+ for ordered set aggregate functions
* add postgres version to datasource config
* only show first/last aggregate when timescaledb is enabled
* keep jsonData in PostgresDatasource
* docs: remove message property in response from get alerts
http api
* changelog: add notes about closing #5623
* build: cleanup
* should allow one default datasource per organisation using
provisioning
* build: fixes rpm verification.
* docs: add grafana version note for gitlab oauth
* docs: gitlab: add note about more restrictive API scope
* social: gitlab_oauth: set user ID in case email changes
* docs: document GitLab authentication backend
* social: add GitLab authentication backend
* build: verifies the rpm packages signatures.
* changelog: add notes about closing #12224
* added guide for logging in to grafana for the first and
how to add a datasource
* docs: update
* feat: add auto fit panels to shortcut modal, closes #12768
* changelog: add notes about closing #12680
* docs: update postgres provisioning
* Remove dependencies
* Rename test files
* changelog: add notes about closing #12598
* add version disclaimer for TimescaleDB
* document TimescaleDB datasource option
* Use variable in newPostgresMacroEngine
* Remove Karma scripts and docs
* changelog: add notes about closing #10705
* fix: ds_proxy test not initiating header
* Don't pass datasource to newPostgresMacroEngine
* Remove tests and logs
* Fix for Graphite function parameter quoting (#12907)
* don't render hidden columns in table panel (#12911)
* fix: added missing ini default keys, fixes #12800 (#12912)
* refactor timescaledb handling in MacroEngine
* change: Set User-Agent to Grafana/%Version%
Proxied-DS-Request %DS-Type% in all proxied ds requests
* Remove comment
* Cleanup
* All tests passing
* Class to function. Half tests passing
* Karma to Jest: graph (refactor) (#12860)
* tech: removed js related stuff now that 99% is typescript
(#12905)
* Add React container
* changelog: add notes about closing #12805
* fix redirect to panel when using an outdated dashboard
slug (#12901)
* Add commit to external stylesheet url (#12902)
* build: increase frontend tests timeout without no output
* fix: Alerting rendering timeout was 30 seconds, same as
alert rule eval timeout, this should be much lower so the
rendering timeout does not timeout the rule context, fixes
#12151 (#12903)
* changelog: add notes about closing #12476
* now hides team header when no teams + fix for list hidden
when only one team
* Rename to HeatmapRenderer
* Mock things
* Explore: Fix label filtering for rate queries
* add $__unixEpochGroup to mssql datasource
* add $__unixEpochGroup to mysql datasource
* Add $__unixEpochGroup macro to postgres datasource
* changed const members to filteredMembers to trigger get
filtered members, changed input value to team.search
(#12885)
* get timecolumn datatype on timecolumn change
* changelog: add notes about closing #12882
* Removes link to deprecated docker image build
* Add mocks
* fix datatype query
* Changelog update
* docker: makes it possible to set a specific plugin url.
* Add support for $__range_s (#12883)
* Refactor setting fillmode
* Update dashboard.md
* Fix typo
* Explore: label selector for logging
* Replace element
* Rewrite heatmap to class
* Explore: still show rate hint if query is complex
* Explore: Filter out existing labels in label suggestions
* Add note for #12843
* Fix initial state in split explore
* replaced with EmptyListCta
* Begin conversion
* changed messaging
* mention time_bucket in timescaledb tooltip
* keep legend scroll position when series are toggled
(#12845)
* replaced confirm delete modal with deleteButton component
in teams members list
* [wip]added empty list cta to team list, if statement
toggles view for when the list is empty or not
* Update NOTICE.md
* Fix padding for metrics chooser in explore
* fix rebase error
* revert passing ctrl to testDatasource
* change timescaledb to checkbox instead of select
* add timescaledb option to postgres datasource
* build: fixes png rendering in the docker based
docker-image build.
* remove duplicated /tmp entry in .dockerignore
* move run script, update README
* produce an image compatible with grafana-docker
* More efficient builds and some fixes to the Go binaries
* Simple Docker-based build option
* Add example OR search_filter to docs
* Explore: expand recording rules for queries
* Explore: Query hints for prometheus (#12833)
* Convert URL-like text to links in plugins readme
* skip target _self to remove full page reload
* use uid when linking to dashboards internally in a
dashboard
* add previous fill mode to query builder
* added more info about the teams
* removed mock-teams, now gets teams from backend
* changelog: add notes about closing #12756
* add api route for retrieving teams of signed in user
* devenv: update sql dashboards
* team list for profile page + mock teams
* changelog: add notes about closing #11270
* Fixing bug in url query reader and added test cases
* fix missing *
* rename last fillmode to previous
* change fillmode from last to previous
* return proper payload from api when updating datasource
* Review feedback
* changelog: update #12768
* Remove window
* Fix url param errors
* Explore: Metrics chooser for prometheus
* Add clear row button
* Add clear button to Explore
* Explore: show message if queries did not return data
* Fix closing parens completion for prometheus queries in
Explore (#12810)
* Update ROADMAP.md
* Update ROADMAP.md
* Update ROADMAP.md
* switched to lowercase
* replaced escape() call, renamed formatter to be more
expressive
* Smaller docker image (#12824)
* build: failing to push to docker hub fails the build.
* Reversed history direction for explore
* Explore: Add history to query fields
* unix socket docs
* Explore: facetting for label completion (#12786)
* docs: how to build a docker image.
* Remove Karma test
* All tests passing
* Add mock constructor
* Begin conversion
* Convert query control
* Convert datasource
* refactor: take submenu into account PR #12796
* refactor: renaming variables, refactoring PR #12796
* refactor: moving code around a bit, refactoring PR #12796
* Remove weird import
* Disable submenu when autopanels is enabled
* Extract to own method
* Use and add keybard shortcut
* Add temporary url parameter
* Replace floor with round
* Go with just single margin compensation
* Add margin and padding compensation
* Remove weird import
* Fit panels to screen height
* dont break default parameters for functions
* fix suggestion query
* renamed slate unit tests to .jest.ts
* Remove simple tests
* Support client certificates for LDAP servers
* Begin conversion
* Add click on explore table cell to add filter to query
(#12729)
* dont order for aggregate
* build: makes it easier to build a local docker container.
* add moving average to query builder
* adjust frontend test
* use $__timeGroupAlias macro
* specify grafana version for last fill mode
* add fillmode 'last' to sql datasource
* build: disables external docker build for master and
release.
* build: complete docker build for master and releases.
* build: removes unused args to docker build.
* build: imported latest changes from grafana-docker.
* build: attach built resources.
* build: builds docker image from local grafna tgz.
* build: new workflow for PR:s and branches.
* docker: inital copy of the grafana-docker files.
* changelog: add notes about closing #1823 #12801
* Add auto_assign_org_id to defaults.ini
* changelog: add notes about closing #12749
* changelog: add notes about closing #12766
* adjust test dashboards
* remove info logging
* added two new classes for color, fixed so link has value
color
* changelog: add notes about closing #12063
* Add new Redshift metrics and dimensions for Cloudwatch
datasource
* changelog: add notes about closing #12752
* changelog: update
* Improve iOS and Windows 10 experience (#12769)
* add series override option to hide tooltip (#12378)
* changelog: add notes about closing #12785
* removed table-panel-link class
* removed table-panel-link class and add a class white to
modify table-panel-cell-link class
* add warning when switching from raw sql mode
* add more prominent button for switching edit mode
* document $__timeGroupAlias
* add $__timeGroupAlias to mysql and mssql
* fix custom variable quoting in sql* query interpolations
* add compatibility code to handle pre 5.3 usage
* Change to arrow functions
* Add all tests to one file
* changelog: add notes about closing #12561
* Remove angularMocks
* All tests passing
* replaced style with class for links
* Add $__timeGroupAlias to postgres macros
* adjust test dashboards
* remove alias from postgres $__timeGroup macro
* changelog: add notes about closing #12762
* fix: team email tooltip was not showing
* fix: test data api route used old name for test data
datasource, fixes #12773
* removed a blank space in div
* fixed color for links in colored cells by adding a new
variable that sets color: white when cell or row has
background-color
* changelog: add notes about closing #12300
* Weird execution order for the tests...
* fixed test result
* added urlescape formatting option
* changelog: add notes about closing #12744
* changelog: add notes about closing #12727
* add aws_dx to cloudwatch datasource
* also fixed 'Watt per square metre'
* fixed that missing one
* add version note to metric prefix and fix typo
* devenv: update sql dashboards
* mssql: update tests
* fix usage of metric column types so that you don't need to
specify metric alias
* Begin conversion
* changelog: update
* changelog: add notes about closing #12747
* Add missing tls_skip_verify_insecure (#12748)
* rename special to windows
* add first and last support
* refactor function handling in query builder
* refactor column function handling
* consistent nameing fro group and select
* mssql: add logo
* add tests for metric column prefix to mssql
* add metric column prefix test for mysql
* document metric column prefix in query editor
* document metric column prefix for mysql and mssql
* Remove extra mock
* Karm to Jest
* correct volume unit
* Remove lo
* Test passing. Remove Karma
* adjust metric prefix code to sql engine refactor
* add testcase for metric column as prefix
* Use metric column as prefix
* Fix emit errors
* Fix test
* Add async/await
* refactor schema query generation
* removed unused class from the deletebutton pr
* frontend part with mock-team-list
* Update test for local time
* update devenv datasources and dashboards for sql
datasources
* Begin conversion
* use const for rowlimit in sql engine
* Cleanup
* Remove Karma file
* All tests passing
* All except one passing
* remove tableschema from query builder ui
* changelog: add notes about closing #12731
* elasticsearch: support reversed index patterns
* update devenv datasources and dashboards for sql
datasources
* mssql: use new sql engine
* mysql: use new sql engine
* postgres: use new sql engine
* refactor sql engine to make it hold all common code for
sql datasources
* Pass more tests
* Refactor Explore query field (#12643)
* Begin conversion
* All tests passing. Remove Karma test.
* Almost all tests passing
* Add tslib to TS compiler
* docs: using interval and range variables in prometheus
* Two passing tests
* Update Configuration.md
* Start conversion
* changelog: add notes about closing #12533
* changelog: add notes about closing #12668
* changelog: update
* changelog: add notes about closing #12668
* fix for typeahead background, increased lighten
* added position absolute and some flexbox so I could remov
changes in display and setTimeout, added tests and types,
did some renaming
* fix invalid reference
* minor fixes
* fix failing test due to time diff issues
* Remove comments
* remove unneeded comment
* Remove old influx stuff
* changelog: add notes about closing #12489
* changelog: add notes about closing #12551
* changelog: add notes about closing #12533
* Karma to Jest
* Begin conversion
* changelog: add notes about closing #12589
* changelog: add notes about closing #12636 #9827
* Remove influx qeury_ctrl jest, as it is already completed
* Test fail depending on test order
* Karma to Jest: begin influx query_ctrl
* Make beautiful
* Karma to Jest: completer
* Remove comments and Karm test
* Karma to Jest
* Pass more tests
* changelog: add notes about closing #12644
* fix code style
* docs: mentation that config changes requires restart.
* return 400 if user input error
* changing callback fn into arrow functions for correct
usage of this (#12673)
* Fix requested changes
* Add templating docs for
* Add docs about global variables in query template
variables
* Figuring out why it doesn't initialize
* Add support for interval in query variable
* Add jest file
* Change to arrow functions
* Add graph_ctrl jest
* changelog: add notes about closing #12691
* Update kbn.ts
* Add jest test file
* Id validation of CloudWatch GetMetricData
* Fix timezone issues in test
* fix window function query without group by
* changelog: adds note for #11487
* add order by to metadata queries
* set explicit order for rate and increase
* escaping ssl mode on postgres param
* fix pre gui queries shortcircuit
* Add unit test for InfluxDB datasource
* Support timeFilter in templating for InfluxDB
* Datasource for Grafana logging platform
* removed blue-dark variable with blue-light in light-theme,
blue variable now has same value as blue-dark had before,
should fix issue with any low contrast issues with blue in
light-theme, this made query-blue variable unnecessery
removed it, added variable for variable dropdown highlight
background
* removed import appEvents
* built a component for delete button in tables, instead of
using a modal to confirm it now does it in the row of the
table, created a sass file for the component, the
component uses css transitions for animation
* fix: postgres/mysql engine cache was not being used, fixes
#12636 (#12642)
* added: replaces added to grafana
* fix: datasource search was not working properly
* add groupby when adding first aggregate
* docs: minor docs fix
* Fix label suggestions in Explore query field
* pluginloader: expose flot gauge plugin
* alert: add missing test after refactor
* Handle query string in storage public_url (#9351) (#12555)
* HTTP API documentation +fix when updating a playlist
(#12612)
* Explore: calculate query interval based on available width
* Use url params for explore state
* Dont parse empty explore state from url
* Fix default browser th font-weight
* Adding eval_data to alerts query results
* ldap: Make it possible to define Grafana admins via ldap
setup, closes #2469
* nginx: update to docker block
* minor fix for legacy panels
* Remove string casting for template variables in prometheus
* ldap: docker block readme update
* Make prometheus value formatting more robust
* Update README.md
* Devenv testdata dashboards (#12615)
* fix test for query generation
* dont run queries if target has no table set
* add query to find metric table
* add popover for metric column
* rename PostgresQueryBuilder to PostgresMetaQuery
* dont expand variables in rawSql
* filter datatype for groupby suggestions
* fix rate special function when using group by
* remove unused import
* refactor adding sqlPart
* remove render code from sql_part
* fix bug in query generation with metricColumn
* refactor PostgresQuery
* refactor PostgresQueryCtrl
* refactor PostgresQueryCtrl and PostgresQuery
* refactor addGroupBy and removeGroupByPart
* use let for variable declaration
* Add templateSrv to PostgresQuery tests
* add tests for query generation
* Reverted $q to Promise migration in datasource_srv
* Allow settting of default org id to auto-assign to
(#12401)
* Remove unused SASS variables (#12603)
* fix: panel embedd scrolbar fix, fixes #12589 (#12595)
* fix tests for postgres datasource
* Set datasource in deep links to Explore
* send timerange with metricFindQuery
* Explore Datasource selector
* changed you to your (#12590)
* indent generated SQL
* Add comments
* Fix freezing browser when loading plugin
* handle counter overflow and resets in rate
* partition by metricColumn when using increase
* add rate and increase special functions
* wip: another baby step, another million to go
* skip backend request if extended statistics is invalid.
(#12495)
* Refactor team pages to react & design change (#12574)
* (prometheus) prevent error to use $__interval_ms in query
(#12533)
* fix: folder picker did not notify parent that the initial
folder had been changed, fixes #12543 (#12554)
* Add support for skipping variable value in URL, fixes
#12174 (#12541)
* Update mac.md
* Update windows.md
* Update rpm.md
* Update debian.md
* Don't build-all for PRs
* Refactor value column SQL generation
* Refactor metric column sql generation
* fix: requests/sec instead of requets (#12557)
* Add folder name to dashboard title (#12545)
* Fix css loading in plugins (#12573)
* Refactor group by query generation
* Refactor where clause generation
* refactor SQL generation for value columns
* Refactor time column sql generation
* Refactor render function on PostgresQuery
* prepare sql part for special functions
* set query gui as default handle old panels gracefully
* Added BurstBalance metric to list of AWS RDS metrics.
* dont throw exception for unknown types
* Prevent scroll on focus for iframe
* add alias when adding group by
* Add new sequential color scales
* add aggregates when adding group by
* add column alias when add aggregate function
* move go vet out of scripts and fixing warning (#12552)
* fix enter in sql_part_editor
* fix editing expression parts
* wip: you can now change panel type in edit mode
* rename inputBlur to switchToLink
* react panels: working on changing type
* Cleanup and remove some jest.fn()
* fix spelling
* add current value to dropdown if its not in resultset
* Revert 'show current value in dropdown when its not part
of list'
* Remove irrelevant tests and templateSrv stub
* show current value in dropdown when its not part of list
* redid redux poc, old branch was to old and caused to many
conflicts
* wip: redux poc
* fix diff and percent_diff (#12515)
* improve error message
* generate unique id when variable is multi
* support GetMetricData
* dep ensure
* update aws-sdk-go
* Update lodash/moment version (#12532)
* fix: minor css change
* wip: minopr progress on react panel edit infra
* Tabs to spaces in tslint (#12529)
* wip: minor progres on react panels edit mode
* add None to metric column suggestions
* handle pre query gui queries gracefully
* dont break on panels that dont have rawQuery set
* refactor transformToSegments
* devenv: updated devenv provision scripts
* wip: viz editor started
* ux: minor fix/tweak to inactive view mode, think logo
should be visible & fixes dashboard title alignment
* changelog: add notes about closing #12379
* Fix datasource sorting with template variables
* another baby step
* changelog: add notes about closing #12484
* changelog: add notes about closing #12506
* rename quoteLiteral to quoteIdentAsLiteral
* changelog: add notes about closing #12506
* fix links not updating after changing variables
* remove unused function removeSelect
* put updateParam back in
* fix where clause generation
* remove hardcoded $__timeFilter, make macros functional in
where clause
* remove dead code, make label more flexible
* fix constraint removal
* react-panels: minor progress on data flow
* dont autoquote, suggest quoted values if requried
* prometheus heatmap: fix unhandled error when some points
are missing
* fix caret for help button is ds http settings
* do not autoquote identifiers
* fix group by ui
* changelog: add notes about closing #11618 #11619
* fix where constraint handling
* remove dead code from sql_part fix where clause query
generation
* Add mock to test files
* Create new instance in beforeEach
* Remove comments
* Karma to Jest: Cloudwatch datasource
* Karma to Jest: MySQL datasource
* Karma to Jest: postgres datasource
* Basic cleanup
* Add mocks in test file
* Remove q and stub
* Add Jest stubs
* Remove async
* Remove logs and comments
* Start elastic ds test conversion
* run enterprise build only on master for now
* refix the settings indentation
* update stats admin doc
* fix json indentation
* include where constraints in query generation
* remove unnecessary conversions
* rearrange elements of query builder
* mv query_part to sql_part
* changelog: update
* changelog: add notes about closing #11818
* changelog: add notes about closing #12460
* changelog: add notes about closing #8186
* changelog: add notes about closing #12379
* changelog: add notes about closing #12362
* devenv: open ldap docker block now prepopulating data with
correct member groups
* ci: Only publish grafana enterprise packages tagged with
enterprise.
* Make table sorting stable when null values exist (#12362)
* Fix bar width issue in aligned prometheus queries (#12483)
* correct example (#12481)
* ldap: improved ldap test env with more structured users
and groups
* test: fixed usage of wrap in tests.
* ci: typo
* ci: publishes grafana enterprise to s3.
* refactoring: making api wrap public
* refactoring: enterprise build/hooks refactorings (#12478)
* Karma to Jest: datasource_srv (#12456)
* fix: #12461 introduced issues with route registration
ordering, adding plugin static routes before plugins
package had been initiated (#12474)
* omit extra template refresh (#12454)
* wip: minor progress on DataPanel
* Improve extensions build. (#12461)
* [mysql] fix $__timeGroup rounding (#12469)
* [mssql] fix $__timeGroup rounding (#12470)
* [postgres] fix timeGroup macro rounding (#12468)
* pkg/social/github: Allow changing of userinfo data
(#12471)
* notifications: dont return error if one notifer failed
* use sqlPart for ui parts
* avoid calling os.Exit outside main.go (#12459)
* update mysql/mssql query/annotation help sections
* docs: update folders api
* Changed documentation for MSSQL and MySQL to reflect macro
changes
* docs: update scripted dashboard for v5
* docs: update scripted dashboard for v5
* docs: update organisation http api
* docs: upd windows installation
* notifications: send notifications synchronous
* notifications: read without tran, write with tran
* registry: adds more comments
* registry: adds comments to interfaces
* changelog: update
* changelog: update
* changelog: add notes about closing #12438
* alerting: only log when screenshot been uploaded
* fixes typos
* Reverted yarn.lock to master
* Used PostgreSQL TSDB as a model the set up the
__timeFilter, __timeFrom, and __timeTo macros for
Microsoft SQL and MySQL
* changelog: add notes about closing #12444
* Revert 'auth proxy: use real ip when validating white
listed ip's'
* changelog: adds note for #11892
* changelog: add notes about closing #12430
* fix footer css issue
* Karma to Jest: 3 test files (#12414)
* fix: log close/flush was done too early, before server
shutdown log message was called, fixes #12438
* react panels wip
* Karma to Jest: value_select_dropdown (#12435)
* support passing api token in Basic auth password (#12416)
* Add disabled styles for checked checkbox (#12422)
* changelog: add notes about closing #11920
* changelog: add notes about closing #11920
* changelog: update
* docs: upd what's new in v5.2
* docs: update index with link to what's new in 5.2 instead
of 5.0
* wip: react panels editor mode, tabs working
* changelog: add notes about closing #12385
* react panels wip
* feat: panels v2, metrics-tab loading
* docs: upd what's new in v5.2
* docs: upd what's new in v5.2
* login: fix layout issues
* build: yarn should be included out of the box on circle ci
* notifier: handle known error first
* ensure that if the dasboardID is negative, it will not
bypass the checking of the right (#12398)
* changelog: add notes about closing #11968
* Webpack 4 (WIP) (#12098)
* Make pre/postfix coloring checkboxes inactive when gauge
is active
* removes unused return object
* handle 'dn' ldap attribute more gracefully (#12385)
* Update ROADMAP.md
* Fix typo
* Switched MySQL and MSSQL macros for timeFilter and related
to use BETWEEN and calculate UNIX time server side instead
of database side. Fixes #11618 #11619
* docs: update installation instructions
* routing: raise panic if duplicate routes are added
* routing: allows routes to be added to existing groups
* changelog: add notes about closing #11868
* enhance error message if phantomjs executable is not found
* fix: annnotation api & sql issue
* changelog: add notes about closing #12248
* set correct text in drop down when variable is present in
url using key/values
* Light improve of massive delete annotation api (#12390)
* Fix 12248
* Fixing wrong /public path, relative to the webpack.dev
script, that would avoid webpack from cleaning previous
builds. (#12351)
* changelog: add notes about closing #12383
* changelog: adds note about closing #12313
* Return a 404 when deleting a datasource through the API if
it doesn't exist and add a test for it to confirm #12313
* Set $rootScope in DatasourceSrv
* Add options to colorize prefix and postfix in singlestat
* devenv: adds dashboard with multiple rows
* changelog: adds note about closing #10971
* Pass configured/auth headers to a Datasource.
* Karma to Jest: history_ctrl. .gitingore: .vs/
* changelog: add notes about closing #12359
* build: fix signing of multiple rpm packages
* docs: what's new in v5.2 and docker installation updates
* tech: adds comments about route register code
* changelog: add notes about closing issue
* Karma to Jest: history_ctrl. Update version: ts-jest
* changelog: add notes about 5.2.0-beta2
* changelog: add notes about closing #12240
* changelog: add notes about closing #12256
* changelog: add notes about closing #11792
* changelog: add notes about closing #12315
* dashboard: fix drop down links
* wip: react panels, query editor loading from react
PanelEditor view
* fix regressions after save modal changes of not storing
time and variables per default
* wip: react panel minor progrss
* updated
* Karma to Jest: history_srv (#12341)
* react panels minor progress
* make sure to process panels in collapsed rows when
exporting dashboard
* changelog: add notes about closing #3132
* docs: update installation instructions
* react panel minor progress
* ldap: add note about config in Grafana
* ldap: add note to dockerfile
* changelog: add notes about closing #12343
* docs: Plugin review guidelines and datasource auth pages
* remove unused argument in default scenario of guardian
test
* fix: fixed permission issue with api key with viewer role
in dashboards with default permissions
* wip: react panel makeover mini progress
* Karma to Jest: time_srv (#12303)
* Karma to Jest: team_details_ctrl (#12321)
* Fix error in InfluxDB query
* expose functions to use sessions
* changelog: adds note about closing #11607
* test commit for checking github permissions
* changelog: add notes about closing #12278
* changelog: add notes about closing #11076
* snapshot: copy correct props when creating a snapshot
* added comment to reason the id tag
* set current org when adding/removing user to org
* changelog: add notes about closing #10707
* Include the vendor directory when copying source in to
Docker (#12305)
* changelog: adds note about closing #12199
* adds tests for journaling sql operations
* use epoch to compare timestamp
* adds inTransactionCtx that calls inTransactionWithRetryCtx
* merge create user handlers
* transactions: start sessions and transactions at the same
place
* adds info about eval/reminder interval
* tests for defaultShouldNotify
* cloudwatch: handle invalid time range
* notifications: make journaling ctx aware
* make sure to use real ip when validating white listed ip's
* Adding Cloudwatch AWS/AppSync metrics and dimensions
* notifications: gather actions in one transaction
* changelog: adds note about closing #12286
* sql: adds tests for InTransaction
* bus: noop should still execute fn
* removes unused code
* bus: Dispatch now passes empty ctx if handler require it
* bus: dont start transaction when creating session
* bus: dont mix ctx/classic handlers
* bus: DispatchCtx can now invoke any handler
* refactoring: renamed AddCtxHandler to AddHandlerCtx PR
#12203
* refactoring: transaction manager PR #12203
* fixes typo in code
* check if admin exists or create one in one transaction
* replace begin/end with wrapper function
* bus: support multiple dispatch in one transaction
* docs: adds info about grafana-dev container
* changelog: add notes about closing #12282
* Added Litre/min and milliLitre/min in Flow (#12282)
* remove papaparse dependency
* list name is deleteDatasources, not delete_datasources
* remove internal influx ifql datasource
* Document the endpoint for deleting an org
* tests: rewrite into table tests
* influxdb: adds mode func to backend
* Fix queryfield wrapper css
* Fix Queryfield metrics field missing
* batch DOM reads from query field typeahead
* hint support for typeahead
* Make suggestions an object
* Trigger typeahead on Ctrl-Space
* refactor Explore query field
* changelog: add notes about closing #11484
* changelog: add notes about closing #11233
* Remove import
* Fix PR feedback
* Removed papaparse from external plugin exports
* Karma to Jest: query_builder
* dsproxy: move http client variable back
* Karma to Jest: threshold_mapper
* Expose react and slate to external plugins
* Karma to Jest: threshold_manager
* Karma to Jest: query_def, index_pattern
* Remove import
* Karma to Jest: elastic_response
* changelog: notes about closing #12189
* #11607 corrected file cleanup test
* #11607 removed unnecessary conversion (from gometalinter)
* Improve test readability
* #11607 fixed formatting
* #11607 Cleanup time of temporary files is now configurable
* moved link icon in panel header
* Karma to Jest: playlist_edit_ctrl
* Karma to Jest: exporter
* Update graphite.md
* changelog: add notes about closing #10796
* added id tag to Panels for html bookmarking on longer
Dashboards
* dashboard import to folder: minor fixes
* Docs: output location from build script
* Correct Provisioning documentation link
* dsproxy: allow multiple access tokens per datasource
* Mock core in jest-setup
* Docs: Update Build from Source
* Convert tests from Karma to Jest
* changelog: add notes about closing #11963
* save-modal save button (#12047)
* Karma to Jest: graph-tooltip
* removed QueryOptionsCtrl references
* update latest.json to 5.1.3
* use ng-if
* hot-fix ifql testdatasource()
* triggers grafana-docker master build
* changed som variables to values so it's the same for dark
and light theme, added special styling for login text,
link and input (#12196)
* mattn/go-sqlite3 v1.6.0 to v1.7.0
* changelog: add notes about closing #11074
* fixed so panel title doesn't wrap and (#12142)
* graph: fix legend decimals precision calculation
* Use Passive eventListener for 'wheel' (#12106)
* removes more unused code
* removes unused code
* nicer collapsed row behaviour (#12186)
* remove DashboardRowCtrl (#12187)
* add panel on enter
* autoFocus the search filter
* adds missing return statement
* Fix typo: eleasticsearch -> elasticsearch (#12184)
* Annotations support for ifql datasource
* dashboard: improve import UX for non-editor users
* Template variable support for ifql datasource
* Use cut to trim down the SHA1.
* show import menu in sidenav, dashboard search and manage
dashboards page
* Fix metrics panel test by adding config mock
* Respect explore settings in config ini
* Add .html to webpack.hot resolve extensions
* Version the tarball uploaded to s3 and tell the next step
about it.
* dashboard: import into current folder from manage folder
page
* dashboard: add Import button to manage page
* dashboard: import to folder
* Query helpers for IFQL datasource
* alerting: fixes broken table rename
* docs: docker secrets available in v5.2.0
* Remove round-robin urls in ifql DS
* IFQL range variable expansion
* alerting: renames journal table to
alert_notification_journal
* alerting: move queries from evalcontext to notifier base
* alerting: invert sendOnce to sendReminder
* changelog: add notes about closing #11657
* alerting: remove zero units from duration
* alerting: only check frequency when not send once
* always show server admin link in sidenav if grafana admin
* update google auth config docs
* changelog: add notes about closing #11525
* fix: fixed problem with expanding access mode help in ds
settings
* dep: use master branch for plugin model
* alerting: fixes invalid error handling
* fixed so default is all and general only show dashboards
* changelog: add notes about closing #11882
* added s to folderId in params
* renamed variable in tests
* added comment, variableChange -> variableValueChange
* added a test
* added if to check if new variable has been added
* Gravatar fallback does not respect 'AppSubUrl'-setting
(#12149)
* change admin password after first login
* changelog: adds note about closing #11958
* revert: reverted singlestat panel position change PR
#12004
* Revert 'provisioning: turn relative symlinked path into
absolut paths'
* provisioning: turn relative symlinked path into absolut
paths
* changelog: adds note about closing #11670
* elasticsearch: sort bucket keys to fix issue wth response
parser tests
* docs: what's new in v5.2
* made folder text smaller
* Implement code review changes
* Bug fix for repeated alerting even on OK state and add
notification_journal cleanup when alert resolves
* Fix tests
* Fix multiple bugs
* Revert changes post code review and move them to
notification page
* Feature for repeated alerting in grafana
* InfluxDB IFQL datasource
* changelog: add notes about closing #11167
* docs: docker secrets support. (#12141)
* alerting: show alerts for user with Viewer role
* datasource: added option no-direct-access to
ds-http-settings diretive, closes #12138
* provisioning: adds fallback if evalsymlink/abs fails
* tests: uses different paths depending on os
* renames intervalSeconds to updateIntervalSeconds
* changelog: add notes about closing #5893
* removed italic
* changelog: add notes about closing #11500, #8168, #6541
* Alert panel filters (#11712)
* docs: update alerting docs with alerting support for
elasticsearch
* added span with folder title that is shown for recently
and starred, created a new class for folder title
* provisioning: makes the interval for polling for changes
configurable
* provisioning: only update dashboard if hash of json
changed
* remove dead code
* elasticsearch: minor refactor
* changelog: update
* changelog: add notes about closing #10748, #8805
* save modal ux improvements (#11822)
* changelog: add notes about closing #11515
* provisioning: only provision if json file is newer then db
* Guard /explore by editor role on the backend
* make path absolute before following symlink
* provisioning: follow symlinked folders
* test: fixes broken test on windows
* changelog: add notes about closing #11771
* changelog: add notes about closing #11971
* Fix singlestat threshold tooltip (#12109)
* build: only runs db related tests on db.
* build: integration testing postegres on ci.
* build: mysql integration testing on ci.
* Fix karma tests that rely on MetricsPanelCtrl
* changelog: Second epochs are now correctly converted to
ms.
* Fix panel menu test
* Restrict Explore UI to Editor and Admin roles
* Fix CSS to hide grid controls in fullscreen/low-activity
views
* changelog: add notes about closing #11645
* Support InfluxDB count distinct aggregation (#11658)
* provisioning: enable relative path's
* changelog: note about closing #11858
* devenv: improve readme
* provisioning: place testfiles within testdata folder
* changelog: add notes about closing #11494
* Add new regions to handleGetRegions function (#12082)
* PR: minor change to PR #12004 before merge
* fix: refactoring PR #11996 and fixing issue #11551
16706hashkey in json editors
* devenv: script for setting up default datasources
* tech: updated react-grid-layout to latest official
release, closes #12100
* Fix cache busting for systemjs imports for plugins
* devenv: scripts for generating many unique dashboards
* docker: new block for elasticsearch6
* changelog: add notes about closing #12087
* sql: seconds epochs are now correctly converted to ms.
* add validation of uid when importing dashboards
* fix: add track by name in annotation list to avoid
$$hashKey in json
* changelog: adds note about closing #9703
* go fmt fixes
* configure proxy environments for Transport property
* Show create dashboard link if at least editor in one
folder
* graphite: avoid dtracing headers in direct mode
* Fix sourcemaps for webpack hot config
* return better error message when err is ErrSmtpNotEnabled
* elasticsearch: handle if alert query contains template
variable
* changelog: adds note about closing #9847
* Sparklines should scale to the data range (#12010)
* Split webpack dev config into dev and hot
* Upgrade webpack loaders (#12081)
* pin versions of xorm to resolve sql tests
* build: fixes broken path for bra run
* use sql builder for the get system stats sql query
* fix directly specified variable rendering
* remove unused function renderAdhocFilters
* send param in callback for get-param-options
* Fix #9847 Add a generic signout_redirect_url to enable
oauth logout
* make separator configurable
* fix error message
* Changed Prometheus interval-alignment to cover whole panel
range
* alerting: refactor tests
* add usage stats for datasource access mode
* Review feedback (heading, typos)
* add additional usage stats metrics
* add tests for sending usage stats
* Integrated dark theme for explore UI
* elasticsearch: adds some more/better debug logging to
client
* changelog: fix broken link to contributor
* changelog: adds note about closing #11788
* The old code for centering removed
* Backend image rendering as plugin (#11966)
* Fix typo in README.md
* build: updates publisher to support arm archs for deb and
rpm.
* Explore split view
* Fixed custom dates for react timepicker
* Explore: Design integration
* Explore: time selector
* Fix dashboard snapshot deletion (#12025)
* fix names of foreign arch packages
* elasticsearch: handle NaN values
* elasticsearch: metric and pipeline agg setting json
encoding fix
* elasticsearch: query interval override fix
* elasticsearch: default interval fix
* Document table row merge for multiple queries
* elasticsearch: pipeline aggregation fix for json encoding
* build: always build for all platforms.
* fix: remove deadcode to make gometalinter happy
* elasticsearch: refactor query handling and use new es
simple client
* elasticsearch: new simple client for communicating with
elasticsearch
* elasticsearch: refactor and cleanup
* build: removes deploy from nightly while testing it.
* update provisioning.md
* Fix ResponseParser for InfluxDB to return only string
values
* Conditionally select a field to return in ResponseParser
for InfluxDB
* build: clean up the workflow filters.
* Revert 'Conditionally select a field to return in
ResponseParser for InfluxDB'
* Revert 'Fix ResponseParser for InfluxDB to return only
string values'
* Revert 'move queryTimeout option to common setting'
* move queryTimeout option to common setting
* add query timeout option for Prometheus
* build: crosscompilation for nightlies and releases.
* set style for registered query components
* make param wrapper configurable
* fix metric column when using group by
* separate label in template from type
* use sql part component
* use sql part component
* add sql_part component
* Singlestat value: vertical alignment fix
* Added Swiss franc currency
* quote column name in buildValueQuery
* return values quotes for suggestions in where expression
* test: moves test files to testdata folder
* build: downloads and bundles phantomjs for darwin and
windows.
* build: publisher updated to support more architectures and
OSs.
* build: saves artifacts with the build
* build: crossplatform build with packages.
* build: script for tagging and pushing a release
* codespell: fixes
* fix: fixed some minor startup logging issues
* Sqlstore refactor (#11908)
* Adds constant description for units
* test: increase expire time to avoid tz issues in tests
* explore: fixes #11953
* migrated files to ts, removed unused functions from
lodash_extended
* docs: installation pages for 5.1.3
* changelog: add note for #11830
* legend: fixes Firefox/baron scroll bug
* wrote classes
* migrated jquery.flot.events to ts
* use canMakeEditable
* allow to add annotation for non editable dashboard
* scroll: temporary fix for double scrollbar issue
* backend plugins: log an error if parsing meta field failed
* backend plugins: expose meta field
* fixes following first code review
* add useful note to alerting api docs
* improve alerting api docs sample responses
* Prometheus step alignment: shift interval only on jitter
* Use babel and hot loader only in yarn start
* docs: removes notes about beeing introduced in 5.0
* lock caniuse-db version to resolve phantomjs rendering
issue
* Update dashboard_permissions.md
* move database-specific code into dialects (#11884)
* refactor: tracing service refactoring (#11907)
* fix typo in getLdapAttrN (#11898)
* docs: update installation instructions targeting v5.1.2
stable
* changelog: add notes about closing #11862, #11656
* Fix dependencies on Node v10
* Update dashboard.md
* changelog: add notes about closing #10338
* Phantom render.js is incorrectly retrieving number of
active panels (#11100)
* singlestat: render time of last point based on dashboard
timezone (#11425)
* Fix for #10078: symbol '&' is not escaped (#10137)
* Add alpha color channel support for graph bars (#10956)
* interpolate 'field' again in Elasticsearch terms queries
(#10026)
* Templating : return __empty__ value when all value return
nothing to prevent elasticsearch syntaxe error (#9701)
* http_server: All files in public/build have now a huge
max-age (#11536)
* fix: ldap unit test
* only error log when err is not nil
* rename alerting engine to service
* case-insensitive LDAP group comparison (#9926)
* changelog: add notes about closing #11813
* docs: updated changelog
* fix XSS vulnerabilities in dashboard links (#11813)
* PR: ux changes to #11528
* renames alerting engine to match other services
* allow analytics.js to be cached, enable anonymizeIP
setting (#11656)
* Revert 'Add baron scrollbar to a node managed by gafana
(#11850)'
* decrease length of auth_id column in user_auth table
* fixed svg background (#11848)
* Add baron scrollbar to a node managed by gafana (#11850)
* Fix CSS asset loading for yarn start (HMR) (#11855)
* fix: fixed gometalinter issues with Discord PR
* docs: update installation instructions targeting v5.1.1
stable
* fix root_url in docs & comments (#11819)
* changelog: 5.1.1 update
* fix: loading of css url (images/fonts)
* Support for local Docker builds
* Update ROADMAP.md
* support additional fields in authproxy (#11661)
* better handling for special chars in db config (#11662)
* Fix/improved csv output (#11740)
* Update ROADMAP.md
* Update ROADMAP.md
* Update ROADMAP.md
* Remove preceding `/` from public JS path (#11804)
* Add panel scrolling docs (#11826)
* escape pipe symbol same way as in templating docs
* changelog: add notes about closing #11616
* added left:unset to counter left:0 in recent react-select
release
* fixed text color in light theme
* changelog: add notes about closing #11800
* test if default variable interpolation is effective when
no specific format is specified
* changelog: notes about closing #11690
* changelog: add notes for ##11754, #11758, #11710
* scroll: remove firefox scrollbars
* Add missing items to Gopkg.lock
* pipe escape try #3
* use ascii code for pipe symbol to not mess up markdown
table
* try to fix table
* dont shadow format passed in as function parameter
* fix: removed manully added http server from inject graph
as it is now a self registered service
* fix: removed unused channel
* fix: comment spell fix
* fix: fixed race condition between http.Server
ListenAndServe & Shutdown, now service crash during
startup correctly closes http server every time
* refactoring: lots of refactoring around server shutdown
flows, making sure process is terminated when background
service has crashed
* refactor: provisioning service refactoring
* Metrics package now follows new service interface &
registration (#11787)
* Revert 'Opportunities to unindent code (unindent)'
* scroll: fix scrolling on mobile Chrome (#11710)
* changelog: add notes about closing #11625
* remove jest it.only to not skip important tests
* fixed so all buttons are styled not just small ones, fixes
#11616
* --amend
* fix: improved handling of http server shutdown
* add test for prometheus table column title
* Fix url encoding, expand template vars, fix TS hacks
* Explore: Add entry to panel menu to jump to Explore
* changelog: notes about closing #11498
* Initial Baby Step to refactoring settings from global vars
to instance (#11777)
* table: fix for padding
* graph histogram: fix invisible highest value bucket
* dashboard: show save as button if can edit and has edit
permission to folders
* new property for current user indicating if edit
permissions in folders
* increase length of auth_id column in user_auth table
* fix dropdown typeahead issue
* Use opportunities to unindent code (unindent)
* Outdent code after if block that ends with return (golint)
* Remove redundancy in variable declarations (golint)
* fix: minor fix to plugin service shut down flow
* appveyor: uppercase the C drive in go path
* docs: further documents changes to the docker image.
(#11763)
* disable ent build to avoid slowing down build speed
* Explore: add support for multiple queries
* Fixed settings default and explore path
* Refactoring PluginManager to be a self registering service
(#11755)
* fix: removed log calls used while troubleshooting
* refactor: refactoring notification service to use new
service registry hooks
* Enable Grafana extensions at build time. (#11752)
* revert renaming of unit key ppm
* fix to match table column name and order
* Import and typescript fixups
* Settings to enable Explore UI
* tech: removes unused code
* Explore WIP
* add deadcode linter to circleci
* pkg: fix deadcode issues
* build.go: fix deadcode issues
* docs: update current version to 5.1
* docs: update installation instructions targeting v5.1.0
stable
* changelog: update for v5.1.0
* fix so that google analytics script are cached
* prometheus: convert metric find query tests to jest
* prometheus: fix variable query to fallback correctly to
series query
* removed height 100% from panel-container to fix ie11 panel
edit mode
* replaced border hack carot with fontawesome carot fixes
#11677
* dev: Mac compatible prometheus block. (#11718)
* mssql: fix value columns conversion to float when using
timeseries query
* postgres: fix value columns conversion to float when using
timeseries query
* mysql: fix value columns conversion to float when using
timeseries query
* sql datasource: extract common logic for converting value
column to float
* added pointer to show more, reset values on new query
* docs: add known issues section for mssql documentation
* force GET for metadataRequests, w/ test
* Renamed helperRequest and removed positional args
* Move function calls w/ side-effects to componentDidMount
* changed test name and dashboardMock code
* fixed test
* add ineffassign to circleci gometalinter check
* pkg/components: fix ineffassign issues
* pkg/cmd: fix ineffassign issues
* pkg/log: fix ineffassign issues
* pkg/services: fix ineffassign issues
* removed import config
* fixed so user who can edit dashboard can edit row, fixes
#11466
* Fixes signing of packages.
* db: fix failing user auth tests for postgres
* changed rps to reqps
* bump version
* added button to show more preview values for variables,
button runs a function that increases options limit, fixes
#11508
* Added requests/sec(throughput)
* use inherited property from api when rendering permissions
* return inherited property for permissions
* pkg/tsdb: fix ineffassign isues
* fix circleci gometalinter test
* Sort results from GetDashboardTags
* Add silent option to backend requests
* docs: escape asterisk in Graphite docs
* docs: disable quoting option for MSSQL
* docs: fix example for graphite tag query
* docs: spelling
* docs: add missing backtick for mysql/postgres
* docs: fixes for table in variable docs
* build: fixes release deploy
* changelog: adds releaste date for 5.1.0-beta1
* graphite: convert ds test to jest
* build: removes gometalinter
* cli: adds os and arch headers
* slightly better example
* adjust timeFilter, timeFrom and timeTo macro examples
* docs: what's new improvements
* docs: what's new improvements
* docs: what's new
* docs: fix typos
* docs: what's new
* docs: whats new
* docs: more info prometheus heapmap to whats new
* docs: improve what's new in v5.1
* docs: what's new in v5.1 draft
* Add weback-dev-server with hot/hmr support
* build: only lint the pkg folder
* changelog: adds note about closing #11476
* dev: only build server with bra run
* add gometalinter to circleci
* comment unused struct fields
* remove unused variables detected by varcheck
* fix typo
* docs: describes variable formatting options
* docs: graphite template variables for tag queries
* docs: describes new variable formatting syntax
* changelog: notes about closing #10427
* move jest test file to specs
* make add panel panel scrollbar adjust when panel/dashboard
grid are resized
* style: code simplifications
* build: introduce -dev flag optimal for building in
development mode
* changed copied message and added forced render for width
change
* removed padding and moved carrot
* changelog: adds note about closing #11613 and #11602
* cleanup, make sure users are always synced with ldap
* Specify expected encoding for access/secret key
* make sure user's default org is kept up to date
* fix: sign in link should have target self to trigger full
page reload, fixes #11626
* codespell: exclude by words instead of files
* remove old comment
* org role sync tests
* refactor authproxy & ldap integration, address comments
* pass DN in ldap test
* tests for user auth module
* fix ldap test
* restructure GetUserByAuthInfo
* error handling
* use Result in GetAuthInfoQuery
* switch to passing ReqContext as a property
* cleanup
* switch to Result
* update auth proxy
* fixes
* fix tests
* shared library for managing external user accounts
* fix: Label font weight should be semi bold, fixes #11629
* docs: typos
* graphite: adds tests for tags and tag_values functions
* docs: update provisioning documentation
* changelog: notes about closing #10883
* changelog: adds note for #11553
* dev: only build server with bra run
* changelog: adds note for #11173
* added forceupdate to grid item so addpanel items rezie
instantly, renamed function to copyPanel, fixed panel
items height issue
* revert changes of add panel button to require save
permission
* changelog: fix typo
* changelog: notes about closing #11572
* Fix issues with metric reporting (#11518)
* changelog: notes about closing #10747
* fix: Row state is now ignored when looking for dashboard
changes (#11608)
* disable codecov comments
* add some more sort order asserts for permissions store
tests
* Revert 'build: remove code cov'
* Revert 'removes codecov from frontend tests'
* docs: update postgres macro functions documentation
* tsdb: update query and annotation editor help texts for
postgres
* changelog: notes about closing #11578
* calculate datetime for timeFrom and timeTo macro in go
* set default for sslmode to verify-full in postgres
datasource editor (#11615)
* add some more sort order asserts for permissions store
tests
* Use sort.Strings() (gosimple)
* Remove unused return value assignment (gosimple)
* Remove unnecessary fmt.Sprintf() calls (gosimple)
* Merge variable declaration with assignment (gosimple)
* Use fmt.Errorf() (gosimple)
* Simplify make() (gosimple)
* Use raw strings to avoid double escapes (gosimple)
* Simplify if expression (gosimple)
* Simplify comparison to bool constant (gosimple)
* Simplify error returns (gosimple)
* Remove redundant break statements (gosimple)
* fix unconvert issues
* variable: fix binding bug after ts conversion
* add GetFromAsTimeUTC and GetToAsTimeUTC and use them in
timeFilter macro
* fix merge conflict
* remove changes to module.ts from this branch
* migrated dropdown-typeahead to ts (#11499)
* changelog: adds note for #11556
* changelog: adds note for #11133
* dashboard: better size and alignment of settings icons
* bra should use the proper build script
* moved version in help menu to top
* docs: elasticsearch and influxdb docs for group by time
interval option (#11609)
* changelog: improved docker image
* docs: new docker image in Grafana 5.1.0.
* added fix for test
* addeds test for sort order
* Show Grafana version and build in Help menu
* changlelog: notes about closing issues/pr's
* sqlds: fix text in comments for tests
* add codespell to circleci
* removes codecov from front-end tests
* wip: writing tests for permission sorting
* changelog: adds note about closing #11228
* remove postgresversion and convert unix timestamp in go
* Support deleting empty playlist
* Grafana-CLI: mention the plugins directory is not writable
on failure
* make timefilter macro aware of pg version
* add postgresVersion to postgres settings
* changelog: adds note for #11530
* Documentation spelling fix
* docs: fix codespell issues
* public: fix codespell issues
* conf: fix codespell issues
* blocks: fix codespell issues
* CHANGELOG.md: fix codespell issues
* scripts: fix codespell issues
* pkg: fix codespell issues
* provisioned dashboard validation should be made when
importing a dashboard
* provisioned dashboard validation should not be made from
provisioning service
* remove comment/unused variable
* docs: improves provisoning example for postgres
* docs: add mssql provisioning example
* docs: improves provisoning example for each datasource
* ordered user orgs alphabeticaly fixes #11556
* permissions sorting fixed + icon same size as avatrs
* docs: update mssql with azure sql database support
* changelog: adds note for #11569
* docs: update default annotation limit when querying api
* Mention the ?inactive parameter in the docs
* Add another URL param «inactive» which works like «kiosk»
but with title
* tsdb: remove unnecessary type casts in sql data sources
macro engines
* tsdb: sql data sources should handle time ranges before
epoch start correctly
* change annotation limit from 10 to 100
* remove mistakenly added styles
* fix right side legend rendering in phantomjs
* scrollbar: fix so no overflow for legend under graph
* build: remove code cov
* scrollbar: fixes continuation scrolling for iOS
* added styling to fontawesome icons so they have same size
as the other icons
* Improve wording
* Add minimal IAM policy example for CloudWatch data source
* PR comments
* docs: fix typo of default port for mssql
* minor scrollbar fixes
* scrollbar: remove unused div
* dashboard: show baron scrollbar in dashboard panel when
mouse is over
* fix so that page scrollbars can be scrolled by keyboard on
page load
* fix so that dash list panel are rendered correctly
* panel: add baron scroller to correct element
* Windows build updated to go1.10.
* scrollbar: use native scroll for page
* converted functions to arrow functions
* folders: fix permissions in folder picker component
* permission: fix user with org viewer save/move permissions
* alerting: handle invalid json format
* docker: change mysql container so that it uses utc
* mysql: use a datetime column with microsecond precision in
test
* tsdb: improved floating point support when converting sql
time column to epoch (ms)
* added @ngInject
* provisioning: dont override permissions
* provisioning: simplify db query
* mssql: fix precision for time columns in time series query
mode
* postgres: support running multiple postgres integration
tests
* postgres: fix precision for time columns in time series
query mode
* mysql: fix precision for time columns in time series query
mode
* mysql: mysql tests should use a db server with UTC
* provisioning: fixes broken tests
* tsdb: add support for more data types when converting sql
time column to epoch (ms)
* provisioning: check provisiong before saveCmd
* provisioning: fixes typo
* provisioning: adds error handling
* added @ngInject
* playlist: add missing nginject attribute
* Update annotations.md to contain correct annotations api
path
* removed console.log
* docs: update after #11531
* docs: improves provisoning example text
* fix test
* convert graphite epoch to ms
* skip mssql fix
* add mssql and mysql
* don't convert to uint64
* scrollbar: fix phantomjs rendering error
* prevent angular from evaluating {{hostname}} in tooltip
(#11514)
* using millis for annotations too
* data source: rename direct/proxy access mode in data
source settings
* Fix ResponseParser for InfluxDB to return only string
values
* Conditionally select a field to return in ResponseParser
for InfluxDB
* docs: fixes typo
* docs: updated debian distro in install docs to stretch,
closes #11527
* Revert files
* Fix after merge
* Make dashboard JSON editable
* guardian: when updating permissions should verify existing
permissions
* api: allow authenticated users to search current org users
and teams
* css: quick fix after IE11 changes
* scrollbar: fix add panel height bug
* scrollbar: styles cleanup
* migrating to ts
* fixed sidemenu icon issue created by earlier pr
* added icons for viewer and editor, fixed add permission
team avatar
* singlestat: Fix optimization in
setTableColumnToSensibleDefault
* influxdb: Check before assuming first column to be 'time'
* provisioning: fix tests for save provisioned dashboard
modal
* provisioning: ux fixes when saving provisioned dashboards
* graphite: use a query when testing data source
* migrated metric_segment to ts
* scrollbar: fix search scroller in mobile view
* scrollbar: fix graph legend height
* changelog: adds note for #11165
* migrated dash_class to ts
* migrated segment_srv to ts
* removed indent for manage dashboards
* scrollbar: fix potential memory leaks in event handlers
* skip migration if it is a big number
* Use curly brackets around hyperlink help text #11478
(#11479)
* scrollbar: fix dashboard width updating for different
modes
* scrollbar: remove perfect-scrollbar and add baron to
package list
* scrollbar: fix dashboard width bug
* scrollbar: fix 'legendScrollbar.destroy is not a function'
error
* Alerting: Fixing mobile notifications in Microsoft Teams
* created closeDropdown function, renamed appevent, added
second appevent for open timepicker
* permissions: return user and team avatar in folder
permissions api
* permission: generate team avatar url with default
* migrated playlist-routes to ts
* migrated last all.js to ts
* scrollbar: fix Firefox scroll position restore
* Notes for closing #7119
* changelog: adds note for #11128
* variables: adds test for variable sorting
* Add case-insensitive sort for variables.
* graphite: fixes #11434
* settings: fixes test
* changed from margin to padding
* fixes for avatar on adding permission and size for gicon
* scrollbar: fix side menu on mobile devices
* changed variable for tabbed close btn hover, and changed
text-strong variable for lighttheme, removed commented out
variable
* mssql: typos in help sections
* docs: spelling
* added if to onAppevent, renamed appevent, add appevent to
applyCustom and setRelativeFilter
* Webpack Grafana plugin template project to links (#11457)
* scrollbar: fix Firefox issue (white stripe on the right of
scrollbar)
* scrollbar: fix legend rendering issues
* Initially move to baron scrollbar
* rm panel.type constrain from threshold_mapper.ts (#11448)
* No need for node_modules/bin in npm run-script (#11449)
* changelog: adds note about closing #11555
* add article
* fix some typos
* docker: add users and groups to ldap block
* timepicker now closes without exiting edit/view mode,
close order: modal, timepicker, view
* migrated graph_tooltip to ts
* started migration to ts
* Fix #10555 #6888 Better escape for Prometheus variables
* bounnd the esc key to exit timepicker
* print to stderr since logger might not exist
* settings: return error instead of ignoring it
* docs: adds provisioning examples for all datasources
* Fixed typo in upgrading.md
* docs: rpm install page - update to centos 7
* docs: install pages for v5.0.4
* removed padding for icons and added margin
* changelog: another update for v5.0.4
* changelog: update for v5.0.4
* changelog: adds note about closing issues
* fixed graphpanel editmode and custom width for right side
legend for IE11
* alerting: bad default state for notifiers
* Clarified formatting multiple values doc
* Add Google Hangouts Chat notifier.
* dashboard: allow alerts to be saved for new/provisioned
dashboards
* add response_parser test
* add fallback for gravatar in org/admin view
* tech: migrates to none deprecated mail lib
* docs: not about email notifications and local img store
* alert: fixes broken link back to grafana
* docs: update table plugin documentation with value/range
to text mapping
* cleanup and add more test
* table panel: additional fixes for value to text mapping
* add value to text mapping
* provisioning: better description for provisioned save
modal
* dashboards: reject updates of provisioned dashboards
* notes about closing #9210
* fixed alignment in search + fixed issue ie popup
* changelog: adds note about closing #11102
* sidemenu fix for internet explorer 11, changed icon
width/height to pixels and added height to logo
* docs: prometheus ds, remove 'new in v4.3' note
* remove categories from queryPart
* fix a terms bug and add test
* remove unused import
* handle aggregate functions more generic
* Add new currency - Czech koruna
* docs: update heatmap and prometheus docs, #10009
* provisioning: improve UX when saving provisioned
dashboards
* styled login page for ie11
* - pipeline aggs support - add some test
* support non-nested menu entries
* provisioning: removes id from dashboard.json
* Handle Interval Date Format similar to the JS variant
https://github.com/grafana/grafana/pull/10343/commits/7e14e272fa37df5b4d412c16845d1e525711f726
* Use net.SplitHostPort to support IPv6
* add missing word to graphite docs
* set right series name
* Missed the 'p d' hint in the popup-menu
* Add hints for the 'pd' Duplicate Panel command from PR
#11264
* remove README changes
* finished CODING PHASE 1
* wip
* notes about closing #11306
* cleanup
* changelog: unix socket permissions
* Adjust permissions of unix socket
* docs: fix typos
* docs: update postgres, mysql and mssql documentation
* docs: update graph panel documentation
* docs: tweaks
* changelog: adds note about closing #5855
* remove dashboardId check... i can't figure out how the
tests work
* get circle to run tests again
* add dashboardId to test
* remove api tests
* fix operator
* remove constraint from sqlstore
* move dashboard error to API (not sql)
* legend: small refactoring
* changelog: adds note about closing #11278
* docs: spelling
* docs: add intro paragraph to provisioning page
* Cleanup CircleCI V2 Conversion
* Make golint happier
* dooh
* update the updated column!
* using circle as my tester
* using circle as my tester
* adding tests, but they arent running locally
* changelog: notes for #1271 and #2740
* graph: minor fixes to y-axes alignment feature
* added save icon to save buttons
* removed trash can icon from save buttons
* mysql: skip tests by default
* Return actual user ID in UserProfileDTO
* convert epoch to milliseconds
* adding updated column
* mssql: update query editor help
* mysql: fix precision for the time column in
table/annotation query mode
* postgres: fix precision for the time column in
table/annotation query mode
* mssql: fix precision for the time column in
table/annotation query mode
* mssql: remove UTC conversion in macro functions
* mssql: fix timeGroup macro so that it properly creates
correct groups
* small screen legend right also work like legend under in
render + set scrollbar to undefined in destroyScrollbar so
it doesnt become disabled when toggeling between right and
under
* dashboard version cleanup: more tests and refactor
* Make golint happier
* fixed so legend right works like legend under on small
screens
* adding created column
* Alerting: move getNewState to EvalContext
* minor refactor of dashboard version cleanup
* refactor: dashboard version cleanup
* limit number of rows deleted by dashboard version cleanup
* fix dashboard version cleanup on large datasets
* docs: add variable regex examples (#11327)
* graphite: adds more traces for alerting
* sql datasource: extract common logic for converting time
column to epoch time in ms
* docs: details about provisioning elastic
* update email default year and name
* dataproxy: adds dashboardid and panelid as tags
* Alerting: Add retry mechanism and its unitests
* docs: spelling
* snapshot: fix legend rendering bug
* session: update defaults for ConnMaxLifetime
* snapshots: removes errors for empty values in ViewStore
* Allocated to a separate alignment block. Replaced the
attribute of the second axis by the attribute of the axes.
* Expose option to disable snippets
* changed var to const, changed to string interpolation
* mssql: adds test for time should be ms in table mode
* Remove unused kibana images
* changed var to const
* changelog: adds note about closing #11114 & #11086
* mssql: convert tests to jest
* mssql: fix precision for time column in table mode
* converted file to ts
* changelog: notes about #10093 and #11298
* dashboard: fix phantomjs panel rendering in collapsed row
* Fixed unit test.
* Changed the way this feature was activated. And changed
tolltip.
* Added validation of input parameters.
* converted file to ts
* docs: update using mssql in grafana
* fix: only run gofmt on pkg directory omitting vendor
directory
* fix: dep ensure. now without gofmt on ventor directory
* mssql: add integration test to verify stored procedure
usage
* mssql: encrypt password in database
* mssql: remove dynamic construction of metric column and
other columns
* docker: pin microsoft/mssql-server-linux to 2017-CU4 tag
* docs: improve guide for high availability
* fix: only run gofmt on pkg directory omitting vendor
directory
* test
* mssql: cleanup and minor refactor
* mssql: allow host without port and fallback to default
port 1433
* docker: update test dashboard for mssql tests
* mssql: cleanup and minor changes
* Missed thanks in changelog
* Adds pagerduty api update to changelog.
* mssql: update readme
* mssql: update test dashboard
* docs: Using Microsoft SQL Server in Grafana
* mssql: remove logos for now
* docs: mssql documentation will go into another branch
targeting next minor version
* Updated roadmap for 5.1
* Minor format changes
* Changed Swedish and Icelandic currency
* fix failed tests for dashboard view state
* dashboard: fix rendering link to panel in collapsed row
* docs: update install docs for 5.0.3
* changelog: 5.0.3
* mssql: add alternative logo without text
* mssql: strip inkscape from logo
* mssql: minor improvements of query editor help
* mssql: skip rendering of mssql logos until we have a valid
logo
* docker: add test dashboard for mssql tests based on test
data generated by integration test
* mssql: additional integration tests
* mssql: support money, smallmoney and decimal data types
* mssql: update plugin.json, added description and name
MSSQL -> Microsft SQL Server
* added indent to dashboards inside folder in search
dropdown, and added indent to dashboard icon in search
item
* session: fork Macaron mysql session middleware
* database: expose SetConnMaxLifetime as config setting
* database: fixes after xorm update
* database: update xorm to v0.6.4 and xorm core to v0.5.7
* prometheus editor: variable autocomplete support (PR
#9988)
* made a keyboard shortcut to duplicate panel
* docs: update mssql documentation
* mssql: disable mssql integration tests per default
* mssql: timeGroup fill support added.
* mssql: add timeGroup integration test
* alertmanager: /Creating/Sending/
* mssql: adds fill to timeGroup macro.
* allow any database for influx proxy
* remove
* alertmanager: handle resolved alerts, nodata, and
execution errors
* add regex search of username and password in urls, which
are replaced by strings.Replace
* notitfiers: avoid ShouldNotify duplication
* fix merge error
* alertmanager: if there are no alerts to send, do nothing
* docker: change port for prom random data scrape target
* mssql datasource: wip
* docker: mssql and mssql tests blocks with common build
context
* fix lint problems
* fix lint problems
* fix lint problems
* read aggregate functions from database
* add buildAggregateQuery
* Update README.md
* docker: fake-data-gen:latest updates
* Resolved conflict
* docs: more details about slack notifier
* properly handle IN queries
* docs: updates latest release for docs
* changelog: improve description of closed issues
* renderer: avoid redirect render requests
* changelog: adds notes about 5.0.2
* dashboard: fix import dashboard with alert rule
* middleware: recover and retry on session start
* alerting: supports extracting alerts from collapsed panels
* join multivalue variables with ,
* revert special handling for IN
* put values for IN in parens
* dont quote where constraints
* docker: add test dashboard for mssql for visualizing data
generated by fake-data-gen
* add regex operators
* mssql datasource: support for timeGroup macro function
* Added Kilopascals(kPa) under pressure
* Added W/m2(energy) and l/h(flow)
* folders: should be possible to browse folder using only
uid
* remove unused setting
* dashboards: should be possible to browse dashboard using
only uid
* mssql datasource: additional data type tests
* docker: add mssql block
* Added icon for iOS web app
* changelog: add note about closing #8151
* alerting: adds back the link to grafana.
* Fix CI
* Modify Grafana Pagerduty notifier to use Pagerduty API V2
* graph: minor refactor of histogram mode PR #8613
* changelog: adds note about closing #11220
* style: dont expose func outside package
* teams: removes quota on route
* changelog: adds note about closing #11143
* changelog: adds note about closing #11107
* Second to HH:mm:ss formatter (#11105)
* changelog: adds note about closing #10009
* docs: fix an outdated link to Prometheus's doc
* Added concentration units and 'Normal cubic metre'
* Corrected work for graphs created before this feature.
* Replaced array values to variables yLeft and yRight for
easy reading code.
* Rename test file according module name.
* prometheus: fix bug introduced by #9859 (httpMethod is
undefined)
* prometheus: add tests for heatmap mode
* prometheus: datasource refactor
* Fix urls in plugin update_checker logs
* changelog: adds note about closing #10029
* docs: add team api link from http api reference page
* added test for sorting and filtering
* changelog: adds note about closing #9859
* Refactoring
* set default value of httpMethod
* support POST for query and query_range
* cleanup where segment handling
* remove limit
* handle variables in where constraints
* Adding Timeticks unit
* properly quote where constraint parts
* quote schema and table
* docs: minor fix for dashboard http api documentation
* build: cleanup
* build: removes custom work dir in deploy.
* build: upgrades build pipeline from CircleCI 1.0 -> 2.0
(#11162)
* github: test new issue tempalte
* dev: update dev prometheus2 to 2.2.0
* changelog: adds note about closing #10925
* docs: update latest to 5.0.1
* push 5.0.1 to package cloud
* changelog: adds release date for 5.0.1
* bump master build to 5.1.0-pre1
* move quota to dedicated service
* Fix indent
* docker: add prometheus/example-golang-random to
docker-compose blocks
* Fix the code to match the documentation.
* rename Context to ReqContext
* fix, set default highResolution setting
* changelog: note about closing #11145 and #11127
* docs: adds note about closing #10632
* removes commented code
* removes unused variables
* upgrade to go 1.10
* alerting: fixes validation error when saving alerts in
dash
* add csv templating format
* docs: note about closing #11046
* docs: adds note about #10942
* heatmap: add explanation of Time series buckets mode
* Add color to prefix and postfix in singlestat
* replaced if with classNames
* heatmap: able to set upper/lower bucket bound manually
* heatmap: refactor
* added media breakpoint to legend-right
* Documentation: path '~/go' to '$GOPATH'
* Update ROADMAP.md
* add panel to list now copy, started on jest
* docs: improves docs for alert rules
* heatmap: fix Y axis and tooltip decimals and units issues
* Append test to check not zero level.
* Add bs-tooltip to Y-Align element.
* move Context and session out of middleware
* only use jwt token if it contains an email address
* scrolling: faster wheelspeed
* docs: improves provisioning description
* changelog: adds note about closing #10975.
* changelog: adds note about closing #7107
* changelog: adds note about closing #11103
* changed background for mobile menu background on light
theme, increased font size in and added border-right in
menu
* heatmap: fix tooltip count and bucket bound format
* alerting: Limits telegram captions to 200 chars.
* changelog: note about closing #11097
* hide row actions for viewers
* fixes invalid link to profile pic when gravatar is
disabled
* changelog: adds note about closing #11016
* fix: restores white resize handle for panels, fixes #11103
* changelog: adds note about closing #11063
* fix typo in heatmap rendering.ts (#11101)
* docs: add v5.1 to versions
* docs: fill for mysql/postgres
* ignore iteration property when checking for unsaved
changes
* changelog: notes for #11055 and #9487
* use net/url to generate postgres connection url
* made drop-menu into link
* heatmap: sort series before converting to heatmap.
* use metricColumn in query builder
* set rawSQL when rendering query builder query
* fix group by column
* clean up aggregation functions
* fix variable interpolation
* rename field to column
* Fix Prometheus 2.0 stats (#11048)
* docs: removed beta notice in whats new article
* remove spaces around arguments of macros
* remove spaces around arguments before calling macro
expansion
* docs: update current version to 5.0
* docs: update install pages for v5.0.0
* update version to 5.0.1-pre1
* changelog update for 5.0.0 stable
* Add metrics that triggered alert to description
* build: updated version
* heatmap: hide unused Y axis controls for tsbuckets mode
* heatmap: format numeric tick labels in tsbuckets mode
* heatmap: add rendering tests for tsbuckets mode
* Fix Github OAuth not working with private Organizations
(#11028)
* login: hide sign up if configured so. Fixes #11041
* permissions: fix validation of permissions before update
* dashboard: add permission check for diff api route
* permissions: remove client validation and handle server
validation
* dashboards: change dashboard/folder permission error
messages
* dashboards: handle new guardian error responses and update
tests
* folders: handle new guardian error responses and add tests
* dashboards: don't allow override of permissions with a
lower precedence
* Alerting: Fix OK state doesn't show up in Microsoft Teams
(#11032)
* grammar fix, add dir, and remove redundant info
* heatmap: use series names as top or bottom bounds, depends
of datasource
* heatmap: refactor
* heatmap: add few tests for histogram converter
* fix: changed react-grid-layout to use grafana fork to a
commit before
https://github.com/STRML/react-grid-layout/commit/15503084fb7b0af826427c8c0706901e5745a39f,
this fixes all the panel movement bugs, fixes #10831
* heatmap: fix Y bucket size calculation for 'tsbuckets'
mode
* gave scroll-canvas-dashboard 100% height in kiosk-mode,
fixes #11010 (#11017)
* docs: update to install pages for beta5
* changelog: update for v5.0.0-beta5
* added admin icon and permission member
definitions(role,team,user)
* build: update to version 5.0.0-beta5
* [doc] Fix extra alerting options in
installation->configuration
* yarn: update lock file with tarball change
* build: use tarball instead of git commit for tether drop
* improve maintainability
* docs: fix type in datasource http api
* docs: adds accesskey and secret to securejsonfields
* support [[variable:type]] syntax
* offer template variables for tags
* feature for issue #9911
* Added radiation units
* docs: update shortcut docs
* dashboards: remove non-supported keyboard shortcuts for
delete/collapse row
* dashboards: fix keyboard shortcut for expand/collapse rows
* dashboards: fix keyboard shortcut for remove panel
* snapshots: fixes cleanup of old snapshots
* docs: minor folder http api changes
* Update ROADMAP.md
* Update ROADMAP.md
* heatmap: fix bucket labels shift
* heatmap tooltip: fix bucket bounds for 'tsbuckets' mode
* heatmap tooltip: fix count decimals
* heatmap: fix tooltip histogram for 'tsbuckets' mode
* heatmap: use buckets from histogram with 'tsbuckets' mode
* dashboards: created/updated and createdby/updatedby should
be set before save
* Add unit tests.
* Refactoring code
* Fix save as dashboard from folder to General folder
(#10988)
* changed name of copy tab to paste
* added no copies div
* prometheus: tests for heatmap format
* dashboards: cleanup
* folders: use folder api for retrieving folder
* dashboards: fix batch dashboard/folder delete response
* fix: elasticsearch terms size now allows custom values
again, fixes #10124
* added highlighter, fixed setState and changed back flex to
spacea around
* folders: fix create folder in folder picker
* added tabs and searchfilter to addpanel, fixes#10427
* snapshots: change to snapshot list query
* prometheus: initial heatmap support
* docs: update http api index
* docs: dashboard and folder permissions http api
* docs: folder http api
* permissions: use updated api endpoint for dashboard
permissions
* fix typos in api, acl to permissions
* folders: rename folder_acl in api to folder_permission
* dashboards: change api route for dashboard permissions
* folders: fix typo
* folders: extend folder service tests
* dev: docker-compose setup for prom2.
* folders: folder api tests
* fix: scrollbar position now to max right pos, fixes #10982
* Fixes for heatmap panel in Grafana 5 (#10973)
* docs: updated cloudwatch docs add dimension filter as a
option for dimension_values query.
* folders: folder permissions api tests
* dashboards: make fake dashboard guardian available to
other packages
* fix: added new known data source plugins, and minor
migration fix for v1 dashboards
* folders: folder permission api routes
* folders: fix api error mapping
* folders: basic integration tests for folders
* folders: use new folder service in folder api routes
* folders: new folder service for managing folders
* dashboards: created date should be set when creating a
folder/dashboard
* fix: fixes to signup flow, fixes #9816
* Refactoring code. Change Y-Zero to Y-Level.
* fix: fixed github oauth login with allowed orgs filter,
fixes #10964, reverts #10851
* fix: plugin dashboard did not get plugin id after import
* feat(ldap): Allow use of DN in user attribute filter
(#3132)
* added scroll to org list modal (#10960)
* added an if to check for null to sort null as 0 (#10961)
* fix: alert history list now shows on graphs with manually
added annotation events, fixes #10968
* provisioning: dont ignore sample yaml files
* docs: updated for changelog and docs with beta4
* Correct typo in DashboardInputMissingError
* build: updated build version to v5.0-beta4
* graph: added 0.5 point radius option
* Shouldn't be able to overwrite a dashboard if you don't
have permissions (#10900)
* influxdb: escape backslashes in tag values (for alerting)
* [elasticsearch] Allow nested fields for annotation source
(#10936)
* changed m3 and dm3 to fixedUnit, fixes #10920 (#10944)
* migrate panels in collapsed rows (#10948)
* Share zero between Y axis.
* Add hook processRange to flot plugin.
* login: migration fix.
* login: uses epochs for login throtting.
* fix: fixed redirect after save, fixes #10946
* fix: esc key now closes panel edit/view mode as usual,
fixes #10945
* docs: updated to beta3
* alerts: refactoring tests
* alerting: pausing alerts modifies updated.
* test: added integration test for #10941
* refactoring: alert rule query refactoring (#10941)
* updated version to v5-beta3
* db: reduce name column size in dashboard_provisoning
* teams: adds some validation to the API
* docs: status code changes for Team API
* docker: add test dashboards for mysql and postgres for
visualizing data generated by fake-data-gen
* cli: download latest dependency by default
* Revert 'removes dependencies install for plugins'
* migrate minSpan (#10924)
* Close modal with esc (#10929)
* repeat row: fix panels placement bug (#10932)
* docs: team API. Closes #10832
* Update sample.ini
* Update ldap.toml
* Update ldap.md
* Minor typo fix
* plugins: update meta data for all core plugins
* alert notifiers: better error messages.
* support cloudwatch high resolution query
* chore: adds comment for exported function
* updated download links
* docs: Updated changelog
* updated package.json version
* fix: more phantomjs fixes
* fix: refactoring #10922
* Fix phantomjs legend rendering issue, #10526
* mark redirect_to cookie as http only
* dashboard: whitelist allowed chars for uid
* updates readmes for mysql and postgres (#10913)
* Set default threshold axis to 'left' for panels created
before this feature.
* provisioning: adds setting to disable dashboard deletes
* tech: dont print error message on 500 page
* removes dependencies install for plugins
* tests: makes sure we all migrations are working
* provisioning: uses unix epoch timestamps. (#10907)
* improve error message for invalid/unknown datatypes
(#10834)
* add AWS/States Rekognition (#10890)
* Dashboard acl query fixes (#10909)
* wip: dashboard acl ux2, #10747
* permissions: refactoring of acl api and query
* bug: return correct err message
* initial fixes for dashboard permission acl list query,
fixes #10864
* provisioing: always skip sample.yaml files
* provisioning: handle nil configs
* sql: removes locale from test to mirror prod.
* adds tests that validate that updated is correct
* provisioning: code formating
* provisioning: adds logs about deprecated config format
* provisioning: support camelcase for dashboards configs
* provisioning: support camcelCase provisioning files
* API Integration Tests via jest (#10899)
* ux: refactoring #10884
* Invalid url in docs
* Duplicate typo fixed
* add 13-24 for min width (#10891)
* sass/base: import from current dir in _fonts.scss (#10894)
* fix: removed logging
* fix: sql search permissions filter fix
* provisioning: Warns the user when uid or title is re-used.
(#10892)
* Minor typo fix
* new dashboard is now hidden from viewer, fixes #10815
(#10854)
* fixed bg gradient, fixes #10869 (#10875)
* login: fix broken reset password form (#10881)
* moved div in code
* added buttons and text to empty dashboard list
* docs: spelling.
* docs: update dashboard permissions http api docs
* Cloudwatch dimension_values add dimension filter.
* dashboard: always make sure dashboard exist in dashboard
acl http api (#10856)
* Fix #10823 (#10851)
* provisioning: better variable naming
* ux: minor tweak to grid resize handle color
* teams: use orgId in all team and team member operations
(#10862)
* permissions: might have a solution for search
* Fixes for graphite tags editor (#10861)
* fix: clear items list before fetching permissions list
* provisioning: dont return error unless you want to cancel
all operations
* provisioning: createWalkFn doesnt have to be attached to
the filereader anymore
* provisioning: update sample config to use path
* provisioning: avoid caching and use updated field from db
* update README.md regarding running tests
* update README.md regarding running tests
* docs: minor docs update
* docs: updated docs landing page
* provisioning: delete dashboards before insert/update
* user picker should only include users from current org
(#10845)
* Correct code style.
* db test: allow use of env variable for database engine to
run tests for
* dashboard and folder search with permissions
* provisioning: fixed bug in saving dashboards.
* dashboard: fix delete of folder from folder settings tab.
* append test to thresholds on right axis
* Update logic for create/update dashboard, validation and
plugin dashboard links (#10809)
* added width class to add member choose (#10835)
* add where constraint handling
* add query_builder
* docs: adds uid to dashboard.json reference docs
* Fix #7107
* fix: initial fix for #10822
* fix: folder redirect after creation
* dashfolders: fixes #10820
* fix: fixed bug with redirect after new dashboard saved,
related to buggy angularjs location path/url and base
href, fixes #10817
* docs: describe uid for dashboard provisioning
* fix: removed old shortcut that does not exist, fixes
#10802
* build: fixed recovery test
* fix: css fix, found a better way to fix #10772
* fix: minor build fix
* fix: error handling now displays page correctly, fixes
#10777
* heatmap tooltip: minor refactor
* fix: changed dashboard title length to match slug length,
will fix mysql index size issue, fixes #10779
* docs: added graphite section
* docs: minor update
* graph panel: fix csv export (series as col) (#10769)
* org-switcher: should redirect to home page (#10782)
* embedded panel: hide side menu during init (#10788)
* docs: update http api for api index, dashboard, folder and
dashboard search
* scroll: css for #10722
* dashlist: scroll fix when no header
* docs: video fix
* Update changelog with deprecation notes of http api
* redirect 'permission denied' requests to '/' (#10773)
* docs: fix
* scroll: use wheelpropagation. Ref #10772
* docs: update dashboard model, persistent urls and api
changes in what's new in v5
* docs: fix download link
* docs: minor update
* docs: adds http api dashboard permissions
* docs: updated whats new
* docs: update dashboard model, new url structure and api
changes in what's new in v5
* build: updated publish script
* docs: update docs with download links
* build: increased version to beta1
* fix: fixed permission list caching issue, fixes #10750
* Stale permissions (#10768)
* adds unique index for org_id+folder_id+title on dashboards
(#10766)
* docs: fix links in HTTP API Reference page
* dashboards: render correct link for folder when searching
for dashboards (#10763)
* fix panel menu caret placement (#10759)
* permissions: fix link to folder from permissions list
* dashboard: fix loading of snapshot and scripted dashboard
(#10755)
* changes to new urlformat for home dashboard (#10738)
* fix: alert list links did not work, changed dashboardUri
to Url, this is breaking api change in alert api (#10756)
* docs: typos and wording.
* ux: hide sidemenu in kiosk mode, and while playlist is
playing, fixes #107402
* dashboard: fix redirect of legacy dashboard url's
* make metricColumn functional
* add metric column selector
* docs: add spaces to timeseries example
* fix: restored tags to search
* fix frontend validation for creating new folder and import
dashboard (#10737)
* #10724 Fix whitespace
* poc: merge sync
* #10724 Fix finding the x bucket
* docs: dashboard provisioning
* handle new error message
* removes uid when using 'save as'
* dashfolders: rename Root folder to General. Closes #10692
* Light theme icon color (#10730)
* folders: use new folder api in frontend
* folders: changes and updated tests after merging
permissions and new url structure
* folders: rename api files
* dashboards: revert logic of returning 404 in dashboard api
if it's a folder for now
* db: fix failing integration tests for mysql and postgresql
* docs: add examples for dashboard permissions
* Update search datasource by name API path
* fix for dashboard/folder url's when having a sub path in
root_url config
* ux: added max width to dashboard settings views
* add gofmt as precommit hook
* dashfolders: adds test for permission store
* dashfolders: adds permission modal to dashboard settings
* register handler for get dashboards by slug
* make it easier for dashboards to generate ur;
* changes dashboard url in alertlist
* alert: use new url format
* Improve logging in the phantomjs renderer (#10697)
* route params from angular to view store should be updated
on routeChangeSuccess
* repeat panel: process repeats when row is expanding
(#10712)
* folders: changes needed due to merge
* docs: removed section with session table sql, that is not
needed anymore
* ux: fix for responsive breakpoints and solo mode showing
sidemenu
* support multiple histogram series
* docs: moved whats new article to master
* ux: fixed issue with zoom on graph caused scroll, fixes
#10696
* dashboard: refactor logic for retrieving url for
folder/dashboard
* update text, fix a few typos
* dashboards: update dashboard/folder url if browser url is
not the same as from backend
* dashboards: when restoring a dashboard to an older
version, set current uid
* dashboards: fix updating folder so that correct url is
returned
* dashboards: remove slug property in dashboard search
responses
* folders: change the front end route for browsing folders
* dashboards: add validation to delete dashboard by slug
* dashboards: new route for deleting dashboards by uid
* plugins: return table with empty rows array insteaf of nil
* retry uid generation
* fix: use replace when redirecting to new url
* ux: Change input width of UserPicker and TeamPicker in
AddPermissions component #10676
* viewstore: fix test after merge
* tests: Add TeamPicker test and update
TeamPicker/UserPicker snapshots so they match the latest
classNames update #10676
* dashfolders: fix for folder picker
* ux: Add an optional className to the UserPicker and
TeamPicker #10676
* dashfolders: fixes #10671. Allow Editors default access to
Root.
* docs: added redirect from old provision page, #10691
* tests: Move tests from Permissions to AddPermissions
#10676
* tests: Update tests in PermissionsStore and rem out the
Permissions-tests for now #10676
* docs: added permissions page and updated folder docs
* dashfolders: text change
* dashfolders: special case for folders in root
* add groupby to querybuilder remove unused aggregations
* gofmt...
* spelling
* Verifies requirement of id in dashboards.
* ux: POC - Update 'Add permissions' design and add a fancy
animation #10676
* ensure dashboard title is unique in folder
* docs: Remove obsolete Ansible rule (#10689)
* docs: Fix outdated provisioning link (#10690)
* Renamed 'Period' to 'Min period' in CloudWatch query
editor (#10665)
* created cta-bg variable and changed bg color on light
theme (#10693)
* Repeat panels when row is expanding (#10679)
* dashboards: make scripted dashboards work using the old
legacy urls
* dashboards: redirect from old url used to load dashboard
to new url
* docs: updated whats new
* playlist: fixes #10254
* dashboards: add new default frontend route for rendering a
dashboard panel
* alerting: small refactoring
* dashfolders: POC - Use separate component for 'Add
permission' #10676
* removes uniqnes check on slug when saving dashboards
* Drops unique index orgid_slug from dashboards.
* plugins: return empty tables array insteaf of nil
* url: fix for boolean querystring parameters
* moved icon (#10681)
* docs: updated whatsnew
* docs: progress on whats new article
* docs: updated version
* docs: fixed order of sidemenu
* test: fixes failing test in go1.10
* dashboards: fix links to recently viewed and starred
dashboards
* dashboards: use new *url* prop from dashboard search for
linking to dashboards
* dashboards: when saving dashboard redirect if url changes
* dashboards: add new default frontend route for loading a
dashboard
* dashboards: return url in response to save dashboard.
#7883
* dashboards: ensure that uid is returned from
getSaveModelClone
* alertlist: disable pause button when user does not have
permission
* dashboards: revert adding api for retrieving uid by slug
* util: remove retry logic in shortid_generator
* dashboards: add url property to dashboard meta and search
api responses
* dashboards: api for retrieving uid by slug. #7883
* dashboards: add support for retrieving a dashboard by uid
* dashboard: change unique index for uid to include org_id
* dashboards: return uid in response to creating/updating a
dashboard. #7883
* dashboards: extract short uid generator to util package.
#7883
* dashboard: fix failing test. #7883
* dashboard: generate and include uid in dashboard model.
#7883
* db: add migrations for creating a unique index for uid.
#7883
* db: add migrations for generating uid for existing
dashboards. #7883
* db: add new column uid to the dashboard table. #7883
* enhance render function
* add postgres_query.ts
* moved icon (#10681)
* dashfolders: remove inline styles
* fixed width of images and removed gifs and fixed text a
bit in search
* docs: fixed order of sidemenu
* test: fixes failing test in go1.10
* new gifs for search
* docs: adds more info about whats new in v5
* docs: updated versions.json
* alerting: add permission check in api for pausing alerts
* query builder changes
* dashfolders: adds comment for dashboard api tests
* more query builder components
* docs: added versions file
* dashfolders: adds comment for dashboard acl test
* api: extract api test code to common_test.go
* repeat panel: minor refactor
* WIP: folder api. #10630
* changed img for shortcuts
* replaced img in export_import and sharing
* Fix horizontal panel repeat. Fix #10672.
* dashfolders: Add min-width to align icons in permissions
list and some margin between icon and text #10275
* ui: Fix Firefox align issue in dropdowns #10527 (#10662)
* fix: InfluxDB Query Editor and selecting template variable
in where clause caused issue, fixes #10402, fixes #10663
* dashfolders: link to folder for inherited permissions
* test: Update Tooltip test to check for className support
* changed img-link for timerange imgs and some text
* fix: remove repeated rows when repeat was disabled.
(#10653)
* test: Update Popover test to check for className support
* dashfolders: Get rid of unused import #10275
* dashfolders: Use grafana's question mark instead of FA's
and use the react tooltip instead of angular's #10275
* dashfolders: Add className to Tooltip component
* fix: don't show manually hidden sidemenu after view mode
toggle (#10659)
* dashfolders: css class as parameter for Picker
* dashfolders: select with description for permissions
* fix: show sidebar after mouse wheel scrolling (#10657)
* fix: tweak of PR #10635
* ux: minor tweak of #10634
* plugins: only set error if errorstring is not empty
* Revert 'Fix typeahead to avoid generating new backend
request on each keypress. (#10596)'
* call render in query
* dashfolders: add help popover. Add folder title for
inherited permissions
* dashfolders: use react component for dashboard permissions
* added hash rate units for monitoring mining processes
* replaced input with gf-form-dropdown
* reverted media queries
* graphite: fix nested alerting queries (#10633)
* fix for sm
* added media break for md and sm
* dashfolders: add disabled Admin permission to list
* tech: upgrade to golang 1.9.3
* Locks down prometheus1 to v1.8.2 in live-test.
* fix typo in parameter. (#10613)
* dashfolders: autosave permissions on change (remove update
button)
* changelog: move all 4.7 changes into 5.0
* changed some img-links, updated text for annotated img,
more work on whats new in v5.0
* changelog: be more explicit about backwards compatibility
* WIP: Protect against brute force (frequent) login attempts
(#10031)
* dashfolders: fix tests for ViewStore after merge
* Fix typeahead to avoid generating new backend request on
each keypress. (#10596)
* fix vertical panel repeat (#10619)
* graph: fix series sorting issue (#10617)
* dashfolders: New snapshot since we changed from
defaultValue to value per latest React documentation
#10275
* refactor: Replace _.find with Array.prototype.find()
* dashfolders: Convert mobx observable to js objects and
remove the observer() since we want to use the component
outside the react/mobx world #10275
* dashfolders: Clean up more variables and move newType,
aclTypes and permissionOptions to the store #10275
* dashfolders: Remove variables not used and pass in the
real dashboardId #10275
* dashfolders: Remove those 2-line-components from
PageHeader to make it easier to read and make sure
components listening to the mobx state are wrapped with
observer() #10275
* dashfolders: Add support for breadcrumbs in NavStore
#10275
* dashfolders: Rename UserPicker folder => Picker. Inject
the permission-store in the FolderPermissions-container
instead of the Permissions component, add the
PermissionsStore to the RootStore and and the
error-message to the Permissions-store #10275
* dashfolders: Add Permissions information box #10275
* dashfolders: Fix page max width #10275
* dashfolders: Update jest tests with backendSrv #10275
* dashfolders: Add a Team Picker component and use it on the
dashboard permissions page #10275
* dashfolders: Working user picker on the dashboard
permissions page #10275
* dashfolders: Send down backendSrv to the react components
#10275
* dashfolders: Re-use the API of the angular user picker
instead, which is reusable #10275
* provisioning: delete dashboards from db when file is
missing
* dashfolders: Remove the PermissionsInner-strategy since we
have a container for this route now #10275
* dashfolders: Permissions are injected via MST so it needs
to be defined as optional #10275
* dashfolders: Add FolderPermissions container and make sure
isFolder is passed to PermissionsStore #10275
* dashfolders: Always get dashboardid and backendsrv from
props #10275
* dashfolders: Rem code to avoid tests to fail #10275
* wip: More on the permissions. Left are team picker and
user picker, tests and error messages #10275
* fix: mobx-react-devtools is a dev dependancy #10275
* dashfolder: wip: More wip on acl.html2permissions.tsx
#10275
* dashfolders: wip - Move Permissions into React #10275
* variables: lint fix
* variables: fix when datasource returns error
* fixes broken phantomjs rendering
* added varibale to table hover, lightend colors for table
light theme, fixes #10609 (#10611)
* added whats new v5, changed link in notifications, removed
row from getting started
* fixes minor typo
* provsioning: dont stop grafana due to missing
* Disable prefix and postfix font size when gauge mode is
enabled (#10573)
* docs: improve docs for image uploaders
* cfg: remove local as default image uploader
* docs: Add haproxy example for running behind reverse-proxy
* provisioning: enables title changes for dashboards
* Cloudwatch: add support for multi instances (#10570)
* ux: minor change, added import dashboard link to dashboard
search side view
* tech: adds/removes in vendor folder according to dep
0.4.0.
* docker: sync local time and timezone to mysql_tests block
* dashfolder: fix for sqlite test
* dashfolder: fix for mysql test
* mysql: pin the mysql dependency
* tech: ignore /public and /node_modules
* tech: ignore /data folder for dep
* docs: first draft of dashboard folders docs
* plugins: map error property on query result
* stats: send amount of stars as stats
* tech: avoid using deprecated functions
* style: minor code style changes
* dashboards: save provisioning meta data
* provisioing: add lookup table provisioned dashboards
* refactor: minor css class naming change of #10505
* refactor: minor refactoring of PR #10560
* cloudwatch: fix ebs_volume_ids by create a client-session
before call ec2:DescribeInstances. (#10566)
* docker: use mysql and postgres from latest fake-data-gen
* Update OpsGenie Notifier to support different api domains.
* 10583 panel resize icon fix (#10585)
* dashboards: Fix issue with first click when expanding
folder in search
* cfg: adds info about local img uploader to docs
* docs: adds info about local img uploader
* changelog: adds note about closing #6922
* changelog: note about closing #9664
* changelog: adds note about closing #9770
* start query builder ui
* Disable instead of hide mode options when line/points is
unchecked
* dashfolders: show folders use can save to in picker
* dashfolders: fix bug in save as modal
* Add lumens unit
* add docs for configuring OAuth with Auth0 and Azure AD
* install dep instead of govendor on setup
* remove unused code from vendor
* migrate from govendor to dep
* fix: cloudwatch corrected error handling so original error
is not thrown away
* go fmt
* support for decoding JWT id tokens
* ds: updated ds nav
* feat: ds edit fix
* feat: ds edit nav
* Generic Oauth Support for ADFS (#9242)
* Recommend a limit on database query
* Adjusted the border color on the buttons in dashboard nav,
fixed alert email text area width, fixed padding-top issue
on dashboard settings aside
* dashfolders: stop user locking themselves out of a folder
* dashfolders: add breadcrumbs to NavStore
* codestyle: extract code into methods
* mysql: convert numbers to text for annotation tooltip
* mysql: update to use ColumnTypes interface in new version
* mysql: update mysql driver to latest master
* gofmt my dear friend
* ux: updated react-layout-grid
* plugins: send secureJsonData unencrypted
* Make file_reader follow symlinks
* dashboards as cfg: property path replaces folder
* moves datasource plugin model to
grafana/grafana_plugin_model
* Update package.json
* fix: fixed build issue
* fix: multi valued query variables did not work correctly,
fixes #10539
* move graphite /functions parsing into gfunc.ts
* remove duplicate sass rules
* fix tests & some display issues
* fix: graphite func editor fixes, this component is messy
and ugly as hell
* fix: minor fixes
* fix: restored previous behavior of form_dropdown, this
fixes all my observerd bugs with the dropdown behavior
* fix: query editor needs to wait for function definitions
to load
* fix issue with metric find & functions being loaded
multiple times
* interpolate variables in tags & values during autocomplete
* fix typo
* update rst2html
* fix line length, run jscs & jshint in precommit
* function description formatting
* tooltips for function definitions
* support specifying tag_values('<tag>') as graphite
template query
* use typeahead value in graphite find requests
* send prefix when auto-completing tags
* add button to trigger evaluation of tag queries
* sync function categories with graphite-web
* work on tag dropdown behavior
* support for loading function definitions from graphite
* Update building_from_source.md
* Update README.md
* Update default_task.js
* Clearer naming for dashboard provisioning config.
* ux: dashboard nav and settings tweaks
* Tag filters in search (#10521)
* fix: save as enter key now works and folder selection also
works, fixes #10464
* use context over golang.org/x/net/context
* docs: small update to IIS proxy docs
* added a variable for grid color and if statment to switch
colors, fixes #10509 (#10517)
* dashboards as cfg: logs error when trying to import
dashboard with id
* code style fixes
* dashfolders: bugfix after rename
* dashfolders: bugfix after rename
* Adds Table in backend datasource contract.
* fix: share snapshot controller was missing ngInject
comment, fixes #10511
* Use URLEncoding instead of StdEncoding to be sure state
value will be corectly decoded (#10512)
* Optimize metrics and notifications docs
* Optimize cli and provisioning docs
* imguploader: Add support for new internal image store
(#6922)
* docs: Guide for IIS reverse proxy
* changelog: adds note about closing #9645
* telegram: Send notifications with an inline image
* telegram: Switch to using multipart form rather than JSON
as a body
* telegram: Fix a typo in variable name
* dashfolder: refactor breadcrumbs in PageHeader
* dashfolders: convert folder settings to React
* Adds Tables types to protobuf
* fix: alert list pause/start toggle was not working
properly
* fix template variable selector overlap by the panel
(#10493)
* Review tsdb protobuf contract
* dashboard: Close/hide 'Add Panel' before saving a
dashboard (#10482)
* supports windows compatible plugin binaries
* fix: removed unused param
* Fix variables values passing when both repeat rows and
panels is used (#10488)
* moved angular-mocks out of dependencies
* ux: minor change to alert list page
* ux: minor word change to alert list
* fix: updated snapshot test
* moves plugin proxy to plugin package
* Add eu-west-3 in cloudwatch datasource default's region
(#10477)
* fix: Make sure orig files are not added to git again
#10289
* improves name for plugin logger
* fix: Remove conflict file #10289
* text panel: fix $apply already in progress error (#10486)
* uses pluginmanagers log instead of global
* 10389 react tooltip components (#10473)
* test: Updated snapshot for UserPicker jest test #10289
* ux: When adding a new panel we should scroll to top until
we figure o… (#10417)
* removes commented code
* naming fixes and added test file
* makes datasource handshake more explicit
* backend plugins: improves logging
* dashfolders: show/hide create folder or dashboard buttons
* dashfolders: fix mergeconflict error
* dashfolders: prettify
* dashfolders: check permissions for new dashboard
* dashfolders: allow any signed in user to get list of teams
* fix gofmt warning
* dashfolders: permissions for saving annotations
* dashfolders: disable save button after save of acl
* dashfolders: on folder page, hide tabs if not has admin
permission
* dashfolders: remove role requirements on dashboard routes
* dashfolders: must have admin permission to save/see dash
acl
* dashfolders: prettify on tests file
* dashfolders: permissions tab in dashboard settings
* dashfolders: permissions tab for dashboard folders
* fix for unsaved changes popup on tab close/refresh
* fix: Clean up logging and remove unused css #10289
* fix: Rename directive user-pickerr (yes two r's) to
select-user-picker
* fix: Accidently added the conflict files (#10289)
* test: Add snapshot tests for UserPicker and
UserPickerOption (#10289)
* fix: Add interface for props to UserPickerOption (#10289)
* ux: POC on new select box for the user picker (#10289)
* dashboard: fix opening links in new tab (#10465)
* alert list: fix rendering timeout when share panel
(#10467)
* fix missing profile icon (#10469)
* More fixes for relative urls when running Grafana under a
different sub path (#10470)
* put this.props.search in the Highlighter
* moved state handling for search to store
* Delete CopyQuery.png
* Delete tgr288gear_line6.pdf
* fix: added back colors to rootScope, fixes #10462
* fixed the subUrl bugs from
https://community.grafana.com/t/suburl-not-work-at-some-links-and-buttons/4701
with folder/settings/teams etc.
* added /** @nginject */
* Fix typo in error message
* updated snapshot
* styling fix
* added highlight to search
* Updates go-stack to v1.7.0.
* docs: adds note about tlsSkipVerify to docs
* fixed regex issue
* made a view of filtered list
* updated jest file and snapshot
* Remove silly noise
* Update tests to match new reality, and rejig the
implementation a bit to truly work as desired
* Align queries to prometheus with the step to ensure 'rate'
type expressions get consistent results
* plugin: fix path for app plugins on windows
* added search function
* new styling and markup
* cleanup: removed unused typescript typings import
* new add alert notification channel icon
* mobx: poc in using each store as individual prop on the
react containers (#10414)
* fix: Change max size of panel JSON editor so button is
shown on smaller screens, #10346 (#10415)
* poc: began react panel experiments, step2
* poc: began react panel experiments, step2
* Add AWS/AmazonMQ namespace metrics to CloudWatch tsdb
(#10407)
* add docs for using oauth login with OneLogin (#10385)
* Update built_in_plugins.ts
* poc: began react panel experiments
* added empty list cta to notification channels, fixes 10393
(#10400)
* mobx: fixed issue with view store, and added missing
snapshot
* tech: enzyme container test working
* tech: enzyme container test working
* react: trying to get enzyme and mobx tests working
* tech: url and query mobx store so now react components and
containers can read and modify url path and query via mobx
store
* tech: alert list react migration progress
* fix info popover, #10302 (#10377)
* fix move dashboard variables, #10347 (#10375)
* dashfolders: relative links should work when root_path is
specified (#10363)
* fix mixed datasource add query button, #10316 (#10361)
* tech: react mobx progress
* Doc version and schemaVersion properties of dashboards
* tech: began reworking alerting list to mobx
* tech: progress on react pages
* prom: fixes broken test
* prom: make $__$interval the first suggested range vector
* fixes log typo
* imguploader: log if the configuration is invalid
* changelog: adds note about closing #8955
* renderer: avoid calling Handle twice
* migrated file to ts
* dashboards as cfg: moves dashcash into its own file
* dashboards as cfg: create dashboard folders if missing
* fixed error
* migrated files to ts
* tests: for skipping with hidden folders
* Implement Azure Blob external image uploader
* migrated datasource to ts
* tech: minor progress on mobx state tree & react
containers, working on unit testing
* Fix tooltip unit when legend isn't shown (#10348)
* refactor: minor refactoring of PR #10236
* don't save dashboard on make editable, #10236
* fix scripted dashboard loader, #10350 (#10351)
* new aws region cn-northwest-1 (#10353)
* Dashboard: View JSON improvements (#10327)
* refactor: tried to simplify and also minimize scope a bit
for #10323
* ignore trailing whitespace (#10344)
* (prometheus) show label name in paren after
by/without/on/ignoring/group_left/group_right
* dont spawn new subprocess while shutting down
* Fix small singlestat value display
* fix: fixed issue with optimized build, fixes #10333
* migrated file to ts (#10328)
* plugins: restart killed plugins
* query result should be a map
* prom: removes limitation of one query per tsdb call
* changelog: adds note about closing #10222
* pagerduty: fixes invalid default value
* fix: remove unused code
* dashboard: copy panel to clipboard
* pagerduty: adds test for reading auto resolve setting
* code formatting fix
* migrated files to ts + fixed specfile
* tech: cleaned up unused stuff
* ux: removed unused stuff form style guide
* prettier: ran on all files again, sorry. now settings are
defined in package.json
* tech: mobx tests
* Add avatar to team and team members page (#10305)
* Various dashboard folders improvements (#10309)
* mobx: progress on poc
* test for plugin path builder
* merge backend datasources and datasources
* use int64 for timestamps
* fixes invalid valud/timestamp order
* fix: unit test fixed
* prettier: change to single quoting
* ux: minor name change to search sections
* db: fix postgres regression when comparing boolean
columns/values (#10303)
* dashboard: delete row improvements
* poc: mobx test
* fix missing comma in documentation output example
* fix broken link (#10291)
* minor fixes and formatting after review
* dashfolders: use validation service for folder creation
and dashboard import. #10197
* dashfolders: support creating new folder when moving
dashboards. #10197
* dashfolders: support creating new folder when saving a
dashboard. #10197
* dashfolders: support creating new folder in dashboard
settings. #10197
* dashfolders: support creating new folder from the folder
picker. #10197
* poc: mobx poc
* tech: ran prettier on all scss files
* tech: ran pretttier on all typescript files
* search: closes dash search when selecting current
dashboard (#10285)
* fix: Original dashboard link from snapshot should be an
a-tag, not a button (#10269) (#10283)
* dashboard: fixes #10262
* added new to new dahsboard and folder
* test: Update test with new component signature
* pushover: update default message
* delete unused icon files
* fix: The /logout route should always full page reload
(#10277)
* tech: added prettier to precommit
* ux: Add icon to selected option in PageHeader navigation
on small screens, update select boxes for Firefox so the
arrow to the right is aligned with the other select boxes
(#10190)
* ux: Fix color picker positioning when scrolled down to the
bottom of a page (#10258) (#10271)
* test: remove unused code
* alerting: make alert extractor backwards compatible
* alerting: move test json into files
* Use strings.TrimPrefix to make sure relative url doesn't
start with forward slash
* Update README.md
* fix: Navigation on small screens when Grafana is installed
in a sub directory (#10252) (#10261)
* cloudwatch: fixed optimized build issue, fixes #10174
* fix text panel rows limit (#10246)
* use ace editor in panel edit (#10245)
* docs: mysql example with macro
* docs: mysql macros update
* fix: reduced team name column length, fixes #10244
* ux: Add missing icon for login with grafana-com, fixes
#10238 (#10249)
* Kinesis Metric Capitalization
* merge backend-datasource and datasource type
* dashfolder: nginject fix
* teams: missing nginject attribute
* grid: disable resize and drag on non editable dashboards,
closes #10235
* logging: removed logging from panel loader
* menu: fixed create default url
* fix: dont show settings for viewers
* prometheus: change default resolution to 1/1
* fix: viewers can edit now works correctly
* fix: fixed minor ux and firefox issues, fixes #10228
* ux: minor fixes
* profile: use name or fallback for profile page
* fix: sidemenu profile main text is now username instead of
name
* build: update master version to 5.0.0-pre1
* dashfolder: change to migration text
* ux:s sidemenu icon rules
* teams: add team count when searching for team
* changed background color for infobox and new blues in
light theme, light theme now uses blue-dark in panel query
(#10211)
* ux: fixed navbar issue when sidemenu closes
* ux: minor position change for layout selector, fixes
#10217
* fix: view json from share modal now works, #10217
* ux: used new add data sources icon
* dashfolders: styling of selected filters
* dashfolders: styling of selected filters
* dashfolders: fix moving plugin dashboard to folder
* changelog: adds note about closing #9170
* dashfolders: fix folder selection dropdown in dashboard
settings
* fix for merge conflict
* add links for large cta
* resolve merge conflict
* dashfolders: bulk move/delete improvements
* snapshots: fixed snapshot issues, fixes #10214
* docs: include all notifiers type
* replaced old table with filter-table, removed edit button,
made whole rows to links
* playlist: fixed playlist buttons in dashboard header,
fixes #10213
* docs: update latest version to 4.6.3
* ux: minor changes to search input
* Magnifying glass on search fields #10188 (#10206)
* templating: made templateSrv globally accessable as ES6
module, DashboardRow can not interpolate row title
* fix: ignore row clones in schema migration
* proxyds: delete cookies except those listed in keepCookies
* dshttpsettings: Move whitelisted cookies to end of config
page
* proxyds: failing test for keepCookies
* dshttpsettings: add field for cookies that should be kept
* dashfolders: /dashboards should render index page with a
200 OK
* update version for packagecloud
* dashfolders: bulk move/delete improvements
* add release date for 4.6.3
* fix: after removed file
* dashfolder: fix after backendSrv change
* dashboard: fix test after merge conflict
* orgswitcher: update test
* Avoid ID validation before provisioning dashboards
* annotation icon fix
* udpate dark json icon
* dashboard settings icons
* replace icon on dashboard list (fa-th-large - looked
squished) with a smaller version of dashbord icon. This
may not be the best way to do the css, so it's a separate
commit
* new icons created and added to nav
* changelog: adds note about closing #7481
* fixes broken unit test
* alertmanager: endAt should only be used if we have the
correct value
* alertmanager: code style
* alerting: reduce log level for notifiers
* Alertmanager notifier: add 'metric' labels if no tags
* Alertmanager notifier: make it match the new notifier
interface
* support alertmanager
* Replace Read Only Editor role with ViewersCanEdit setting
(#10166)
* dashfolders: bulk move dashboards synchronously
* dashfolders: remove error message when moving to the same
folder. #10135
* teams: Fixes to edit team page
* ux: minor text change to #10177
* made template link look like input (#10198)
* minor tweaks
* execute process directly instead of creating sub shell
* Dashboard grid fixes (#10194)
* refactor: minor change to #10199
* fix broken 'd r' shortcut (refresh dashboard) (#10199)
* ux: updated login page
* fixes switching org when url contains orgId querystring
param
* build: fixed build issue
* ux: refactoring login page change
* navmodel: fix for signout link on pref page
* change protip to go to manage dashboards
* search: worked on search results
* added select-wrapper to where it was missing for unified
look
* changelog: adds note about closing #10151
* ux: wip - Login animation POC (#9879)
* changelog: adds note about closing #9318
* ux: Move 'Sign up' and 'Reset password' to its own pages -
and remove all inline styling (#9879)
* fixes broken alert eval when first condition is using OR
* ux: org user management changes
* removes unused property
* fixed edit team header, fixes #10172
* changed width to input fields (#10184)
* ux: added search box to ds list page, closes #10106
* ux: change members to users
* plugins: fixed plugin edit page and plugin page
* dashfolders: Minor css fixes for bulk edit
* dashfolders: Minor css fixes for bulk edit
* docs: SSL Mode config settings for Postgres
* dashfolder: settings page for folder
* removes verbose logging
* fix: FolderId and IsFolder when saving dashboard
* ux: fixed inactive view mode and removed animation
* removed unused declaration
* updated dashlink editor, now has list
* fix: Handle state when no password is entered on
registration page (#9879)
* adding support for sgl native time datatypes
* added missing cases for DATETIME datatype
* ux: move add member into its own page (#10167)
* Add a per-notifier ShouldNotify()
* minor fix for #10136
* Fix graph legend scroll (#10169)
* fix colorpicker colors order (width issue) (#10170)
* graphite: remove check so that query is sent even for
possible non leaf nodes
* fix: fixed build failure
* ux: Use the previously renamed classes (#9879)
* fix: fixed dashboard api tests
* fix: don't detect graphite version before it's saved
* updated new dashboard folder
* ux: style tweaks
* ux: Update ui of login buttons via third parties and add
link to sign up page (#9879)
* redesigning links editor
* ux: search look update
* tech: updated version for react-grid item
* build: fixed unit test failure
* Extracted row matching function and added comments
* allow overriding dashboards from api
* redesigning links editor
* graphite: minor fix for PR #10142 the query was being sent
for every segmen t you selected before you completed the
metric path
* build: fixed broken test
* refactor: minor change to panel json fix PR #10156
* Move panel JSON editor to modal dialog (#10156)
* ux: minor updates to dashboard settings
* ux: dashboard settings updated
* new dashboard and folder in search (#10152)
* avatar: avoid concurrent map writes
* redesign dashlinks
* fix: fixed issue with optimized build grid directive
missing ngInject comment, fixes #10161
* annotations: allows template variables to be used in tag
filter
* Add default message for Pushover notifications
* refactor: format files by gofmt
* ux: Adjust margins when external auth providers are
enabled (#9879)
* ux: dashboard settings progress
* ux: dashboard settings work progress
* dashfolders: new dashboard with folder selected
* ux: wip - Push pixels for new login, remove inline
styling, change so we use media queries using min-width
instead of max-width and make sure it looks ok across all
screen sizes (#9879)
* ux: dashboard settings work progress
* backend plugins: manage plugins lifecycle with context
* ux: dashboard settings progress
* ux: dashboard settings progress
* ux: dashboard settings progress
* backend plugins: dont swallow errors
* fix: fixed failing test
* backend plugins: cleanup protobuf files
* ux: dashboard settings progress
* backend plugins: add more datasource params
* Type-agnostic row merge in table transform for multiple
queries
* ux: dashboard settings progress
* ux: fixed navbar and sidemenu z-index issue and improved
responsive rules
* code style
* implement upstream changes
* fix: fixed build failure
* changelog: adds note about closing #10131
* Explicitly specify default region in CloudWatch datasource
(#9440)
* add encoding param
* wait for all sub routines to finish
* fix function re-ordering broken in #9436
* add missing value fill code to mysql datasource
* hyphenhyphen
* support metric trees of varying depth, never send '.select
metric' to graphite
* simplify function parameter addition
* ux: dashboard settings progress
* fix typo
* ux: minor changes
* implement missing value fill functionality for postgres
* allow optional 3rd argument to timeGroup to control
filling missing values
* ux: navbar progress
* improve handling of query references
* build: fix for tslint
* ux: form styles polish, improvement but can be better
* pass tsdbQuery to transformToTimeSeries and
transformToTable to get access to selected frontend
timerange
* demonstrate parseTarget issue
* fix: fixed panel size rerendering issues
* pass Query to MacroEngine Interpolate
* ux: work on dashboard settings views
* dashfolders: Do not allow loading a folder as a dashboard
* fix: Remove console.log
* dashfolders: Folder picker should set correct default
values. Fixes #10135
* refactor: user groups to teams, replace rest mentions
* refactor: user groups to teams, rename backend files
* refactor: user groups to teams, rename frontend files
* refactor: rename User Groups to Teams
* changelog: adds ntoe about closing #10111
* ux: forms style font size change
* ux: dashboard settings progress
* postgres: change $__timeGroup macro to include 'AS time'
column alias (#10119)
* new timepicker is working
* dashfolders: Create nav model for folder page client side
#10083
* ux: minor change to new folder page
* fix for search dropdown on small screen + icon overlapping
fix (#10091)
* ux: added react scrollbar component and added it to add
panel panel
* tech: updated ngreact and with custom PR applied
* refactoring: #10130
* Revert 'Don't animate panels on initial render (#10130)'
* Don't animate panels on initial render (#10130)
* refactoring: fixing bug when all values are null
* fixes broken test
* dashfolders: Hide search input area when showing CTA.
#10083
* ux: graph legend refactoring
* improve error handling for datasources as cfg
* improve sample datasource.yaml
* make gitignore more generic
* grid css transforms: minor refactor (#10128)
* dashboard grid: enable CSS transforms (#10125)
* fixes issue with datasource/dash as cfg and gitignore
* refactoring: changing how graph height and legend height
is calculated, using flex box seems to actually work,
#10079
* dashfolders: create folder page
* refactor: removed graph height from legend decimal calc
* dashfolders: css fix
* fixes failing tests
* dashfolders: New Dashboard Folder page
* fix: move components tests to specs folder
* Fix go fmt
* kill plugin processes when grafana shuts down
* fix: v5 sidemenu & link to shortcuts now works, fixes
#10087
* separate plugin impl and proto files
* correct comments
* add hclog wrapper for grafanas logger in plugins
* add go-plugin deps to vendor
* initial version of proto files
* changelog: breaking regardless what your running
* changelog: better styling
* removes last pieces of dashboard.json
* refactor: sidemenu toggle & hiding logic
* changelog: note about closing #5269 and #9654
* dashboards as cfg: update docs to use /provisioning
* dashboards as cfg: move dash/ds config files to
/provisioning/*
* dashboards as cfg: copy dash/ds files if missing
* dashboards as cfg: include cfg files in dist packages
* dashboards as cfg: avoid walking fs in parallel
* dashboards as cfg: type
* dashboards as cfg: disable loading dashboards from disk by
default
* dashboards as cfg: wire up dashboard repo
* dashboards as cfg: use gocache for caching
* dashboards as cfg: expose dashboard service as interface
* dashboards as cfg: move saving logic for dashboards into
its own service
* dashboards as cfg: revert minor changes
* dashboards as cfg: move dashboard saving into its own
service
* dashboards as cfg: minor tweaks
* dashboards as cfg: make dashboard none editable by default
* dashboards as cfg: more tests
* dashboards as cfg: code cleanup
* dashboards as cfg: read first cfg version
* removed row to center footer (#10115)
* ux: minor cleanup
* mysql: pass timerange for template variable queries
(#10071)
* dashboard: fix edge case with keyboard nav in dashboard
search. #10100
* Solves problem with Github authentication restriction by
organization membership when the organization's access
policy is set to 'Access restricted'. 'Access restricted'
policy should not stop user to authenticate.
* graph: fix legend height calculation
* postgres: pass timerange for template variable queries
(#10069)
* graph: move auto decimals calc to ticks.ts and use it for
legend values format.
* Resolves grafana/grafana:#9309
* dashboard: fix linting and formating - #10100
* dashboard: keyboard nav in dashboard search - closes
#10100
* graph: refactor (don't render twice)
* handle native postgres datetime types in annotation
queries (#9986)
* treat any text column in timeseries query as metric name
unless column (#9985)
* Fixing tabs for Grafana 5 - #10082 (#10103)
* other panels now hidden, fixes 10088 (#10102)
* fixed 404 for grafana5 + now responsive (#10101)
* dashboard: fix search results tests #10083
* dashboard: Show CTA for empty lists/folders #10083
* dashboard: Dashboard folder page wip #10083
* prom: enable min interval per panel
* Fix merge issue on multi-query table transforms
* graph: fix karma tests
* graph: render legend before graph
* added tooltip, fixes #10092 (#10097)
* graph: refactor
* graph: convert legend.js to typescript
* fixing a few fromattings
* adding mssql docs
* docs: link from cfg page to provisioning
* reduce app icon by 3px on home dashboard - wasn't lining
up properly with starred/recently viewed dasboard list
properly
* ux: minor style tweaks to cards and sidemenu icons for
white theme
* ux: tweaked light theme and made page container more fluid
* dashboard: dashboard search results component. closes
#10080
* docs: added utm_source for link from ds list page to docs
page
* updating the query editor's syntax highlighting mode to
sqlserver
* fixed grey colors in light-theme, added new variables,
played a bit with blue
* v5: removed permissions from dashboard cog dropdown,
closes #10068
* nav: updated nav item id for manage dashboards
* refactoring PR #10068
* dashboard: migrations for repeat rows (#10070)
* Backwards-compat for multi-query table transform
* graph: make legend scrollable
* removes unused properties
* Making the multi-query table transform the default table
transform
* ux: updated padding
* ux: Add CTA for empty lists
* move import menu item to the original place
* move DashboardImportCtrl tests to jest
* Move import dashboard from modal to the page
* refactor: minor refactoring of #10027
* new grays for light theme
* sidemenu: responsive sidemenu view for smallest breakpoint
* add _tests for mssql data source
* ux: tabs update
* Tests for multi-query table transform
* ux: updated modal header design
* ux: progress on time picker dropdown version
* fix templating undefined error (#10004)
* tweaks to add panel panels
* ux: updated dashboard nav
* MSSQL Data Source
* add server only build target 'build-srv'
* ux: dashboard setings progres
* add Cloud Alchemy Ansible role
* started on dashboard settings refactor
* ux: add new panel and dash nav improvements
* Added basic table transformer test
* typo :boom:
* influxdb: pass tags to alerting from influxdb client
* ux: dashboard nav update
* ux: new dashnav design
* ignore /conf/**/custom.yaml files
* repeat row: refactor
* Fix dashboard menu overlapping (#10044)
* Add multiquery_table table transform
* typo :boom:
* move systemd ready notification to server.go
* changelog: adds note about closing #10024
* page header now on 99% of pages
* navigation: more progress on new page header
* ux: new page-header design, most pages beside admin done
* fixed sass warnings
* ux: made plugins page work
* Use systemd notification where applicable
* progress on page header
* tweaked color on heatmap. still not there, but more
vibrant
* ux: new page header progress
* added bundled dashboards
* ux: progress on new page header
* dashboard: when changing route, scroll to top
* grafana-10039: fix query time range ends in the past
* ux: work on page header
* Revert 'prometheus nested query support'
* ux: updating header design for pages
* fix: when navigating, scroll to top
* repeat row: add more tests
* ux: new page header design
* tweak background size
* new test svg background, minor form tweaks
* ux: search filter box
* ux: changed body default font size to 13px
* test: fix failing postgres test
* Added border radius and tightened up the folder boxes.
Still needs to have the bottom margin expanded to 8px when
in opened state (this needs @torkelo)
* test: speedup mysql and postgres integration tests by
10-20x
* repeat row: expose scopedVars to row panels
* ux: search design update
* repeat row: handle collapsed rows
* notifier: Fixes path for uploaded image for Slack notifier
* formatting in build file
* dashboard: initial repeat row implementation
* prometheus nested query support
* fix render http[get] params error
* test: close file before deleting
* Restore Page Footer after migration to new scrollbar #9652
* export view json now templatized, fixes #10001
* dashfolders: Add a helper for creating a dashboard folder
* dashfolders: revert automatic creation of folders for
plugins
* styling changes for light theme
* grid: use single column layout for mobile devices (#9999)
* fix panel solo mode (#10002)
* dashlist: handle recent dashboards removed from backend
* dashfolders: don't create app folder on dashboard import
if already exists
* dashfolders: create app folder on dashboard import
* datasource: fix merge conflict - restore dashboards tab
* search fix and update buttons on dashboard list page
* fix: removed table background
* build: fixed lint issue
* fixed link i specs-file
* Improve dashboard grid layout migration WIP (#9943)
* test fix
* updated libs and fixed new typescript errors
* dashlist: Support for clear all filters
* migrated viewstatesrv to ts
* added yarn.lock file back
* ux: table design work
* panel: open panel menu by click on header
* ux: search progress
* worked on search
* migrated four files from js to ts
* migrated four files to ts, addd some code to config to
make it work (#9980)
* Update NOTICE.md
* Update LICENSE.md
* ux breadcrumb work
* ux: sass fixes and polish
* dashlist: Support for check/uncheck all
* Migrate gfunc to ts (#9973)
* migrated admin files to ts (#9975)
* migration of org files from js to ts (#9974)
* sass tweaks
* dashlist: When searching should reset checked state to
false
* More js to ts (#9966)
* dashlist: change scrollbar to new perfect scroll directive
* docs: Improve delete snapshot documentation
* ux: fixed sass issue
* sass refactoring and updating styles for list item
elements
* dashlist: style list to be same as dash search
* css tweaks and cleanup
* removing gemini scrollbar and replacing with perfect
scrollbar, muuuch better
* dashlist: starred filter search
* ux: tweaked panel color and dashboard background is same
as page background
* removed call to unused function in panel_ctrl
* scrollable panels works better with perfect-scrollbar
* Update latest.json
* Optimized number of lines fetching in log file
initialisation
* work on scrollable panels
* converted 3 .js files to .ts (#9958)
* docs: adds docs for pausing all alerts
* Removing file that got committed by accident
* scrollable panels: fix initial content size (#9960)
* Delete LICENSE.txt
* dashlist: adds tag filter select (GitHub style)
* [GCS] Support for gcs path
* dashlist: toggle folders
* dashboard: fix test for folderIds
* allows head requests for /api/health endpoint
* dashlist: fix tag filtering and some css
* fix: fixed issue with metric segment introduced in
graphite tags query editor PR
* progress on scrollable panels work
* mysql: add data source support for Azure MySql
* fixed unit tests
* fix: alert list panel now works correctly after adding
manual annotation on dashboard, fixes #9951
* Elasticsearch max_concurrent_shard_requests parameter for
es 5.6+
* prom: add prom2 dashboard as bundled dashboard
* show top 5 max scrape durations by job, and fix legend
format
* fix scrape duration, add rule eval iteration stats, and
reorg a bit
* fix data source var and remove node_exporter dependency
* First draft of a Prometheus 2.0 Stats dashboard
* prom: initial docker block for prometheus 2
* tweak tabs:
* color fix
* make grays cooler
* dashlist: started fixing js/css after design changes
* updated search
* more work on search
* minor update to dashboard search
* converted test-files to jest
* improved search srv
* converted influx-series to TS, converted test to jest
* dashboard search
* working on dashboard search
* Move the loading flag to PanelCtrl (#9929)
* graph: disable zoom in non-timeseries modes (#9914)
* changed padding to pixels, fixes #9916 (#9924)
* Use correct moments format for Showing last us time
instead of value test (#9923)
* Don't import JSON dashboards from hidden directories.
* new design for login
* fix: build & tests
* search: add expanded folders
* influxdb: another minor refactor of #9474
* refactor: refactoring InfluxDB query builder with policy
PR #9473
* refactor: refactoring InfluxDB query builder with policy
PR #9473
* docs: added versions_to_keep to config docs, #9671
* refactoring: minor refactor of clean up dashboard history
PR #9882
* fix: fix for avatar images when gzip is turned on, fixes
#5952
* elasticsearch: default version to 5.x
* Adding a user in a specified organisation uses the admin
API
* panels: add css tweaks for scrollable panels
* dashboard history clean up: avoid potential SQL injections
* search: refactor search sql into a builder class
* changelog: note about closing #9798
* removes invalid comment
* api: fix so that datasources functions returns Response
* changelog: note about closing #1789
* fix: Use Response as return type
* fix: return id from api when creating new
annotation/graphite annotation, fixes #9798
* datasources as cfg: adds docs for all jsondata and
secure_json fields
* graphite: minor changes
* text panel: make scrollable
* panels: general property which makes panel scrollable
* datasources as cfg: convert yaml map into json for
jsonData
* fix: fix cloudwatch metricFindQuery error that stopped it
working completely, fixes #9876
* dashlist: css adjustments for scrollbar
* dashlist: fix resizing after mode switching
* dashlist: add scrollbar
* dashlist: fix panel resizing
* docs: update metrics api path
* changelog: adds note about closing #1871
* fixes: #1871 Dropdown starred (#9490)
* dont loose subsecond precision when dealing with timestamp
or (#9851)
* graphite: progress on new query editor
* datasource as cfg: fixes typos
* docs: format cfg mgt tools as table
* docs: adds more info about provisioning
* datasource as cfg: update docs to include globbig
* datasource as cfg: show deletes first in example
* datasource as cfg: support globbing
* datasource as cfg: enable editable ds's
* datasource as cfg: add org_id to example config
* tweak docs
* datasource as cfg: adds readonly datasources
* datasource as cfg: refactor to use bus
* datasource as cfg: test for reading all properties
* datasource as cfg: adds provisioning docs
* datasource as cfg: rename feature to provisioning
* datasource as cfg: improve name for this feature
* datasource as cfg: refactor tests to use yaml files
* datasource as cfg: ignore datasource all ready exist for
inserts
* datasource as cfg: add support for securedata field
* datasource as cfg: setting for purging datasources not in
cfg
* datasources as cfg: tests for insert/updating datasources
* datasource as cfg: basic implementation
* More energy units (#9743)
* Add feet to the length menu (#9889)
* middleware: recovery handles panics in all handlers
* sql: small fix to error handling
* graphite: progress on new query editor
* changelog: make prom fixes more explicit
* dashboard history clean up: add tests
* tech: ignore debug.test file created by VS Code
* dashboard history: refactor after review
* changelog: adds note about closing #9777
* prom: add support for default step param (#9866)
* properly escape components of connection string (#9850)
* refactor: changed string slicing to strings.TrimPrefix,
#9862
* dashboard history: clean up dashboard version history
* build: fixed jshint error
* sync documentation, add remark about to_timestamp and
redshift (#9841)
* fix: Html escaping caused issue in InfluxDB query editor,
could not pick greater than or less then operators, fixes
#9871
* changelog: adds note about closing #8523
* teams: removes print statement
* Add Microsoft Teams notifier
* docs: update building from source doc with node-gyp
* heatmap: fix tooltip in 'Time series bucket' mode, #9332
(#9867)
* fix: Table panel now renders annotations correctly. Fixes
#9842 (#9868)
* build: fixes build and jest tests on Windows
* fix cloudwatch ec2_instance_attribute (#9718)
* graph: the stack & legend sort sync was not working
correctly, the z-index sorting that happened in after the
legend sort order was applied and messed with the order
even though the sort function returned zero for all
entries, combined the sort function to one sort function,
fixes #9789 (#9797)
* not ok option to alert list, fixes: #9754
* changelog: note about closing #9661
* return empty array for no datapoints
* fix query inspector for cloudwatch
* Add AWS/NetworkELB to cloudwatch definitions
* changelog: note about closing #9784
* test: adds tests for password encodiing
* use SHOW RETENTIONS to test influxdb connection (#9824)
* Use hex.EncodeToString to encode to hex
* Added missing documentation for auth.proxy (#9796)
* fix date test (#9811)
* docker: expose statsd endpoint for graphite block
* update lib/pq (#9788)
* Update the config key to database_log_queries so it is
more descriptive, as suggested in #9785.
* graph: don't change original series name in histogram
mode, #8886 (#9782)
* MySQL Performance when using GF_DATABASE_URL Set
MaxIdleConn and MaxOpenConn when using the GF_DATABASE_URL
configuration. Also added GF_DATABASE_DEBUG flag to print
SQL statements and SQL execution times. See #9784 for the
details.
* Update postgres.md
* colorpicker: fix color string change #9769 (#9780)
* refactor: alert list panel fixes and no alerts message,
rewrite of PR #9721
* feat: refactoring hide time picker PR #9756
* search: began writing test for new search
* changed class name for no-alerts
* chore(docs): update the search Query Example
* ux: search progress
* dashfolders: fix for dashlist nav
* reduce docker-compose header version
* ux: progress on new search
* ux: minor changes
* ignore docker-compose.yaml
* docs: update latest release to 4.6.1
* packages: update published package version
* option to hide Time picker, fixes #2013
* fix: panel view now wraps, no scrolling required, fixes
#9746
* changelog: set release date for 4.6.1
* changelog: adds note about closing #9707
* fix default alias
* add period alias
* plugins: fix for loading external plugins behind auth
proxy, fixes #9509
* testdata: added manual entry mode to test data
* new design for no alerts in alert-list, fixes #9721
* fix: fixed compiler error from #9676
* converted ng_model_on_blur.js to ts,
deletedkeyboard_manager.js (#9676)
* docs: update testdata enable explanantion
* MAINTAINER is deprecated, now using LABEL
* Update ROADMAP.md
* Adding energy, area, and acceleration units (#9336)
* tests: migrated tests for link_srv to jest, #9666
* Transitioning fig to docker-compose v3
* tests: migrated tests for link_srv to jest, #9666
* fix for dashboard tag link bug, fixes #9737 (#9739)
* github: dont require bug/fr in title
* changelog: adds note about closing #9713
* converted confirm_click.js to .ts (#9674)
* Update codecov.yml
* change default sslmode for postgres to verify-full (#9736)
* fix: color picker bug at series overrides page, #9715
(#9738)
* Update ROADMAP.md
* tech: switch to golang 1.9.2
* always quote template variables for mysql when multi-value
is allowed (#9712)
* always quote template variables for postgres when
multi-value or include (#9714)
* fix: dashboard links dropdown toggle did not update view,
fixes #9732
* docs: adds prom grafana dashboard
* graphite: tag is required for values autocomplete
* dashfolders: bulk edit tag filtering
* Correct help message of
api_dataproxy_request_all_milliseconds
* changelog: adds note about closing #9645
* changelog: adds note about closing #9698
* ace editor for text panel
* dashboards: bulk edit delete
* tech: add missing include
* dashboards: fix link to bulk edit
* sql: remove title from annotation help
* changelog: adds note about closing #9681
* fix: undefined is not an object evaluating this., #9538
* [Bug Fix] Opentsdb Alias issue (#9613)
* fix: graphite annotation tooltip included undefined, fixes
#9707
* Alertlist: Inform when no alerts in current time range
* save as should only delete threshold for panels with
alerts
* graphite: tags and values autocomplete based on @DanCech
PR to graphite-web
* changelog: note for #9596
* add __timeGroup macro for mysql (#9596)
* updated icons
* docs: fix link
* ux: testing 3px panel border radius
* more link fixes
* fixed link issues
* renamed file
* converted inspect_ctrl.js to ts (#9673)
* converted dashboard_loaders.js to .ts (#9672)
* declared any to info in declaration
* converted analytics.js to ts, minor code formatting fix to
timer.ts (#9663)
* docs: updated download links
* docs: update alerting with new data sources
* changelog: spelling
* plugins: added backward compatible path for rxjs
* ux: updated singlestat default colors
* prometheus: fixed unsaved changes warning when changing
time range due to step option on query model was changed
in datasource.query code, fixes #9675
* docs: updated changelog
* fix: firefox can now create region annotations, fixes
#9638
* changelog: adds note about closing #9639
* set release date for 4.6.0
* grid: work in progress on row repeats
* dashfolders: rough draft of bulk edit
* converted linkSrv.js to linkSrv.ts
* docs: update docker installation docs
* grid: minor changes
* converted outline.js to outline.ts (#9658)
* converted timer.js to timer.ts (#9656)
* datasource as cfg: typo
* Create codecov.yml
* datasource as cfg: explain why cmd.version can be higher
* #edit_grafana_organisation_apis_doc (#9651)
* add a phantomjs execution status to log if errors happens,
e.g. OOM killer kills it (#9644)
* grid: worked on row options modal and row removal
* dashboard: fix home dashboard getting started panel
* Fix typo in template help tab
* replace store.js with store.ts, test for store.ts (#9646)
* tests: added test for DashboardRow
* docs: update first page with data source guides
* docs: document annotations for postgres/mysql
* docs: update for template variables
* changelog: spelling
* Allow for multiple auto interval template variables
(#9216)
* changelog: adds note about closing #9645
* tech: remove rabbitmq event publisher
* changelog: note for #9030
* dont quote variables for mysql and postgres datasource
(#9611)
* asscoiate comment with name
* Update development.md
* ux: row collapse / expand starting to work
* changelog: adds note about closing #9640
* alerting: only editors can pause rules
* prom: adds pre built grafana dashboard
* changelog: adds note about closing #9636
* fix: another fix for playlist view state, #9639
* ux: updated icons
* shore: migrating config/settings.js to typescript
* fix: fixed playlist controls and view state, fixes #9639
* Fixed #9636
* shore: removed unused old system conf file
* Use d3 from node_modules (#9625)
* update log15 (#9622)
* docs: update whats-new-in
* changelog: small text change
* changelog: v4.6.0-beta3 released
* tech: annotations refactor, add tests for regions
processing (#9618)
* Move #9527 to 4.6.0-beta3
* build: disable jest on precommit hook -windows fix
* build: fix all npm run commands for Windows
* plugins: fixes path issue on Windows
* build: tryingt of fix windows build issue
* tests: removes commented tests
* graph: invert order when sorting by legend
* fix: escape series name in graph legend, added
aliasEscaped to time series model to reuse escape, fixes
#9615
* build: fixed gofmt issue and addd mock response feature
* prometheus: enable gzip for /metrics endpoint
* build: split circle test shell scripts
* datasources: change to optimisic concurrency
* build: reduced webpack log output and remove race flag
from go tests
* build: set max workers to 2 for jest
* build: log heap usage
* build: another build fix
* tests: migrated two more tests to jest
* build: fixed build failure
* build: reworking pre commit hook
* build: added precommit
* fix: fixed tslint validation error
* test: added first react snapshot test
* docs: another docs fix
* docs: fix docs redirect for older datasources index page,
fixes #9609
* [Tech]: Start migrating to Jest for tests (#9610)
* Fix typo in init.d script
* graphite: auto detect version
* graphite: improved version comparison
* graphite: split tags and functions into 2 rows when
seriesByTag used
* graphite: add tags to dropdown and switch to tag editor if
selected
* plugins: expose dashboard impression store
* ux: minor ux tweaks
* Sort series in the same order as legend in graph panel
(#9563)
* fix: fixed save to file button in export modal, fixes
#9586
* mysql: add usage stats for mysql
* run go fmt
* Add a setting to allow DB queries
* note for #9527
* modify $__timeGroup macro so it can be used in select
clause (#9527)
* Fix heatmap Y axis rendering (#9580)
* prometheus: add builtin template variable as range vectors
* Note for #5457
* fix: fixed prometheus step issue that caused browser
crash, fixes #9575
* changelog: adds note about closing #9551
* fix: getting started panel and mark adding data source as
done, fixes #9568
* pluginloader: esModule true for systemjs config
* Fixes for annotations API (#9577)
* ux: new fixes
* Grafana5 light (#9559)
* When Messasge field is set for an alert, map it to the
output field in a Sensu check result. If Message is empty,
send 'Grafana Metric Condition Met'
* ux: work on rows
* fix vector range
* allow ':' character for metric name
* build: added imports of rxjs utility functions
* grid: row work
* fix template variable expanding
* annotations: quote reserved fields (#9550)
* fix: fixed color pickers that were broken in minified
builds, fixes #9549
* ux: align alert and btn colors
* docs: doc updates
* remove duplicative prometheus function
* remove label match operator from keyword.operator
* remove label match operator from keyword.operator
* remove extra state push
* fix typo
* newgrid: row progress
* styleguide: fix link in index
* api: fix for dashboard version history
* textpanel: fixes #9491
* graphite: datasource refactor
* csv: fix import for saveAs shim
* grid: minor progress on new row concept
* ux: add panel progress
* alert_tab: clear test result when testing rules
* ux: worked on add panel function
* plugins: expose more util and flot dependencies
* (cloudwatch) fix cloudwatch query error over 24h (#9536)
* Add autofocus tag for username field on login.html (#9526)
* show error message when cloudwatch datasource can't add
* ux: minor button changes
* CloudWatch: Add ALB RequestCountPerTarget metric
* ux: color tweaks
* ux: testing out new icons
* set nightly version to v4.7.0-pre1
* changelog: adds release date for v4.6.0-beta1
* ux: minor fixes
* grid: fixed grid width issues
* grid: repeat refactoring and unit tests
* Missing dot in aws credentials path
* newgrid: added constants, changed grid to 24 cols, added
tests for panel repeats
* docs: doc updates
* grid: minor progress on panel repeats
* changed name back to use underscore instead of camelcase,
need to think more about this
* fixed dashboard sorting
* newgrid: worked panel duplicate
* fix: various fixes for new grid
* dashgrid: fix or skip tests for repeat rows
* dashboardgrid: disable dynamic_dashboard_srv for now
* ux: style tweaks
* newgrid: various fixes
* If retention policy is set for influxDB, preprend that to
the measurement name for exploration queries.
* newgrid: fixed migration code to new grid
* docker: updated our graphite docker container
* grid: edit/view now works
* dashboard: fixes for panels without rows
* webpack: changed devtools setting to stop exceptions
* fix: ignore upgrading dashboard grid when there are no
rows
* grid: fixed migration for rows without height
* ux: minor fix sidemenu
* newgrid: progress on fullscreen/edit view modes
* search: fix search to limit dashboards better
* grid: fixed geting started panel pos
* grid: progress on react grid
* grid: progress on new grid, resize & saving layouts works
* grid: minor progress
* tech: got angular component to load inside react grid
* grid: need to find a way to add angular component inside
react
* ux: initial react grid poc
* graphite-tags: refactor, improve performance - remove
unnecessary parseTarget() calls
* graphite-tags: add tests
* graphite-tags: refactor, use <gf-form-dropdown> instead of
<metric-segment>
* graphite-tags: initial tag editor
* Update kbn.js
* Update kbn.js
* fixes
* Use B/s instead Bps for Bytes per second
* fix merge issue
* develop: fixed more broken tests, couple still failing
* ux: alternative row design
* newgrid: fixes to default home dashboard
* ux: minor fixes
* ux: new grid progress
* grid: minor progres on new grid
* grid: minor progres on new grid
* ux: minor button changes
* ux: minor updates
* ux: changed cta button style
* minor fix
* ux: added scroll to two pages
* minor fix for page-h1
* grid work
* progress on rows as panelsW
* fixed unit tests
* minor user avatar stuff
* started on rows as panels in single grid
* minor user list cahnge
* users view update
* ux: color tweaks
* Moved around the columns a bit
* ux: dashboard stuff
* ux: minor changes
* ux: sidemenu animation duration
* ux: fixed sidenav issues
* ux: sidemenu toggling
* ux: sidenav fixes and dashboard search changes
* ux: switching orgs now works through modal
* ux: making org visibile in profile view
* ux: more nav work
* ux: nav fixes & polish
* ux: more nav work
* ux: more nav work
* ux: navigation work
* ux: sidenav fixes and dashboard search changes
* ux: more work on sidemenu
* Silly gradient added a placeholder. no more
experimentation to be done here until Trent has a pass at
it
* ux: scrollbar stuff
* Added drop shadown for sticky scrolling, moved colors into
dark and light variables
* Reduced size of breadcrumbs, additional form styling.
Colors still need to be adjusted
* Starting to play with new form styles
* ux: minor scroll fix
* ux: removed custom scrollbar look
* ux: reduced size of sidemenu icons a bit
* ux: testing fixed sidemenu and breadcrumbs
* ux: minor navbar update
* ux: new breadcrumb progress
* ux: wip
* ux: new page header look wip
* ux: testing roboto font
* ux: use flexbox for sidenav, put logo in sidenav
* moving panels betwen rows are starting to work
* grid: progress on row support
* grid: new grid fixes
* new-grid: fixed destory issues
* grid: remove panel works
* grid: updated gridstack to use grafana fork
* feat: new grid fixes
* minor fixes
* updated
* feat: new grid system progressW
* ux: minor panel menu fix
* ux: minor panel menu tweaks
* ux: tweaks to new panel menu
* updated
* dashfolders: inherited permissions for dashboards
* dashfolders: handle permission changes when saving/moving
dashboards
* added code from #8504, and #8021
* dashboard folder search fix
* dashfolders: fix user group picker + cleanup
* dashfolders: rename refactor
* dashfolders: validation for duplicates in acl modal
* minor update
* ux: style tweaks, trying out non italic headers
* ux: nav changes
* added sidemeu stuff
* dashfolders: use canadmin permission in settings menu
* dashfolders: tests for permission modal
* dashboard acl fixes
* acl fixes
* dashfolders: new admin permission needed to view/change
acl
* acl: more acl work
* dashfolders: filter search based on child dash permissions
* dashfolders: allows phantomjs rendering for alerting
* dashfolders: allow overflow-y for modals
* dashfolders: security for png rendering
* dashboard acl stuff
* dashboard acl work
* dashboard acl
* working on dashbord acl stuff
* WIP: first draft of permissionlist panel
* dashboard acl
* dashboard acl work
* WIP: fix js tests for acl
* WIP: fix folder-picker for dashlist
* dashboard acl work
* refactoring: dashboard folders
* dashboard acl modal
* WIP: adding roles - not finished
* refactoring: moving dashboards acl migrations to its own
folder
* WIP: fix acl route
* refactoring: renaming
* folders: changed api urls for dashboard acls
* refactoring more renaming
* refactoring renaming dashboard folder operations
* dashboard_folders refactoring
* refactoring dashboard folder security checks
* dashboard guardian refactoring starting to work
* dashboard folders acl work
* refactoring dashoard folder guardian
* WIP: refactor user group modal
* refactoring: Dashboard guardian
* WIP: remove unused test file
* WIP: refactor dash search and remove extra query
* WIP: move guardian logic for search into the sql query
* WIP: remove dashboard children on delete
* dashboard_folders: refactoring picker and folder selection
in dashboard settings & save as menu
* WIP: adds API check to stop folders being included in
folders
* use gf-form-dropdown in user picker
* WIP: add test for add user group permission
* WIP: can edit dashboard permission
* WIP: clean up after user and org user delete
* WIP: remove permissions when deleting global user
* dashboard_folders: updated
* WIP: delete dependent permissions on user group delete
* dashboard_folders: fixes to user picker & group picker
* dashboard_folders: fixes to user & group picker
* minor update
* WIP: permission checking for dash version api methods
* ux: gridstack poc
* Gridstack: testing
* WIP: check permissions for delete/post dashboard
* WIP: fixes after version history merge
* ux: nav experiments
* WIP: add permission check for GetDashboard
* ux: side nav experiments
* WIP: fix test after merge conflict
* WIP: fix go fmt error
* WIP: user + user-group pickers for permissions
* WIP: API - add dash permission
* WIP: user-picker directive
* WIP: Permission Type as string in permission query
* WIP: fixes after navbar changes
* WIP: dashlist in template for new folder
* WIP: refactor folder-picker for dashlist
* WIP: dashboard search by folder + toggle for list or tree
mode
* WIP: adds folder-picker to save as dialog
* WIP: use metric-segment for folder picker
* WIP: add dummy root folder to folder picker
* WIP: Create new dashboard button in dash search
* WIP: permissions moved to settings tab. Adds folder
dropdown to general settings tab
* WIP: add parentid to getdashboard query result
* WIP: dashboard search by type (folder or dash)
* WIP: fix after upstream sqlstore refactoring
* WIP: rollback
* WIP: delete permission in API
* WIP: user group additions
* WIP: remove browse mode for dashboard search
* WIP: get Dashboard Permissions
* WIP: add open/closed folders icons for dash search
* WIP: Can remove dashboard permission - sql
* WIP: limit GetAllowedDashboards sql query with a where in
* WIP: Add or update Dashboard ACL
* WIP: guardian service for search
* dashboard: sort search with dash folder first
* WIP: add some TS types
* WIP: edit user group page
* WIP: API methods for add/remove members to user group
* WIP: add update user group command
* WIP: add new group, needs to be redone
* WIP: add user group search
* WIP: add usergroup commands and queries
* WIP: rough prototype of dashboard folders
* ux: very early start to new sidemenu
* ux: very early start to new sidemenu
* ux: minor tweak to faintness of icons of panel menu caret
* ux: minor progress on panel title menu makover
* use the original options parameter
* use targets[0] as the options
* pass the options along with a _seriesQuery
* pass database parameter in the options
* allow setting the database
* ux: more work on panel menu
* ux: panel title ux improvements poc
* Sending image
* Discord integration
Changes in grafana-natel-discrete-panel:
- Add recompress source service
- Add set_version source service
- Enable changesgenerate for tar_scm source service
- Update to version 0.0.9:
* split commands
* put back the history
Changes in openstack-aodh:
- Add %_tmpfilesdir to %files
Changes in openstack-barbican:
- Add %_tmpfilesdir to %files
Changes in openstack-cinder:
- Add %_tmpfilesdir to %files
Changes in openstack-gnocchi:
- Add %_tmpfilesdir to %files
Changes in openstack-heat:
- Add %_tmpfilesdir to %files
Changes in openstack-ironic:
- Add %_tmpfilesdir to %files
Changes in openstack-magnum:
- Add %_tmpfilesdir to %files
Changes in openstack-manila:
- Add %_tmpfilesdir to %files
Changes in openstack-monasca-agent:
- Add dependency:
* fdupes
* pwdutils and shadow-utils for useradd/groupadd
- remove rpm-packaging integration
- Add %_tmpfilesdir to %files
Changes in openstack-murano:
- Add %_tmpfilesdir to %files
Changes in openstack-neutron:
- Add %_tmpfilesdir to %files
Changes in openstack-neutron-vpnaas:
- Add %_tmpfilesdir to %files
Changes in openstack-nova:
- Add 0014-Provide-VIR_MIGRATE_PARAM_PERSIST_XML-during-live-migration.patch
- (bsc#1175484, CVE-2020-17376)
- Add 0001-rbd_utils-increase-_destroy_volume-timeout.patch (bsc#1154434)
- Fix for https://bugs.launchpad.net/nova/+bug/1856845
Changes in openstack-sahara:
- Add %_tmpfilesdir to %files
Changes in python-google-api-python-client:
- Add pr-201.patch . This enables also older oauth2client
versions.
- update to 1.5.0:
- Release to support oauth2client >= 2.0.0.
- Fix file stream recognition in Python 3 (#141)
- Fix non-resumable binary uploads in Python 3 (#147)
- Default to 'octet-stream' if mimetype detection fails (#157)
- Handle SSL errors with retries (#160)
- Fix incompatibility with oauth2client v2.0.0 (#182)
- Add automatic caching for the discovery docs.
- Add the googleapiclient.discovery.Resource.new_batch_http_request method.
- Python 3 support.
- Small bugfix release.
- Fix an infinite loop for downloading small files.
- Fix a unicode error in error encoding.
- Better handling of `content-length` in media requests.
- Add support for methodPath entries containing colon.
- Quick release for a fix around aliasing in v1.3.
- Add support for the Google Application Default Credentials.
- Require python 2.6 as a minimum version.
- Update several API samples.
- Finish splitting out oauth2client repo and update tests.
- Various doc cleanup and bugfixes.
- We've added `googleapiclient` as the primary suggested import
name, and kept `apiclient` as an alias, in order to have a more
appropriate import name. At some point, we will remove `apiclient`
as an alias.
- Due to an issue around in-place upgrades for Python packages,
it's not possible to do an upgrade from version 1.2 to 1.3. Instead,
setup.py attempts to detect this and prevents it. Simply remove
the previous version and reinstall to fix this.
- The use of the gflags library is now deprecated, and is no longer a
dependency. If you are still using the oauth2client.tools.run() function
then include gflags as a dependency of your application or switch to
oauth2client.tools.run_flow.
- Samples have been updated to use the new apiclient.sample_tools, and no
longer use gflags.
- Added support for the experimental Object Change Notification, as found in
the Cloud Storage API.
- The oauth2client App Engine decorators are now threadsafe.
- Use the following redirects feature of httplib2 where it returns the
ultimate URL after a series of redirects to avoid multiple hops for every
resumable media upload request.
- Updated AdSense Management API samples to V1.3
- Add option to automatically retry requests.
- Ability to list registered keys in multistore_file.
- User-agent must contain (gzip).
- The 'method' parameter for httplib2 is not positional. This would cause
spurious warnings in the logging.
- Making OAuth2Decorator more extensible. Fixes Issue 256.
- Update AdExchange Buyer API examples to version v1.2.
- Add PEM support to SignedJWTAssertionCredentials (used to only support
PKCS12 formatted keys). Note that if you use PEM formatted keys you can use
PyCrypto 2.6 or later instead of OpenSSL.
- Allow deserialized discovery docs to be passed to build_from_document().
- Make ResumableUploadError derive from HttpError.
- Many changes to move all the closures in apiclient.discovery into real
classes and objects.
- Make from_json behavior inheritable.
- Expose the full token response in OAuth2Client and OAuth2Decorator.
- Handle reasons that are None.
- Added support for NDB based storing of oauth2client objects.
- Update grant_type for AssertionCredentials.
- Adding a .revoke() to Credentials. Closes issue 98.
- Modify oauth2client.multistore_file to store and retrieve credentials
using an arbitrary key.
- Don't accept 403 challenges by default for auth challenges.
- Set httplib2.RETRIES to 1.
- Consolidate handling of scopes.
- Upgrade to httplib2 version 0.8.
- Allow setting the response_type in OAuth2WebServerFlow.
- Ensure that dataWrapper feature is checked before using the 'data' value.
- HMAC verification does not use a constant time algorithm.
- Fix description
- Update BuildRequires and Requires
- Use Source from pypi
Changes in python-Pillow:
- Add 0019-FLI-overflow-error-fix-and-testcase.patch
* From upstream, backported
* Fixes CVE-2016-0775, bsc#965582
- Add 0020-Fix-OOB-reads-in-FLI-decoding.patch
* From upstream, backported
* Fixes CVE-2020-10177, bsc#1173413
- Add 0021-Fix-bounds-overflow-in-JPEG-2000-decoding.patch
* From upstream, backported
* Fixes CVE-2020-10994, bsc#1173418
- Add 0022-Fix-bounds-overflow-in-PCX-decoding.patch
* From upstream, backported
* Fixes CVE-2020-10378, bsc#1173416
Changes in rubygem-crowbar-client:
- Update to 3.9.3
- Enable restricted commands for Cloud 7 (bsc#1117080, CVE-2018-17954)
Patchnames
SUSE-2020-2911,SUSE-OpenStack-Cloud-7-2020-2911
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client", title: "Title of the patch", }, { category: "description", text: "This update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client fixes the following issues:\n\nSecurity fixes included on this update:\n\nfor ansible:\n- CVE-2020-1733,CVE-2020-10744: Fixed a race condition and insecure permissions which could have allowed\n another user on the node to gain control of the become user (bsc#1171823 and bsc#1164140).\n\nfor grafana:\n- CVE-2020-11110, CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed XSS vulnerabilities in dashboard\n due to an incomplete fix for CVE-2018-12099\n\nfor openstack-nova:\n\n- CVE-2020-17376: Fixed an issue in which live migration failed to update persistent domain XML (bsc#1175484)\n\nfor python-pillow:\n- CVE-2016-0775: Fixed a buffer overflow in FliDecode.c (bsc#965582)\n- CVE-2020-10177: Fix-OOB-reads-in-FLI-decoding (bsc#1173413)\n- CVE-2020-10994: Fix-bounds-overflow-in-JPEG-2000-decoding (bsc#1173418)\n- CVE-2020-10378: Fix-bounds-overflow-in-PCX-decoding (bsc#1173416)\n\nfor rubygem-crowbar-client:\n- CVE-2018-17954: Fixed an issue where provision leaks admin password to all nodes in cleartext (bsc#1117080)\n\nNon-security fixes included on this update:\n\nChanges in ansible:\n- Update CVE-2020-10744_avoid_mkdir_p.patch to include missing parts\n and rename to CVE-2020-1733_avoid_mkdir_p.patch to make it clear\n which CVE is fixed there (bsc#1164140)\n\n- Add CVE-2020-10744_avoid_mkdir_p.patch (bsc#1171823) to fix\n insecure temporary directory creation.\n\nChanges in crowbar-core:\n- Update to version 4.0+git.1600767499.0615a418f:\n * provisioner: check for client_user (SOC-11389)\n * crowbar: Also add access to /restricted/ in SSL vhost (SOC-11352)\n * crowbar: Allow hardware-installing -> discovering transition (noref)\n * crowbar: Add Restricted controller with API for restricted clients (bsc#1117080)\n * crowbar: Add complete list of states to Crowbar::State (noref)\n * provisioner: Remove the need for /updates/parse_node_data (noref)\n * crowbar: Create helper module to validate states (noref)\n * provisioner: Use new restricted API (bsc#1117080)\n * provisioner: Do not read /etc/crowbar.install.key from crowbar_joi (bsc#1117080)\n * provisioner: Remove use of privileged user for Windows machine (bsc#1117080)\n * provisioner: Use restricted client during provisioning (bsc#1117080)\n * provisioner: Use restricted client for crowbar_register (bsc#1117080)\n * provisioner: Drop /etc/crowbar.install.key bits from autoyast prof (bsc#1117080)\n * Avoid hardcoding machine-install user (bsc#1117080)\n * crowbar: Restrict admin access (bsc#1117080)\n\n- Update to version 4.0+git.1600416364.5a9286e31:\n * Whitelist fixed CVEs in travis (noref)\n * Disable cookbook tests (noref)\n\n\nChanges in crowbar-openstack:\n- Update to version 4.0+git.1599037255.25b759234:\n * horizon: Update configuration for Grafana 5.x\n\nChanges in grafana:\n- BuildRequire go1.14 explicitly\n- Add recompress source service\n- Add go_modules source service to create vendor.tar.gz\n containing 3rd party go modules.\n- Adjust spec to work for Grafana-6.7.4\n- Adjust Makefile to work for Grafana-6.7.4\n- Remove CVE-2019-15043.patch (merged upstream)\n- Remove CVE-2020-13379.patch (merged upstream)\n- Remove 0001-CVE-2020-12052-bsc1170657-XSS-annotation-popup-vulnerability.patch\n (merged upstream)\n- Update to version 6.7.4 (bsc#1172450, CVE-2018-18623,\n CVE-2018-18624, CVE-2018-18625, bsc#1174583, CVE-2020-11110)\n * Only allow 32 hexadecimal digits for the avatar hash\n * 6.7.3 cherry-picks (#23808)\n * Fix CI for pushing a multi-architecture manifest (#23327)\n * AzureMonitor: Fix Log Analytics and Application Insights\n for Azure China (#21803) (#22753)\n * Revert 'grafana/data: PanelTypeChangedHandler API update\n to use PanelModel instead of panel options object\n [BREAKING] (#22754)'\n * Bumped version\n * Snapshots: Sanitize orignal url (#23254)\n * Plugins: Expose promiseToDigest (#23249)\n * Variables: Do not update variable from url when value is\n the same (#23220)\n * DashboardSave: Add new dashboard check (#23104)\n * Fix: reverted back to `import * as module` instead of\n using namespaces (#23069)\n * BackendSrv: Adds config to response to fix external\n plugins that use this (#23032)\n * DataLinks: make sure we use the correct datapoint when\n dataset contains null value. (#22981)\n * Fix mysterious Babel plugin errors (#22974)\n * Select: Fixed select text positition (#22952)\n * grafana/data: PanelTypeChangedHandler API update to use\n PanelModel instead of panel options object [BREAKING]\n (#22754)\n * Docs: Fix Broken Link (#22894)\n * Panels: Fixed size issue with panels when existing panel\n edit mode (#22912)\n * Azure: Fixed dropdowns not showing current value (#22914)\n * BackendSrv: only add content-type on POST, PUT requests\n (#22910)\n * Check if the datasource is of type loki using meta.id\n instead of name. (#22877)\n * CircleCI: Pin grabpl to 0.1.0 (#22904)\n * Design tweaks (#22886)\n * Rich history UX fixes (#22783)\n * AzureMonitor: support workspaces function for template\n variables (#22882)\n * SQLStore: Add migration for adding index on\n annotation.alert_id (#22876)\n * Plugins: Return jsondetails as an json object instead of\n raw json on datasource healthchecks. (#22859)\n * Backend plugins: Exclude plugin metrics in Grafana's\n metrics endpoint (#22857)\n * Graphite: Fixed issue with query editor and next select\n metric now showing after selecting metric node (#22856)\n * Stackdriver: Fix GCE auth bug when creating new data\n source (#22836)\n * @grafana/runtime: Add cancellation of queries to\n DataSourceWithBackend (#22818)\n * Rich history: Test coverage (#22852)\n * Datasource config was not mapped for datasource\n healthcheck (#22848)\n * upgrades plugin sdk to 0.30.0 (#22846)\n * Rich History: UX adjustments and fixes (#22729)\n * TablePanel: Enable new units picker (#22833)\n * Fix dashboard picker's props (#22815)\n * Grafana-UI: Add invalid state to Forms.Textarea (#22775)\n * SaveDashboard: Updated modal design/layout a bit (#22810)\n * Forms: Fix input suffix position (#22780)\n * AngularPanels: Fixed inner height calculation (#22796)\n * Fix: fixes issue with headers property with different\n casing (#22778)\n * DataSourceWithBackend: use /health endpoint for test\n (#22789)\n * Chore: remove expressions flag and allow (#22764)\n * Core: Pass the rest of to props to Select (#22776)\n * Add support for sending health check to datasource\n plugins. (#22771)\n * Datasource: making sure we are having the same data field\n order when using mixed data sources. (#22718)\n * DashboardSave: Autofocus save dashboard form input\n (#22748)\n * @grafana/e2e: cherry picked\n 4fecf5a7a65f5b7b4c03fefb9a3da15cee938f02 (#22739)\n * CircleCI: Implement new release pipeline (#22625)\n * Toolkit: use fs-extra instead of fs (#22723)\n * What's new docs for 6.7 release (#22721)\n * Backend Plugins: use sdk v0.26.0 (#22725)\n * PanelInspector: Add Stats Tab (#22683)\n * Revert 'Graph: Improve point rendering performance\n (#22610)' (#22716)\n * Docs: add rendering configuration in reporting (#22715)\n * reverting the changes that failed the e2e tests. (#22714)\n * Remove multiple occurrences of 'before' (#22710)\n * Datasources: Update dashboards (#22476)\n * API: Fix redirect issues (#22285)\n * Explore: adds QueryRowErrors component, moves error\n display to QueryRow (#22438)\n * RichHistory: Design Tweaks (#22703)\n * Modals: Unify angular/react modals backdrop color (#22708)\n * Graphite: Don't issue empty 'select metric' queries\n (#22699)\n * support duplicate field names in arrow format (#22705)\n * UX: Update new form styles to dark inputs (#22701)\n * Docs: Grammar corrections\n * Docs: Overcoming Grammatical errors (#22707)\n * Pass dashboard via angular directive (#22696)\n * Docs: Replace 'API' by 'Integration' key for PagerDuty\n (#22639)\n * Docs: Edited Enterprise docs (#22602)\n * CloudWatch: Expand alias variables when query yields no\n result (#22695)\n * Dependency: sdk's dataframe package renamed to data\n (#22700)\n * @grafana/e2e: include Cypress tsconfig in published\n package (#22698)\n * Graphite: Update config editor (#22553)\n * @grafana/e2e: fix runtime ts-loader errors with Cypress\n support files (#22688)\n * Docs: Add version note about Azure AD OAuth2 (#22692)\n * StatPanel: Return base color when there is no value set\n (#22690)\n * Send jsondata for Datasources on DatasourceConfig for\n backend plugins (#22681)\n * Explore: Rich History (#22570)\n * XSS: Fixed history XSS issue (#22680)\n * Fix caching problem (#22473)\n * on update for checkbox and switch (#22656)\n * Notification Channel: Make test button wider (#22653)\n * Backend plugins: Updates due to changes in SDK (#22649)\n * Make sure commit hook in FieldPropertiesEditor is\n invalidated when value changes (#22673)\n * Docs: Plugin.json: Fix property descriptions, add missing\n properties, add example (#22281)\n * Alerting: Fixed bad background color for default\n notifications in alert tab (#22660)\n * Webpack: Updated terser plugin (#22669)\n * Core: DashboardPicker improvements (#22619)\n * Storybook: Forms.Form docs (#22654)\n * Templating: Migrates some variable types from Angular to\n React/Redux (#22434)\n * Grafana UI: Fix Forms.Select onChangeWithEmpty (#22647)\n * Azure Monitor: Fix app insights source to allow for new\n __timeFrom and __timeTo (#21879)\n * @grafana/e2e: install necessary dependencies for published\n package (#22657)\n * DashboardSave: Correctly overwrite dashboard when saving\n (#22650)\n * StatPanel: Fixes base color is being used for null values\n (#22646)\n * FieldOverrides: Add value mappings editor to standard\n config properties registry (#22648)\n * Docs: Update gauge.md (#22637)\n * Docs: Create Intro grafana (#22522)\n * Toolkit: wrap plugin signing stub with error checking\n (#22626)\n * @grafana/e2e: fix empty bundle files (#22607)\n * Toolkit: include a github release utility (#22520)\n * Rendering: Have phantomjs wait a bit before rendering to\n give fonts a change to load (#22623)\n * Cascader: Do not override default width behavior (#22620)\n * Update documentation-style-guide.md (#22581)\n * Adds signed in user to backend v2 plugins requests\n (#22584)\n * CloudWatch: updated namespaces - Athena, DocDB, and\n Route53Resolver (#22604)\n * Graph: Improve point rendering performance (#22610)\n * Alerting: Fix state age test failures (#22606)\n * Docs: Update image_rendering.md (#22586)\n * UI: Segment improvements (#22601)\n * remove section about alias imports (#22585)\n * Backend Plugins: Support handling of streaming resource\n response (#22580)\n * Stackdriver: Migrate GCE default project (#22593)\n * Toolkit: plugin ci needs to cooperate better with\n make/mage (#22588)\n * surround CloudWatch dimension names with double quotes\n (#22222)\n * Fix: when reloading page make sure that time picker\n history is converted to dateTime.\n * Core: add active users stat (#22563)\n * Chore: Modules tidy and vendor (#22578)\n * Loki: use series API for stream facetting (#21332)\n * Testing code owners for backend code (#22572)\n * Azure Monitor: config editor updates, update sameas\n switch, fix test snaps (#22554)\n * Grafana-UI: Use value for Radio group id (#22568)\n * Chore: fix moment import in alerting tests (#22567)\n * avoid aliased import in cli (#22566)\n * Chore: Avoid aliasing importing models in api package\n (#22492)\n * ShareModal: able to extend tabs (#22537)\n * Tests: fix alerting reducers tests (#22560)\n * Logs: Improve log level guess (#22094)\n * DataSourceWithBackend: apply template variables (#22558)\n * @grafana/e2e: added support for plugin repositories\n (#22546)\n * Add fallback to search_base_dns if group_search_base_dns\n is undefined. (#21263)\n * Docs: Added a Markdown Style Guide (#22425)\n * Old AsyncSelect: Add story (#22536)\n * Chore: add missing aria-label for rendered panel image\n (e2e tests) (#22543)\n * Form migrations: Dashboard- and TimeZonePicker (#22459)\n * Migration: Share dashboard/panel modal (#22436)\n * Revert 'Select: scroll into view when navigate with\n up/down arrows (#22503)' (#22535)\n * Backend plugins: Prepare and clean request headers before\n resource calls (#22321)\n * Cascader: Add size for input (#22517)\n * ArrowDataFrame: allow empty results (#22524)\n * Migration: Save dashboard modals (#22395)\n * Toolkit: don't clean dist folder before build (#22521)\n * Docs: Add Storybook guidelines (#22465)\n * Docs: Removed menu links to SDK Reference until we are\n ready for 7.0 (#22509)\n * Stackdriver: Project selector (#22447)\n * Select: scroll into view when navigate with up/down arrows\n (#22503)\n * Elastic: To get fields, start with today's index and go\n backwards (#22318)\n * API: Include IP address when logging request error\n (#21596)\n * chore: avoid aliasing imports in services (#22499)\n * Grafana-UI: add storysource addon to Storybook (#22490)\n * canary 404 previous versions (#22495)\n * Fix Dockerfile lint errors (#22496)\n * Migration: Invite Signup (#22437)\n * Core: add hideFromMenu for child items (#22494)\n * Dashboard: Adds support for a global minimum dashboard\n refresh interval (#19416)\n * CI: Deploy enterprise image (#22488)\n * changelog: adds note about breaking change (#22480)\n * chore: avoid alias for models in plugins (#22483)\n * chore: avoid aliasing models in middleware (#22484)\n * Grafana UI: Add missing argument (#22487)\n * NewPanelEditor: Angular panel options, and angular\n component state to redux major change (#22448)\n * @grafana/ui: Create slider component (#22275)\n * Icons: add reports icon (#22445)\n * Panel inspect: Horizontal scrolling in Data table (#22245)\n * Alerting: Fixed the issue/bug of diff and percent_diff\n functions *Breaking change* (#21338)\n * App Plugins: support react pages in nav (#22428)\n * Optimized package.json files (#22475)\n * Toolkit: add junit reporting and jest.config.js to plugin\n build (#22450)\n * Grafana UI: Add forwardRef (#22466)\n * Docs: Update Getting started (#22422)\n * pkg/api/pluginproxy: Access token provider should handle\n access tokens without ExpiresOn field (#19928)\n * Documentation: Specify usage of datasource whitelist\n (#22412)\n * Form: Allow default values updates (#22435)\n * NewPanelEditor: Wait a bit before resending query result\n on panel editor exit (#22421)\n * Grafana-UI: update date picker (#22414)\n * grafana-cli: Upgrade to urfave/cli v2 (#22402)\n * Docs: adding first version of the auto-generated packages\n API docs. (#22107)\n * NewPanelEditor: Panel edit tweaks (#22415)\n * Core: Make application title customizable for WL (#22401)\n * Fix: making select to return empty list when no values are\n selected in multivalue mode.\n * Fix: Added missing 'remove'-icon for light theme.\n * Docs: adding API reference documentation support for the\n packages libraries. (#21931)\n * Accessibility: Makes tag colors more accessible (#22398)\n * Admin: fix images on license page (#22413)\n * DataSourceWithBackend: Add a get/post resource standard\n path (#22408)\n * Docs: Fix examples, grammar, add links (#22406)\n * Docs: Add links, fix grammar, formatting, wording (#22381)\n * Changelog: adds missing enterprise features (#22399)\n * Docs: Add info on active LDAP sync (#22347)\n * Docs: Fixed formatting issue in new stat docs (#22390)\n * @grafana/toolkit: completed support for source maps in\n plugin builds (#22379)\n * UX: BackButton left arrow icon (#22369)\n * Scrollbar: Show scrollbar on only on hover (#22386)\n * NewPanelEditor: Fixed cleanup that could cause crash\n (#22384)\n * Theme: Fixed bug in sass file (#22382)\n * Alerting: Don't include image_url field with Slack message\n if empty (#22372)\n * Docs: New doc pages for panels Stat, Gauge & Bar Gauge\n (#22335)\n * Docs: Update front-end style guide (#22197)\n * Chore: Update latest.json (#22345)\n * CircleCI: Fix publishing of releases (#22342)\n * Changelog: v6.6.2 (#22341)\n * CircleCI: Switch to new master build pipeline (#22158)\n * Docs: Update white-labeling.md (#22224)\n * Webpack: Upgrade terser webpack plugin (#22332)\n * grafana/ui: Export TextArea under Forms namespace (#22328)\n * Suggesting couple of changes to the document (#22298)\n * Correcting Line 22 (#22292)\n * Docs: Fix 'enable' steps formatting (#22324)\n * [Docs] Improvised instructions for adding data source.\n (#22305)\n * DashLinks: Add pull right to dropdown menu (#22233)\n * Migration: User invite (#22263)\n * Select: Fix focus issue and remove select container\n (#22309)\n * Annotations: Call panel refresh when table transform\n changes to annotations (#22323)\n * Docs: Couple of changes to the document (#22291)\n * Docs: Typo correction in Line 19 (#22297)\n * Rendering: Store render key in remote cache (#22031)\n * Backend Plugins: Provide proper plugin config to plugins\n (#21985)\n * New panel edit: data links tweaks (#22304)\n * Metrics: Add gauge for requests currently in flight\n (#22168)\n * OAuth: Enforce auto_assign_org_id setting when role\n mapping enabled using Generic OAuth (#22268)\n * CircleCI: Upgrade Ubuntu base image to 19.10 also for\n enterprise (#22315)\n * CI: check ubuntu and alpine images with trivy (#22314)\n * Docker: Upgrade Ubuntu to 19.10 (#22306)\n * grafana/data: runtime dependencies moved from\n devDependencies (#22283)\n * PanelInspector: Fixed issue in panel inspector (#22302)\n * grafana/ui: Add basic horizontal and vertical layout\n components (#22303)\n * Field Config Editors: Remove namespacing from standard\n field config editors (#22296)\n * CircleCI: Increase nodejs max memory (#22295)\n * Update rpm.md (#22284)\n * FieldConfigs: String select type & cell display mode added\n to table panel (#22274)\n * LinkSrv: Add newlines so I can read code\n * Docs: Fix TestData docs (#22279)\n * API: Improve recovery middleware when response already\n been written (#22256)\n * Update mac.md (#22280)\n * @grafana/toolkit: lint fix option now writes changes to\n disk (#22278)\n * Docs: minor fixes (#22223)\n * Reorder cipher suites for better security (#22101)\n * Docs: Minor typo fix (#22221)\n * NewPanelEdit: Add back datalinks and new table panel fix\n (#22267)\n * Prometheus: Implement region annotation (#22225)\n * Table: Fixed header alignment (#22236)\n * Data proxy: Log proxy errors using Grafana logger (#22174)\n * TimePicker: fixing weird behavior with calendar when\n switching between months/years (#22253)\n * Update timeseries.md (#20795)\n * Auth: Don't rotate auth token when requests are cancelled\n by client (#22106)\n * Elastic: Map level field based on config. (#22182)\n * Sqlstore: guard against getting a dashboard without\n specifying identi… (#22246)\n * Migrations: Signup page (#21514)\n * Storybook: Add color theme and theme switcher (#22005)\n * NewPanelEditor: Making angular panels reuse data and\n render on edit mode enter (#22229)\n * PanelEdit: Title tweaks (#22237)\n * NewPanelEdit: Minor changes (#22239)\n * Chore: Fixed strict null errors (#22238)\n * NewPanelEditor: Thresholds v2 (#22232)\n * Toolkit: support sass style for plugins (#22235)\n * add CloudWatch Usage Metrics (#22179)\n * FieldOverrides: Fix issue with same series name for every\n display value (#22234)\n * Inspector: find the datasource from the refId, not the\n metadata (#22231)\n * New panel editor: Persist panel editor ui state (#22210)\n * Toolkit: don't create declaration files for plugins (by\n default) (#22228)\n * Docs: Update windows.md (#22185)\n * Docs: Add linking topic (#21986)\n * Docs: Refactored Enterprise side menu (#22189)\n * CircleCI: Push master Docker images without revision in\n tag (#22218)\n * Alerting: Update the types of recipient supported by the\n Slack notifier (#22205)\n * docs: change URL occurences to uppercase (#22151)\n * Docs: Fix link for provisioning data sources (#22159)\n * DevEnv: update frontend dependencies - tests (#22140)\n * DevEnv: update frontend dependencies - type definitions\n (#22141)\n * Make Explore panel link work when grafana served from sub\n url (#22202)\n * DevEnv: update frontend dependencies - node (#22139)\n * API: Fix redirect issue when configured to use a subpath\n (#21652)\n * Inspect: Inspect header design update (#22120)\n * FieldOverrides: FieldOverrides UI (#22187)\n * Azure OAuth: enable teamsync (#22160)\n * Docs: Organize basic concepts and getting started (#21859)\n * FieldOverides: apply field overrides based on\n configuration (#22047)\n * Docs: Suggesting few changes to the doc (#22115)\n * Docs: Update phrasing line 35 (#22152)\n * Docs: Correcting Typo in Line131 (#22155)\n * Dashboard: fixed padding inconsistency\n * BackendSrv: Fixes a stupid mistake with a missing return\n (#22177)\n * PanelEdit: Fixed timing and state related issues (#22131)\n * Elastic: Replace range as number not string (#22173)\n * change sync target branch to master (#21930)\n * e2e: Fixed issue with aria label (#22166)\n * Fix: Do not remove whitespace in PanelLink url (#22087)\n * React Migration: Migrates FolderPicker from angular to\n react (#21088)\n * Auth: Azure AD OAuth (#20030)\n * DevEnv: update frontend dependencies - grunt (#22136)\n * Bugfix: updates cloudwatch query editor test async render\n to prevent it from throwing error (#22150)\n * NewPanelEdit: Design tweaks (#22156)\n * TestData: Update streaming.json (#22132)\n * DevEnv: update frontend dependencies - babel (#22135)\n * Docs: Fix port config list formatting (#22113)\n * Explore: Refactor active buttons css (#22124)\n * Forms/Switch: Simplifies and adjusts CSS/Markup (#22129)\n * Datasource/Loki: Fixes issue where live tailing displayed\n date as invalid (#22128)\n * NewPanelEditor: Fixed issue going back to dashboard after\n pull page reload (#22121)\n * Loki, Prometheus: Fix PromQL and LogQL syntax highlighting\n (#21944)\n * NewPanelEdit: Added visualization tab / selection view\n (#22117)\n * Increase ts fork check mem limit (#22118)\n * NewPanelEditor: Panel editor tabs in state (url) (#22102)\n * Delete report.20200209.125304.14262.0.001.json\n * Annotation & Alerts: Makes various annotation and alert\n requests cancelable (#22055)\n * Select zindex (#22109)\n * Docs: Add doc templates (#21927)\n * Fix mentioning Slack users/groups (#21734)\n * Docs: Update rules.md (#21989)\n * Docs: Update metrics.md (#21988)\n * Docs: Update dashboard.md (#21951)\n * Docs: Added release notes tag (#22012)\n * Forms/RadioButtonGroup: Improves semantics and simplifies\n CSS (#22093)\n * Docs: add LDAP active sync limitation for single bind\n configuration (#22098)\n * Docs: Update behind_proxy.md to include HTTPS and URL\n rewrite example (#21832)\n * DataLinks: Avoid null exception in new edit mode (#22100)\n * Docs: Image rendering improvements (#22084)\n * Fix display of multiline logs in log panel and explore\n (#22057)\n * Fix/add width to toggle button group (#21924)\n * NewPanelEditor: Introduce redux state and reducer\n (#22070)\n * Prometheus: make $__range more precise (#21722)\n * New panel edit: data links edit (#22077)\n * Docs: fix minor typos in datasources.md (#22092)\n * Toolkit: add a warning about tslint migration (#22089)\n * Read `target` prop from the links in the footer (#22074)\n * CircleCI: Publish enterprise Docker dev image for new\n master pipeline (#22091)\n * CircleCI: Include build ID in version for new master\n pipeline (#22013)\n * Alerting: Handle NaN in reducers (#22053)\n * Toolkit: create manifest files for plugins (#22056)\n * Backend Plugins: make transform work again (#22078)\n * Docs: Fix broken link (#22010)\n * Docs: Fix formatting typo (#22067)\n * CircleCI: Publish enterprise ARM variants from master\n pipeline (#22011)\n * Chore: Adds cancellation to backendSrv request function\n (#22066)\n * Dashboard: Move some plugin & panel state to redux\n (#22052)\n * Docs: Clarify that extraction of zip is required to\n install plugin (#22061)\n * Chore: Fixes non utc tests (#22063)\n * Grafana ui/time of day picker ui improvements (#21950)\n * Links: Assure base url when single stat, panel and data\n links are built (#21956)\n * BackendSrv: Returns correct error when a request is\n cancelled (#21992)\n * Make zoom and time shift work after emmitter change\n (#22051)\n * New Editor: refresh when time values change (#22049)\n * New Editor: Add ValuePicker for overrides selection\n (#22048)\n * Collapse: add a controlled collapse (#22046)\n * Cascader: Fix issue where the dropdown wouldn't show\n (#22045)\n * New Editor: add display modes to fix ratio with actual\n display (#22032)\n * Chore: Use forwardRef in ButtonSelect (#22042)\n * DashNavTimeControls: remove $injector and rootScope from\n time picker (#22041)\n * New panel edit: field overrides ui (#22036)\n * Select: Portaling for Select (#22040)\n * New Select: Fix the overflow issue and menu positioning\n (#22039)\n * Upgrade: React layout grid upgrade (#22038)\n * PanelChrome: Use react Panel Header for angular panels.\n (#21265)\n * New Editor: add a tabs row for the query section (#22037)\n * New Editor: use unit picker (#22033)\n * Dashboard: Refactor dashboard reducer & actions (#22021)\n * New panel editor: Add title editor (#22030)\n * UnitPicker: Use the new Cascader implementation (#22029)\n * FieldEditor: extendable FieldConfig UI (#21882)\n * Cascader: Add enable custom value (#21812)\n * New panel edit: support scrolling (#22026)\n * Thresholds: get theme from context automatically (#22025)\n * New Panel Edit: works for panels with and without queries\n (#22024)\n * PanelEditor: use splitpane for new editor (#22022)\n * Select: Fixed allow custom value in\n Select/UnitPicker/Segment/AsyncSegment (#22018)\n * Chore: export arrow dataframe utilities (#22016)\n * TSLint → ESLint (#21006)\n * Docker: Publish enterprise image with master-commit tag\n (#22008)\n * Chore: Resolve random failure with golangci-lint (#21970)\n * New panel edit: don't query when entering edit mode\n (#21921)\n * Fix bad grammar in Dashboard Link page (#21984)\n * Update documentation-style-guide.md (#21736)\n * Prometheus: Allow sub-second step in the prometheus\n datasource (#21861)\n * Update latest.json versions to 6.6.1 (#21972)\n * Change log for 6.6.1 (#21969)\n * Datasource: updates PromExploreQueryEditor to prevent it\n from throwing error on edit (#21605)\n * Explore: Adds Loki explore query editor (#21497)\n * @grafana/ui: Fix displaying of bars in React Graph\n (#21968)\n * Prometheus: Do not show rate hint when increase function\n is applied (#21955)\n * Elastic: Limit the number of datapoints for the counts\n query (#21937)\n * Storybook: Update categories (#21898)\n * Quota: Makes sure we provide the request context to the\n quota service (#21949)\n * Docs: Documentation for 6.6 Explore and Logs panel\n features (#21754)\n * Annotations: Change indices and rewrites annotation find\n query to improve database query performance (#21915)\n * Prometheus: Fixes default step value for annotation query\n (#21934)\n * Dashboard edit: Fix 404 when making dashboard editable\n * Publish from new master pipeline (#21813)\n * Metrics: Adds back missing summary quantiles (#21858)\n * delete redundant alias (#21907)\n * grafana/ui: Fix displaying of bars in React Graph (#21922)\n * Docs: Added developer-resources.md (#21806)\n * Fix formatting (#21894)\n * New Select: Blur input on select (#21876)\n * Fix/add default props to prom query editor (#21908)\n * Graph Panel: Fixed typo in thresholds form (#21903)\n * Disable logging in button (#21900)\n * DatasourceEditor: Add UI to edit custom HTTP headers\n (#17846)\n * Datasource: Show access (Browser/Server) select on the\n Prometheus datasource (#21833)\n * Docs: Update dashboard.md (#21896)\n * Docs: Update dashboard.md (#21200)\n * Docs: Make upgrading instructions for Docker work (#21836)\n * deps so can mock in tests (#21827)\n * Templating: Add new global built-in variables (#21790)\n * Fix: Reimplement HideFromTabs in Tabs component (#21863)\n * grafana/data: Remove unused PanelSize interface (#21877)\n * New Select: Extend creatable select api (#21869)\n * Backend plugins: Implement support for resources (#21805)\n * Docker: change plugin path in custom docker (#21837)\n * Image Rendering: Fix render of graph panel legend aligned\n to the right using Grafana image renderer plugin/service\n (#21854)\n * Docs: Update _index.md (#21700)\n * grafana/toolkit: Fix failing linter when there were lint\n issues (#21849)\n * DatasourceSettings: Fixed issue navigating away from data\n source settings page (#21841)\n * AppPageCtrl: Fix digest issue with app page initialisation\n (#21847)\n * Explore: adds basic tests to TableContainer checking the\n render and output on 0 series returned\n * Explore: adds MetaInfoText tests\n * Explore: adds export of MetaItem and its props\n * Explore: updates TableContainer to use MetaInfoText\n component\n * Explore: updates Logs component to use MetaInfoText\n component\n * Explore: adds MetaInfoText component\n * Explore: removes unnecessary styles for panel logs\n * Explore: updates Table container render to avoid rendering\n table on empty result\n * Explore: updates explore table container to show a span on\n 0 series returned\n * docs/cli: Fix documentation of reset-admin-password with\n --homepath (#21840)\n * Replace ts-loader with Babel (#21587)\n * Docs: Add information about license expiration (#21578)\n * Fix digest issue with query part editor's actions menu\n (#21834)\n * Graphite: Fixed issue with functions with multiple\n required params and no defaults caused params that could\n not be edited (groupByNodes groupByTags) (#21814)\n * TimePicker: Should display in kiosk mode (#21816)\n * Chore: Upgrade Storybook to 5.3.9 (#21550)\n * Table: Make the height of the table include header cells\n (#21824)\n * StatPanels: Fixed migration from old singlestat and\n default min & max being copied even when gauge was disbled\n (#21820)\n * Docs: Update docker image run and configuration\n instructions (#21705)\n * DataFrame: update golden test files (#21808)\n * Docs: Alphabetize datasource names in sidebar under\n docs/Features/DataSources (#21740)\n * Inspect: Add error tab (#21565)\n * Select: Fix direct usages of react-select to make the\n scroll great again (#21822)\n * TablePanel: display multi-line text (#20210)\n * Fixed strict errors (#21823)\n * Fix: prevents the BarGauge from exploding when the\n datasource returns empty result. (#21791)\n * Select: Fix scroll issue (#21795)\n * Fix: Fixes user logout for datasourceRequests with 401\n from datasource (#21800)\n * Azure Monitor: Fix Application Insights API key field to\n allow input (#21738)\n * Influxdb: Fix cascader when doing log query in explore\n (#21787)\n * Devenv: OpenTSDB dashboard (#21797)\n * MSI: License for Enterprise (#21794)\n * OpenTSDB: Add back missing ngInject (#21796)\n * Heatmap: Legend color range is incorrect when using custom\n min/max (#21748)\n * Config: add meta feature toggle (#21786)\n * Logs panel: Rename labels to unique labels (#21783)\n * Add link guide for installing new renderer (#21702)\n * Chore: Lowers strict error limit (#21781)\n * Chore: Removes Cypress record (#21782)\n * Docs: Document configuration of console, file and syslog\n log formats (#21768)\n * Annotations: Fixes this.templateSrv.replace is not a\n function error for Grafana datasource (#21778)\n * Fix typos in the communication documentation (#21774)\n * Chore: Fixes various strict null errors (#21763)\n * Forms: Allow custom value creation in async select\n (#21759)\n * Chore: bump react-select to 3.0.8 (#21638)\n * grafana/data: Add type for secure json in DataSourceAPI\n (#21772)\n * Influxdb: Fix issues with request creation and parsing\n (#21743)\n * Explore/Loki: Fix handling of legacy log row context\n request (#21767)\n * 6.6.0 latest (#21762)\n * Docs: Updates Changelog for 6.6.0 (#21753)\n * Docs: Update image rendering (#21650)\n * Docs: misc. nitpicks to the HTTP API docs (#21758)\n * Dashboard: fixes issue with UI not being re-rendered after\n moving dashboard\n * Dashboard: fixed issues with re-rendering of UI when\n importing dashboard (#21723)\n * Build: Added devenv docker block for testing grafana with\n traefik.\n * Update What's new in 6.6 (#21745)\n * Footer: Display Grafana edition (#21717)\n * BackendSrv: Fixes POST body for form data (#21714)\n * Docs: Update CloudWatch and Stackdriver docs for 6.6\n (#21679)\n * BackendSrv: Adds missing props back to response object in\n datasourceRequest (#21727)\n * Explore: Fix context view in logs, where some rows may\n have been filtered out. (#21729)\n * Toolkit: add canvas-mock to test setup (#21739)\n * TablePabel: Sanitize column link (#21735)\n * Docs: Fix getting started links on Windows installation\n page (#21724)\n * Docs: Enterprise 6.6 (#21666)\n * Template vars: Add error message for failed query var\n (#21731)\n * Loki: Refactor editor and syntax hooks (#21687)\n * Devenv: Fixed devenv dashboard template var datasource\n (#21715)\n * Footer: added back missing footer to login page (#21720)\n * Admin: Viewer should not see link to teams in side menu\n (#21716)\n * Annotations: Fix issue with annotation queries editors\n (#21712)\n * grafana/ui: Remove path import from grafana-data (#21707)\n * Loki: Fix Loki with repeated panels and interpolation for\n Explore (#21685)\n * CircleCI: Add workflow for building with Grafana Build\n Pipeline (#21449)\n * StatPanels: Fixed possible migration issue (#21681)\n * Make importDataSourcePlugin cancelable (#21430)\n * Docs: Update what's new in 6.6 (#21699)\n * Docs: Fix broken link in upgrade notes (#21698)\n * Alerting: Support passing tags to Pagerduty and allow\n notification on specific event categories (#21335)\n * PhantomJS: Fix rendering of panels using Prometheus\n datasource\n * backendSrv: Only stringifies request body if payload isn't\n already a string (#21639)\n * Update changelog generation to ignore not merged pull\n requests (#21641)\n * StatPanel: minor height tweak (#21663)\n * Circle: Introduce es-check to branches & pr workflow\n (#21677)\n * Run query when region, namespace and metric changes\n (#21633)\n * Explore: Fixes some LogDetailsRow markup (#21671)\n * SQLStore: Fix PostgreSQL failure to create organisation\n for first time (#21648)\n * Migrations: migrate admin user create page (#21506)\n * Docs: Whats new updates (#21664)\n * CloudWatch: Auto period snap to next higher period\n (#21659)\n * Login: Better auto sizing of login logo (#21645)\n * Chore: Fixes PhantomJs by adding polyfills for fetch and\n AbortController (#21655)\n * Alert: Minor tweak to work with license warnings (#21654)\n * Toolkit: copyIfNonExistent order swapped (#21653)\n * Doc: Update configuration.md (#21602)\n * Explore: Fix log level color and add tests (#21646)\n * Templating: A way to support object syntax for global vars\n (#21634)\n * CloudWatch: Add DynamoDB Accelerator (DAX) metrics &\n dimensions (#21644)\n * next version 6.7.0 (#21617)\n * latest.jso: Update latest beta 6.6.0-beta1 (#21623)\n * Docs: Update changelog with attribution (#21637)\n * Docs: Updated what's new article (#21624)\n * Plugins: Apply adhoc filter in Elasticsearch logs query\n (#21346)\n * Changelog: v6.6.0-beta1 (#21619)\n * Chore: Remove angular dependency from backendSrv (#20999)\n * Emotion: Add main package with version 10 (#21560)\n * TestData: allow negative values for random_walk parameters\n (#21627)\n * Update musl checksums (#21621)\n * CloudWatch: Expand dimension value in alias correctly\n (#21626)\n * Devenv: InfluxDB logs dashboard (#21620)\n * Build: adds missing filters required to build oss msi\n (#21618)\n * BigValue: Updated test dashboard and made some chart\n sizing tweaks (#21616)\n * TestData: Adds important new features to the random walk\n scenario (#21613)\n * graphite: does not modify last segment when... (#21588)\n * grafana/ui: Add synced timepickers styling to TimePicker\n (#21598)\n * Explore: Remove destructuring of empty state in\n LogRowMessage (#21579)\n * Build: enables deployment of enterprise msi (#21607)\n * CI: MSI for Enterprise (#21569)\n * E2E docs: Add guide to debuging PhantomJS (#21606)\n * Toolkit: fix prettier error reporting (#21599)\n * Render: Use https as protocol when rendering if HTTP2\n enabled (#21600)\n * Typescript: null check fixes, and news panel fix (#21595)\n * Inspect: table take full height in drawer (#21580)\n * OAuth: Fix role mapping from id token (#20300)\n * ButtonCascader: Fix error in Explore (#21585)\n * CloudWatch: Fix ordering of map to resolve flaky test take\n 2 (#21577)\n * Redux: Fixed function adding a new reducer (#21575)\n * Minor style changes on upgrade page (#21566)\n * Revert 'Babel: use babel-loader instead of ts-loader,\n ng-annotate with babel-plugin-angularjs-annotate (#21554)'\n (#21570)\n * Explore: Context tooltip to copy labels and values from\n graph (#21405)\n * Config: Use license info instead of build info for feature\n toggling (#21558)\n * Fix merge problem (#21574)\n * CloudWatch: Fix ordering of map to resolve flaky test\n (#21572)\n * Docs: What's new in Grafana v6.6 Draft (#21562)\n * Explore: Create unique ids and deduplicate Loki logs\n (#21493)\n * Chore: Fix go vet problem (#21568)\n * Provisioning: Start provision dashboards after Grafana\n server have started (#21564)\n * CloudWatch: Calculate period based on time range (#21471)\n * Inspect: Download DataFrame to Csv (#21549)\n * CloudWatch: Multi-valued template variable dimension alias\n fix (#21541)\n * Babel: use babel-loader instead of ts-loader, ng-annotate\n with babel-plugin-angularjs-annotate (#21554)\n * Stackdriver: Support meta labels (#21373)\n * CI: Revert msi build (#21561)\n * Alerting: Fix image rendering and uploading timeout\n preventing to send alert notifications (#21536)\n * CI: adds missing files for ee msi (#21559)\n * CI: Enterprise MSI (#21518)\n * Add component: Cascader (#21410)\n * CloudWatch: Display partial result in graph when max\n DP/call limit is reached (#21533)\n * Dashboards: Default Home Dashboard Update (#21534)\n * Docs: Update rpm.md (#21547)\n * Docs: Update mac.md (#20782)\n * Templating: update variables on location changed (#21480)\n * Vendor: grafana-plugin-sdk-go v0.11.0 (#21552)\n * fix dateMath import in grafana-ui (#21546)\n * Explore/Loki: Filter expression only treated as regex when\n regex operator is used (#21538)\n * Fix TypeScript error (#21545)\n * Build: Ignore content of /pkg/extensions, not directory\n (#21540)\n * Update latest to 6.5.3 (#21509)\n * Explore: Ensures queries aren't updated when returning to\n dashboard if browser back is used (#20897)\n * Inspect: Use AutoSizer for managing width for content in\n tabs. (#21511)\n * Changelog generation: Generate grafana/ui changelog\n (#21531)\n * Toolkit: support less loader (#21527)\n * AppPlugin: remove simple app from the core repo (#21526)\n * @grafana/toolkit: cleanup (#21441)\n * DataFrames: add arrow test and capture metadata parsing\n errors (#21524)\n * DataLinks: allow using values from other fields in the\n same row (#21478)\n * grafana/data: Update plugin config page typings (BREAKING)\n (#21503)\n * Fix regex in convertCSSToStyle, add test coverage (#21508)\n * CloudWatch: Annotation Editor rewrite (#20765)\n * Admin: Add promotional page for Grafana Enterprise\n (#21422)\n * Add changelog for 6.5.3\n * Backend Plugins: Collect and expose metrics and plugin\n process health check (#21481)\n * Auth: Rotate auth tokens at the end of requests (#21347)\n * Tabs: Hide Tabs on Page header on small screens (#21489)\n * Fix importing plugin dashboards (#21501)\n * SideMenu: Fixes issue with logout link opened in new tab\n (#21488)\n * DataLinks: Make data links input grow again (#21499)\n * Templating: use default datasource when missing (#21495)\n * Explore: Fix timepicker when browsing back after switching\n datasource (#21454)\n * Add disabled option for cookie samesite attribute (#21472)\n * Chore: Adds basic alerting notification service tests\n (#21467)\n * ImportDashboardCommand: Validate JSON fields (#21350)\n * Docs: add test for website build (#21364)\n * Fix: when clicking a plot on a touch device we won't\n display the annotation menu (#21479)\n * Backend Plugins: add a common implementation (#21408)\n * Alerting: new min_interval_seconds options to enforce a\n minimum eval frequency (#21188)\n * Panel: Use Tabs in panel inspector (#21468)\n * Docs: Update rpm install (#21475)\n * Alerting: Enable setting of OpsGenie priority via a tag\n (#21298)\n * Alerting: fallbackText added to Google Chat notifier\n (#21464)\n * Plugins: Move backend plugin manager to service (#21474)\n * Backend Plugins: Refactor backend plugin registration and\n start (#21452)\n * Admin: New Admin User page (#20498)\n * Docs: Update cli.md (#21470)\n * Fix: Tab icons not showing (#21465)\n * Chore: Add react-table typings to Table (#21418)\n * Login: Refactoring how login background is rendered\n (#21446)\n * StatPanel: Refactoring & fixes (#21437)\n * Chore: Migrates reducers and actions to Redux Toolkit\n (#21287)\n * DeleteButton: Button with icon only was not centered\n correctly. (#21432)\n * Logos: Refactoring a bit how logos are rendered (#21421)\n * Docs: Update documentation-style-guide.md (#21322)\n * More datasource funcs poc (#21047)\n * Docs: Update plugin installation and CLI (#21179)\n * Docs: Update debian.md (#21339)\n * Alerting: Adds support for sending a single email to all\n recipients in notification channel (#21091)\n * ThreemaNotifier: Use fully qualified status emoji (#21305)\n * Settings: Env override support for dynamic settings\n (#21439)\n * Security: refactor 'redirect_to' cookie to use 'Secure'\n flag (#19787)\n * Logs: Fix parsing for logfmt fields that have parens\n (#21407)\n * Improve documentation for the Prometheus data source\n (#21415)\n * Heatmap: fix formatting (#21433)\n * Docs: Fixed broken links of Datasource doc at Grafana\n plugin page (#21363)\n * ApiUser: Fix response when enabling, disabling or deleting\n a nonexistent user (#21391)\n * grafana/ui: Create Tabs component (#21328)\n * Inspector: support custom metadata display (#20854)\n * Table: Added text align option to column styles (#21175)\n * PluginPage: Add appSubUrl string to config pages url\n (#21414)\n * Docs: Remove comment about upcoming alerting for\n singlestat and table panels (#21416)\n * Footer: Single footer component for both react & angular\n pages (#21389)\n * API: Added alert state validation before changing its\n state (#21375)\n * AddDataSource: Added missing phantom plugin (#21406)\n * Plugins: Use grafana-plugin-sdk-go v0.5.0 (#21116)\n * UnitPicker: show custom units on load (#21397)\n * Cloud Watch: Standardize Config Editor Implementation\n (#20489)\n * CloudWatch: dimension_values templating fix (#21401)\n * Docs: explain how to setup the apt repo without helpers\n (#21194)\n * Build: prevent changes to pkg/extentions/main.go from\n throwing error on merge\n * TimeZones: fix utc test (#21393)\n * Build: package all binaries for enterprise (#21381)\n * Datasource: fixes prometheus datasource tests - adds align\n range\n * CircleCI: Testing upgrade to CircleCI 2.1 (#21374)\n * Storybook: Remove reference to jquery.flot.pie file from\n storybook config (#21378)\n * Cloudwatch: Fixed crash when switching from cloudwatch\n data source (#21376)\n * Docs: Added Squadcast notifications (#21372)\n * Chore: upgrade d3 (#21368)\n * Datasource: fix a bug where deleting data source will\n trigger save and test events (#21300)\n * Forms: revamped select (#21092)\n * Toolkit: add git log info to the plugin build report\n (#21344)\n * Docs: Use https scheme for Grafana playground links\n (#21360)\n * fix docs links (#21359)\n * AddDatasourcePage: Refactoring & more Phantom plugins\n (#21261)\n * Chore: Remove empty flot.pie file (#21356)\n * Docs: Fix link (#21358)\n * Docs: Fix InfluxDB templated dashboard link (#21343)\n * Rendering: Fix panel PNG rendering when using sub url &\n serve_from_sub_path = true (#21306)\n * NewsPanel: update default feed url (#21342)\n * docs: fix influxdb templated dashboard link (#21336)\n * Docs: Update Windows.md (#21333)\n * Arrow: don't export arrow... breaking phantomjs e2e test\n (#21331)\n * DataFrame: round trip metadata to arrow Table (#21277)\n * Prometheus: user metrics metadata to inform query hints\n (#21304)\n * Panel: disable edit/duplicate/delete entry for repeat\n panel (#21257)\n * Prometheus: Disable suggestions at beginning of value\n (#21302)\n * grafana/ui: Do not build in strict mode as grafana/ui\n depends on non-strict libs (#21319)\n * Docs: Update security.md (#20981)\n * @grafana/data: use timeZone parameter rather than isUtc\n (#21276)\n * Units: support dynamic count and currency units (#21279)\n * Docs: Added sudo and removed $ where inconsistent.\n (#21314)\n * ImgUploader: add support for non-amazon S3 (#20354)\n * Fix: tooltips value disappear when label has too long word\n (#21267)\n * Docs: Update provisioning.md (#21303)\n * Docs: Update alerting_notification_channels.md (#21245)\n * Loki: fix filter expression suggestions (#21290)\n * Prometheus: Fix label value suggestion (#21294)\n * Prometheus: Fix term completion that contain keywords\n (#21295)\n * Docs: Fixed broken links in Basic Concepts (#21035)\n * Docs: Edited Windows install instructions (#20780)\n * Docs: Update troubleshooting.md (#21244)\n * Fix internal links in http_api/dashboard.md (#21255)\n * Docs: Update README.md (#21274)\n * Docs: Fix aliases/redirects (#21241)\n * Docs: Document tracing.jaeger configuration (#21181)\n * Websockets: upgrade websocket libray to 1.4.1 (#21280)\n * FieldConfig: add thresholds and color modes (#21273)\n * Prometheus: improve tooltips (#21247)\n * Explore: Moves PromContext from query level to\n DataQueryRequest level (#21260)\n * BridgeSrv: do not strip base from `state.location.url`\n (#20161)\n * Graph: another tooltip fix (#21251)\n * Alerting: Add configurable severity support for PagerDuty\n notifier (#19425)\n * Graph: Fixed no value in graph tooltip (#21246)\n * Units: support farenheit (existing misspelling) (#21249)\n * Docs: fix typo (#21190)\n * Promtheus: Fix hint and error display for query rows\n (#21242)\n * Docs: fixed broken doc link for graph and table panels\n (#21238)\n * Docs: fix of broken doc link in the dashlist panel's help\n section (#21230)\n * Docs: Update the link to docs for singlestat (#21225)\n * Docks: Update provisioning.md with proper Slack settings\n (#21227)\n * Editor: Ignore closing brace when it was added by editor\n (#21172)\n * Explore: moves add query row button below query rows\n (#20522)\n * Explore: adds PrometheusExploreQueryEditor (#20195)\n * Simplify adjustInterval (#21226)\n * Sass: Checked in tmpl files\n * Table: Component progress & custom FieldConfig options\n (#21231)\n * Chore: remove StreamHandler and DataStreamState (#21234)\n * DashboardGrid: Fixed flickering while resizing (#21221)\n * docs: rename premium plugins to enterprise plugins\n (#21222)\n * NewsPanel: add news as a builtin panel (#21128)\n * grafana/toolkit: Readme update (#21218)\n * grafana/toolkit: Resolve modules correctly (#21216)\n * New bar gauge style: Unfilled (#21201)\n * Dashboard: new updated time picker (#20931)\n * Metrictank: fix bundled dashboard (#21209)\n * Tooltip: preventing xss injections via the colors\n variable. (#21203)\n * Livetailing: set table withd to 100% (#21213)\n * Docs: Fix broken link in debian.md (#21199)\n * Added back logo file (#21198)\n * Docs: fix ordering of apt setup (#21192)\n * Docs: Fix Azure ad generic OAuth code markdown formatting\n (#21189)\n * docs: rendering plugin required for reporting (#21162)\n * Chore: Fixes wrong e2e path in .gitignore (#21186)\n * e2e: Waits for login before moving forward (#21185)\n * PanelChrome: Mini refactor (#21171)\n * Tracing: Support configuring Jaeger client from\n environment (#21103)\n * @grafana/toolkit: webpack extend TS→JS (#21176)\n * [docs] Azure monitor link in templating (#21173)\n * grafana/toolkit: Add option to override webpack config\n (#20872)\n * Docs: Adds best practices after visit and a link back to\n e2e.md (#21117)\n * Changelog: Add PagerDuty breaking change (#21170)\n * DashboardGrid: Change grid margin to 8, to align to 8px\n grid (#21167)\n * Alerting: Add more information to webhook notifications\n (#20420)\n * Panel: Show inspect panel in Drawer instead of Modal\n (#21148)\n * Prometheus: Fix typehead after binary operators (#21152)\n * docs: always updates docker image before building docs\n site (#21165)\n * Table: Matches column names with unescaped regex\n characters (#21164)\n * DataLinks: Sanitize data/panel link URLs (#21140)\n * Dashboard: Only show resize-handle on hover (#21160)\n * PagerDuty: Fix custom_details to be a JSON object instead\n of a string (#21150)\n * grafana/ui: New table component (#20991)\n * e2e: Migrates query variable CRUD tests to new framework\n (#21146)\n * Chore: Upgrade react, react-dom, react-test-renderer\n versions (#21130)\n * Fix log row when query is short (#21126)\n * Prometheus: Display HELP and TYPE of metrics if available\n (#21124)\n * e2e: Updates truth image (#21132)\n * Cloudwatch ECS Container Insights Support (#21125)\n * FontSize: Change base font size to 14px (#21104)\n * Explore: Refactor log rows (#21066)\n * phantomjs: performance.getEntriesByType not supported\n (#21009)\n * New panel editor (behind feature toggle) (#21097)\n * e2e: Adds ScenarioContext and video recordings to e2e\n (#21110)\n * DashboardImport: Fixes broken import page in prod builds\n (#21101)\n * Dependencies: Bump npm from 6.9.0 to 6.13.4 (#21095)\n * Docs: Fix broken link in loki.md (#21098)\n * Dependencies: Upgrade grunt-contrib-compress to resolve\n issues with iltorb (#21096)\n * Update CODEOWNERS (#21093)\n * E2E: Testing recording e2e tests (#21094)\n * FieldConfig: set min/max automatically for gauge (#21073)\n * Postgres/MySQL/MSSQL: Adds support for region annotations\n (#20752)\n * Azure Monitor: Use default from datasource if not saved on\n dashboard/query (#20899)\n * Azure Monitor: Copy AM Creds to Log Analytics When Using\n Same As (#21032)\n * Docs: Add minimal hugo build, update docs README (#20905)\n * CI: Added junit test report (#21084)\n * UI: ConfirmButton component (#20993)\n * Angular/React: Migrates team creation form to react\n (#21058)\n * Templating: Fixes digest issues in Template Variable\n Editor (#21079)\n * OrgSwitcher: Fixed issue rendering org switcher even when\n it's not open (#21061)\n * Chore: Remove rejected files (#21072)\n * e2e: Uses should on first element after visit to prevent\n flakiness (#21077)\n * FieldConfig: support overrides model (#20986)\n * AngularPanels: fixed transparency issue (#21070)\n * Docs: Update configuration.md for #3349 (#21069)\n * OAuth: Removes send_client_credentials_via_post setting\n (#20044)\n * API: Validate redirect_to cookie has valid (Grafana) url\n (#21057)\n * Explore: Refactor log details table (#21044)\n * Prometheus: Prevents validation of inputs when clicking in\n them without changing the value (#21059)\n * Prometheus: Fixes so user can change HTTP Method in config\n (#21055)\n * MetricSegment: Fix metric segment UI crash in prod builds\n (#21053)\n * OpenTSDB: Adding lookup limit to OpenTSDB datasource\n settings (#20647)\n * Templating: Fixes default visibility for submenu to same\n as dashboard (#21050)\n * Create CODEOWNERS (#21045)\n * Elastic: Add data links in datasource config (#20186)\n * Alerting: Fix panic in dingding notifier (#20378)\n * Logs: Optional logs label column (#21025)\n * Chore: updated to latest stable version (#21033)\n * Docs: change log for release v6.5.2 (#21028)\n * Chore: Improve rendering logging (#21008)\n * Modules: Add patched goavro dependency for extensions\n (#21027)\n * Explore: Sync timepicker and logs after live-tailing stops\n (#20979)\n * Fix: Shows SubMenu when filtering directly from table\n (#21017)\n * Alerting: Fix template variable in query check (#20721)\n * Toolkit: remove unused plugin-ci report types (#21012)\n * MixedDatasources: Do not filter out all mixed data sources\n in add mixed query dropdown (#20990)\n * Docs: Change checkout to check out where necessary\n (#20926)\n * Promtheus: Improve tab completion (#20938)\n * build: adds IANA timezone info to windows build (#21001)\n * Loki: fix labels fetching when no initial range given\n (#21000)\n * Docs: Update datasource API examples (#20951)\n * UI: Segment fixes (#20947)\n * Stackdriver: Make service list searchable (#20989)\n * Remove un-used imports (#20937)\n * upgrade aws-sdk-go (#20957)\n * UI: ConfirmModal component (#20965)\n * Docs: Updates from puppeteer to Cypress (#20962)\n * e2e: Adds better log information during test runs (#20987)\n * Alert: If the permission is forbidden, keep the historical\n alarm data present. (#19007)\n * Graph: Add fill gradient option to series override line\n fill (#20941)\n * use https for fetch gravatar by default (#20964)\n * Prometheus: disable dynamic label lookup on big\n datasources (#20936)\n * Loki: Fix datasource config page test run (#20971)\n * Devenv: Fix loki block (#20967)\n * e2e: Replaces truth image (#20966)\n * Forms: introduce RadioButtonGroup (#20828)\n * Fix: Adds e2e as a package that needs to be built (#20961)\n * Make sure datasource variable is being used everywhere\n (#20917)\n * Refactor: Navigates directly to add data source page\n instead (#20959)\n * Alerting: Improve alert threshold handle dragging behavior\n (#20922)\n * DisplayProcessor: Interpret empty strings as NaN instead\n of 0 to support empty value map texts in Singlestat\n (#20952)\n * Prometheus: Refactor labels caching (#20898)\n * e2e: Uses Cypress instead of Puppeteer (#20753)\n * Renderer: Add user-agent to rendering plugin requests\n (#20956)\n * DataSource: remove delta option (#20949)\n * Elasticsearch: set default port to 9200 in ConfigEditor\n (#20948)\n * Loki: Remove appending of (?i) in Loki query editor if not\n added by user (#20908)\n * Datasource/Loki: Loki now goes to Logs mode when importing\n prom queries (#20890)\n * Cloudwatch: Defined explore query editor for cloudwatch\n (#20909)\n * Datasource/Loki: Empty metric name no longer replaced by\n query (#20924)\n * Revert 'Modules: Add goavro dependency for extensions\n (#20920)' (#20928)\n * Docs: Update debian.md (#20910)\n * UI: Segment Input change (#20925)\n * Modules: Add goavro dependency for extensions (#20920)\n * UI: Segment Input (#20904)\n * Remove escaping of \\ ( ) characters (#20915)\n * AngularPanels: Check for digest cycle on root scope\n (#20919)\n * InfluxDB: Use new datasource update option funcs (#20907)\n * Docs: Update debian-ubuntu installation instructions\n (#20875)\n * Search: Fixed angular digest issues (#20906)\n * Remove false positive error message for expression and id\n field (#20864)\n * fix notifications page (#20903)\n * Update documentation-style-guide.md (#20871)\n * Docs: update content to work with website repo (#20693)\n * Elastic: Fix multiselect variable interpolation for logs\n (#20894)\n * Singlestat: Fixed unit not showing and switched to new\n unit picker (#20892)\n * MetaAnalytics: Minor fix for meta analytics event (#20888)\n * Explore: Cleanup redundant state variables and unused\n actions (#20837)\n * Chore/Tech debt: Remove (most) instances of $q angular\n service use (#20668)\n * AngularPanels: Fixed loading spinner being stuck in some\n rare cases (#20878)\n * TeamPicker: Increase size limit from 10 to 100 (#20882)\n * Echo: mechanism for collecting custom events lazily\n (#20365)\n * StatPanel: change to beta\n * Azure Monitor: Standardize Config Editor Implementation\n (#20455)\n * GraphTooltip: added boundaries so we never render tooltip\n outside window. (#20874)\n * Graphite: Use data frames when procesing annotation query\n in graphite ds (#20857)\n * Elastic: Fix parsing for millisecond number timestamps\n (#20290)\n * Docs: Sync docs with website repo via GitHub Action\n (#20694)\n * Gauge/BarGauge: Added support for value mapping of 'no\n data'-state to text/value (#20842)\n * UI: Use SelectableValue as Segment value (#20867)\n * Datasource/Loki: Fixes issue where time range wasn't being\n supplied with annotation query (#20829)\n * Server: Return 404 when non-pending invite is requested\n (#20863)\n * Explore: Fix reset reducer duplication (#20838)\n * CLI: Return error and aborts when plugin file extraction\n fails (#20849)\n * Datasource/Loki: Simplifies autocompletion (#20840)\n * Update README.md (#20820)\n * ValueFormats: dynamically create units (#20763)\n * @grafana/data: don't export ArrowDataFrame (#20855)\n * @grafana/data: export ArrowDataFrame (#20832)\n * Docs: Add section about derived fields for Loki (#20648)\n * Migration: Migrate org switcher to react (#19607)\n * Remove screencasts.md (#20845)\n * Update requirements.md (#20778)\n * Explore: Log message line wrapping options for logs\n (#20360)\n * AlertNotifier: Support alert tags in OpsGenie notifier\n (#20810)\n * Fix prettier (#20827)\n * Loki: Support for template variable queries (#20697)\n * Explore: Export timezone from redux state (#20812)\n * Forms: introduce checkbox (#20701)\n * OpenTsdb: Migrate Config Editor to React (#20808)\n * TablePanel, GraphPanel: Exclude hidden columns from CSV\n (#19925)\n * DataFrame: add utilities to @grafana/data that support\n apache arrow (#20813)\n * Panels: Fixed transparency option for angular panels\n (#20814)\n * CloudWatch: Upgrade aws-sdk-go (#20510)\n * Update documentation-style-guide.md (#20777)\n * Chore: Move Prometheus datasorce tests from specs folder\n and merge duplicated test files (#20755)\n * Profile: Remove sign-out tab from profile page (#20802)\n * Doc: Change inline comment on interface to doc comment\n (#20794)\n * Server: Fail when unable to create log directory (#20804)\n * Update stale.yml\n * Rename config.yaml to config.yml\n * GitHub: Add link to forum when adding new issue (#20798)\n * Datasource/Loki: Fixes regression where enhanceDataFrame\n was not called (#20660)\n * Updated changelog\n * Docs: Updated changelog\n * SQLStore: Test admins/editors/viewers stats validity\n (#20751)\n * Graph-Panel: Center option for bar charts (#19723)\n * Packages: Fixed rollup issue with grafana-ui (#20790)\n * Stalebot: update issue config (#20789)\n * Stalebot: Automatically label PRs with no activity after\n 14 days as stale, then after 30 days close (#20179)\n * StatPanel: ColorMode, GraphMode & JustifyMode changes\n (#20680)\n * Units: Remove SI prefix symbol from new\n milli/microSievert(/h) (#20650)\n * Graphite: Add metrictank dashboard to Graphite datasource\n (#20776)\n * Docs: Remove typo from mssql.md (#20748)\n * Navigation: Fix navigation when new password is chosen\n (#20747)\n * Cleanup: use the local variable (#20767)\n * Prometheus: Fix caching for default labels request\n (#20718)\n * Release: Updates latest.json and\n grafana/packages/*/package.json (#20734)\n * Release: Updates Changelog for 6.5.1 (#20723)\n * ReactMigration: Migrate Graphite config page to React\n (#20444)\n * SQLStore: Rewrite system statistics query to count users\n once (#20711)\n * Docs: Clean up influxdb.md (#20618)\n * CloudWatch: Region template query fix (#20661)\n * Units: remove unreachable code (#20684)\n * Tests: Skipping Template Variable tests for now (#20707)\n * Datasource/Loki: Fix issue where annotation queries\n weren't getting their variables interpolated (#20702)\n * Documentation: Add missing blank in docker run command\n (#20705)\n * Server: Defer wg.Done call to ensure it's called (#20700)\n * Fix: Fixes templateSrv is undefined for plugins that do\n not use @@ngInject (#20696)\n * Server: Clean up startup logic/error checking (#20679)\n * CloudWatch: Annotations query editor loading fix (#20687)\n * OAuth: Add missing setting from defaults.ini (#20691)\n * DataLinks: Refactor title state (#20256)\n * Forms: TextArea component (#20484)\n * Explore: Adjust the max-width of the tooltip (#20675)\n * Units: Add currency and energy units (#20428)\n * transform: update to use sdk with frame.labels moved to\n frame.[]field.labels (#20670)\n * dev: fix pre-commit typo in toolkit (#20673)\n * Docs: Update change user password payload in http api\n (#20666)\n * Chore: Sync defaults.ini with sample.ini (#20645)\n * Loki: Fix query error for step parameter (#20607)\n * Fix: Disable draggable panels on small devices (#20629)\n * Chore: Remove several instances of non-strict null usage\n (#20563)\n * StatPanel: Rename singlestat2 to stat (#20651)\n * Panels: Add support for panels with no padding (#20012)\n * CloudWatch: Docs updates after feedback (#20643)\n * Explore: Update docs with updated images (#20633)\n * Build: Update latest.json (#20638)\n * Forms: Introduce form field (#20632)\n * docs: update versions (#20635)\n * Changelog: 6.4.5 (#20625)\n * Changelog: 6.5.0 (#20620)\n * Docs: 6.5 update (#20617)\n * Chore: Improve grafana-server profiling and tracing\n (#20593)\n * grafana/toolkit: Update FAQ (#20592)\n * Forms: Introduce new Switch component (#20470)\n * E2E: Adds tests for QueryVariable CRUD (#20448)\n * Toolkit: Do not continue after compile error (#20590)\n * BarGauge/Gauge: Add back missing title option field\n display options (#20616)\n * VizRepeater/BarGauge: Use common font dimensions across\n repeated visualisations (#19983)\n * Update services.md (#20604)\n * Docs: CloudWatch docs fixes (#20609)\n * Changelog: Add v6.3.7 (#20602)\n * Cloudwatch: Docs improvements (#20100)\n * Fix: Wrong path when sending package build time (#20595)\n * CloudWatch: Fix high CPU load (#20579)\n * Explore: UI changes for split view and live tailing\n (#20516)\n * Explore: Keep logQL filters when selecting labels in log\n row details (#20570)\n * Instrumentation: Edition and license info to usage stats\n (#20589)\n * Metrics: Add metric for each package build time (#20566)\n * grafana/toolkit: Smaller output after successful upload\n (#20580)\n * Table: Use the configured field formatter if it exists\n (#20584)\n * TextPanel: Fixes issue with template variable value not\n properly html escaped (#20588)\n * Docs: Update Explore docs for 6.5 (time-sync button & log\n details) (#20390)\n * Explore: UI changes for derived fields (#20557)\n * Docker: Custom dockerfiles, docker and image rendering\n docs update (#20492)\n * Tooltip: Fix issue with tooltip throwing an error when\n retrieving values (#20565)\n * Changelog: Reference a few more issues that were fixed\n (#20562)\n * Enable theme context mocking in tests (#20519)\n * Chore: Remove angular dependency from prometheus\n datasource (#20536)\n * Build: Verify checksums when downloading PhantomJS\n (#20558)\n * DevEnv: updates nodejs from 10.x to 12.x and golang to\n 1.13 in ci-deploy dockerfile. (#20405)\n * Explore: updates responsive button to pass all the div\n element props\n * Explore: fixes explore responsive button ref\n * Explore: adds a ref to responsive button\n * Explore: updates responsive button to forward ref\n * Explore: UI fixes for log details (#20485)\n * Document required Go version in developer guide (#20546)\n * UserTableView: Show user name in table view (#18108)\n * CloudWatch: enable min_interval (#20260)\n * CI: fix release script remove filtering (#20552)\n * Update dashboards (#20486)\n * CI: Build all platforms for Enterprise (#20389)\n * Alerting: Propagate failures to delete dashboard alerts\n (#20507)\n * Cloudwatch: Fix LaunchTime attribute tag bug (#20237)\n * Fix: Prevents crash when searchFilter is non string\n (#20526)\n * docs: what's new fixes (#20535)\n * What's new in 6.5 - adding CloudWatch topics (#20497)\n * grafana/ui: Expose Icon component (#20524)\n * Backend plugins: Log wrapper args formatting fix (#20521)\n * Build: Clean up scripts/grunt/options/phantomjs.js\n (#20503)\n * MySql: Fix tls auth settings in config page (#20501)\n * Backend plugins: Log wrapper args formatting (#20514)\n * CloudWatch: Remove HighResolution toggle since it's not\n being used (#20440)\n * API: Optionally list expired keys (#20468)\n * Image-rendering: Cleanup of rendering code (#20496)\n * Build: Reports times and outcomes from CircleCI jobs\n (#20474)\n * Chore: Upgrade prettier for grafana-toolkit (#20476)\n * TimePicker: Fixed update issue after plugin uses\n getLocationSrv().update (#20466)\n * Docs: Add explore images to What's new in v6.5 (#20442)\n * Chore: Bumps prettier version for new typescript syntax\n support (#20463)\n * handle PartialData status (#20459)\n * CloudWatch: Make sure period variable is being interpreted\n correctly (#20447)\n * Forms: New Input component (#20159)\n * UsersPage: Removed icon in external button (#20441)\n * Build: Fix RPM verification (#20460)\n * Dashboard Migrator: persist thresholds param if already\n set (#20458)\n * Docs: Fix developer guide link (#20434)\n * Fix package signing (#20451)\n * Build: Fix signing (#20450)\n * transform: changes to support sdk v0.2.0 (#20426)\n * Reporting: Handle timeouts in rendering (#20415)\n * Build: Upgrade build-container Docker image version\n (#20443)\n * Upgrade build-container image (#20438)\n * Provisioning: Fix unmarshaling nested jsonData values\n (#20399)\n * Fail when server is unable to bind port (#20409)\n * Devenv: Fix integration of postgres and fake-data-gen\n containers (#20329)\n * Util: Modify SplitHostPortDefault not to return an error\n for empty input (#20351)\n * InfluxDB: convert config editor to react (#20282)\n * Packages: stable release tags update (#20417)\n * Chore/Go-dep: change sdk to use new tag (#20422)\n * Chore: Log actual error when oauth pass thru fails\n (#20419)\n * Grafana/Loki: Adds support for new Loki endpoints and\n metrics (#20158)\n * Chore: Fix error caused by typescript upgrade (#20408)\n * Chore: Upgrade typescript to 3.7 (#20375)\n * NavLinks: Make ordering in navigation configurable\n (#20382)\n * Fix flot overriding onselectstart/ondrag events (#20381)\n * Docs: Updates docs for redux framework (#20377)\n * chore: fix 'testing' version is latest.json (#20398)\n * transform_plugin: stop plugin when grafana stops (#20397)\n * Chore: Update latest.json (#20393)\n * Docs: What's new in Grafana v6.5 Draft (#20368)\n * Update changelog for v6.5.0-beta1 (#20350)\n * Chore: Move and wrap Cascader component to @grafana/ui\n (#20246)\n * MySql: Fix password regression in MySQL datasource\n (#20376)\n * CloudWatch: Datasource improvements (#20268)\n * grafana/toolkit: remove aws-sdk and upload to grafana.com\n API endpoint (#20372)\n * LDAP: last org admin can login but wont be removed\n (#20326)\n * Devenv: Replace deprecated SQL Server docker image\n (#20352)\n * DataFrame processing: Require table rows to be array\n (#20357)\n * grafana/ui: Add Icon component (#20353)\n * Telegram: Check error before adding defer close of image\n (#20331)\n * ValueFormats: fix description for dateTimeAsUS (#20355)\n * Fix alert names in dev dashboard (#20306)\n * Docs: Getting started edits (#19915)\n * Bus: Remove unused wildcard handlers and clean up tests\n (#20327)\n * Explore: updates breakpoint used to collapse datasource\n picker\n * Elastic: Fix Elastic template variables interpolation when\n redirecting to Explore (#20314)\n * transform_plugin: pass encoded dataframes through (#20333)\n * Links: Updated links to grafana.com (#20320)\n * Avatar: Don't log failure to add existing item to cache\n (#19947)\n * Devenv: Enable tracing for loki docker block (#20309)\n * Build: adds make target run-frontend (#20227)\n * Devenv: fix kibana in elastic7 docker block (#20308)\n * Build: Fix Docker builds (#20312)\n * Devenv: Add nginx_proxy_mac/nginx_login_only.conf (#20310)\n * Build: Build Ubuntu based Docker images also for ARM\n (#20267)\n * Devenv: fix connection in elastic 5 and 6 blocks (#20304)\n * Prometheus: Adds hint support to dashboard and fixes\n prometheus link in query editor (#20275)\n * Explore: Fix always disabled QueryField for InfluxDB\n (#20299)\n * Docker blocks: Add loki blocks for loki releases (#20172)\n * Explore: Fix interpolation of error message (#20301)\n * PanelLinks: fixed issue with old panel links and grafana\n behind a subpath (#20298)\n * ColorPicker: Fixes issue with ColorPicker disappearing\n too quickly (#20289)\n * Configuration: Update root_url to reflect the default\n value (#20278)\n * Templating: Made default template variable query editor\n field a text area with dynamic automatic height (#20288)\n * Transformations: filter results by refId (#20261)\n * PanelData: Support showing data and errors in angular\n panels (#20286)\n * Fix: URL Encode Groupd IDs for external team sync (#20280)\n * Build: Collect frontend build time metric (#20254)\n * Datasource: fixes prometheus metrics query query field\n definition (#20273)\n * Update version (#20271)\n * Admin: Adds setting to disable creating initial admin user\n (#19505)\n * Tests: We should not click on default button when there is\n only one ds (#20266)\n * AuthProxy: additions to ttl config change (#20249)\n * Graphite: add metrictank meta in response (#20138)\n * Docker: Add dependencies to support oracle plugin in\n alpine (#20214)\n * ReactMigration: Migrate Prometheus config page to React\n (#20248)\n * Templating: highlight first item when searching a variable\n dropdown (#20264)\n * e2eTests: Adds cleanup of created datasource and dashboard\n (#20244)\n * Gauge Panel: fix the default value of thresholds cannot be\n modified (#20190)\n * AuthProxy: Can now login with auth proxy and get a login\n token (#20175)\n * DataFrame: move labels to field (#19926)\n * Add Dockerfiles for Ubuntu (#20196)\n * Graph: Fixed no graph in panel edit mode (#20247)\n * Explore: Configure explore series colours via field config\n (#20239)\n * LDAP: Fixing sync issues (#19446)\n * Docs: Added alias for old reporting page location (#20238)\n * ReactPanels: Adds Explore menu item (#20236)\n * Elasticsearch: Support rendering in logs panel (#20229)\n * Alerting: Add alert_state to the kafka message Fixes\n #11401 (#20099)\n * Graph: introduce Tooltip to React graph (#20046)\n * @grafana/runtime: Expose datasourceRequest in backendSrv\n * Auth Proxy: replace ini setting ldap_sync_ttl with\n sync_ttl (#20191)\n * DevEnv: updates prometheus random data golang image to\n 1.13.0\n * Provisioning: fix for cannot save provisioned dashboard\n (#20218)\n * DisplayProcessor: improve time field support (#20223)\n * Docs: Adding how to use plugin version, through docker env\n variable (#19924)\n * Docs: Add docs abooout time range URL query params\n (#20215)\n * MixedQuery: refactor so other components could also batch\n queries (#20219)\n * SharedQuery: don't explode when missing logo (#20187)\n * LDAP: Interpolate env variable expressions in ldap.toml\n file (#20173)\n * Chore: Update latest.json (#20216)\n * build: Ignore Azure test snapshot for msi build (long file\n name) (#20217)\n * Explore: fixes toolbars datasource selector and date\n picker responsiveness (#19718)\n * Logs Panel: Generate valid logQL for multi-select template\n variable (#20200)\n * Fix when only icon is present (#20208)\n * TablePanel: Prevents crash when data contains mixed data\n formats (#20202)\n * OAuth: Make the login button display name of custom OAuth\n provider (#20209)\n * Explore: Add custom DataLinks on datasource level for Loki\n (#20060)\n * QueryField: Prevent query runs on blur in Explore (#20180)\n * Azure Monitor: Datasource Config Type (#20183)\n * PluginLoader: export classes on @grafana/ui (#20188)\n * Changelog: 6.4.4 release (#20201)\n * CLI: Reduce memory usage for plugin installation (#19639)\n * DataLinks: fix syntax highlighting not being applied on\n first render (#20199)\n * SafeDynamicImport: Updates so that it does not act as an\n ErrorBoundary (#20170)\n * grafana/data: Make display processor work with time fields\n (#20174)\n * update triggers to use new deployment_tools location\n (#20194)\n * mysql: fix encoding in connection string (#20192)\n * pkg/util: Replace custom pbkdf2 implementation by\n maintained version (#19941)\n * Datasource/Elasticsearch: Fix logs which were displayed\n with incorrect timestamp in Explore logs tab (#20009)\n * Error Handling: support errors and data in a response\n (#20169)\n * OAuth: Generic OAuth role mapping support (#17149)\n * sdk: update to latest (#20182)\n * Docs: Add introduction to time series (#20068)\n * Docs: Simplify headings and make active (#20163)\n * Docs: Add 'the' to license reference in README (#20167)\n * LDAP: All LDAP servers should be tried even if one of them\n returns a connection error (#20077)\n * Dashboards: add panel inspector (#20052)\n * Docker: Reduce layers in build container and modified\n initialization of PATH env in final container (#20132)\n * Docs: Display panels alphabetically (#20130)\n * Docs: Updates getting_started.md for spelling mistake\n 'configuered' to 'configured' (#20027)\n * fix: modifying AWS Kafka dimension names to correct ones\n (#19986)\n * Templating: Makes so __searchFilter can be used as part of\n regular expression (#20103)\n * Dashboard Editor: use chevron icon rather than >\n (#19588)\n * Docs: update datasources that support alerting (#20066)\n * Units: Add milli/microSievert, milli/microSievert/h and\n pixels (#20144)\n * Toolkit: copy full directory structure for img,libs,static\n (#20145)\n * Heatmap: Insert div to fix layout (#20056)\n * Build: adds the pkg/errors dependency that was missing\n from go.mod (#20143)\n * Explore: Memory leak fix due to dedup selector (#20107)\n * DataLinks: Fix access to labels when using Prometheus\n instant queries (#20113)\n * PluginLoader: fix imports for react-redux (#19780)\n * LDAP Debug: No longer shows incorrectly matching groups\n based on role (#20018)\n * Licensing service (#19903)\n * Explore: Add titles to query row action buttons (#20128)\n * Graph: Added series override option to have hidden series\n be persisted (#20124)\n * grafana/ui: Drawer component (#20078)\n * Depedency: Bump crewjam/saml to the latest master (#20126)\n * grafana/ui: fix button icon styles (#20084)\n * Explore: UI change for log row details (#20034)\n * api/dashboard: fix panic on UI save (#20137)\n * grafana/toolkit: Fixup save artifacts in a zip id in the\n folder (#20071) (#20139)\n * Docs: Fix InfluxDB Typos (#20004)\n * Docs: Data Sources subsection naming (#20127)\n * Docs: Update basic_concepts.md (#20102)\n * GEL: include the expression count in the request (#20114)\n * GEL: wrap arrow utils in async load (#20134)\n * grafana/toolkit: save artifacts in a zip id in the folder\n (#20123)\n * remove editor keys and null coalescing (#20115)\n * Emails: Update notification templates (#19662)\n * Docs: Ordering and formatting of datasources in docs\n (#19485)\n * Docs: Improve remote image renderer documentation (#20031)\n * Add devenv block for apache proxy working for Mac (#20119)\n * Allow saving of provisioned dashboards (#19820)\n * Update Azure AD instructions in generic-oauth.md (#20091)\n * Docs: Fixed a broken link to LogQL in the docs (#20106)\n * Explore: Fix deferred rendering of logs (#20110)\n * Templating: Adds typings to Variables (#20117)\n * Chore: Reorg packages (#20111)\n * Chore: Moves QueryField to @grafana/ui (#19678)\n * Docs: Consolidate backend guidelines (#19823)\n * transform: add expressions to query editor (w/ feature\n flag) (#20072)\n * DataSource: don't filter hidden queries automatically\n (#20088)\n * Docker: makes it possible to parse timezones in the docker\n image (#20081)\n * Plugins: Transform plugin support (#20036)\n * Add data link from panel to cloudwatch console (#20061)\n * DataLinks: Fix blur issues (#19883)\n * Explore: Remove datasource testing on selector (#19910)\n * Grafana/ui: Refactor button and add default type = button\n (#20042)\n * Add some typings for react events (#20038)\n * PanelQuerRunnerrremove logging (#20073)\n * Enable errcheck for golangci-lint (#19976)\n * DataLinks: Implement javascript callback (#19851)\n * Chore: correct typo in word Fahrenheit (#20040)\n * ReactMigration: Migrate Loki and Elastic config pages to\n React (#19979)\n * api: new v2 metrics query endpoint\n * Forms: Introduce new Primary, Secondary and Destructive\n buttons (#19973)\n * grafana/ui: Fix modal component (#19987)\n * WIP: Spawn backend plugins v2 (#19835)\n * build: Fix building of Enterprise Docker images (#19992)\n * Docker: Build and use musl-based binaries in alpine images\n to resolve glibc incompatibility issues (#19798)\n * PluginPage: replace plugin absolute url with relative\n (#19956)\n * Add info about static files (#19965)\n * Explore: Change loading state to done after live-tailing\n stops (#19955)\n * pkg/util: Check errors (#19832)\n * Core: Show browser not supported notification (#19904)\n * grafana/toolkit: Support js plugins (#19952)\n * Forms: Introduce typographic form elements (#19879)\n * SingleStat: apply mappings to no data response (#19951)\n * Docs: Clean up contribute docs (#19716)\n * pkg/models: Check errors (#19839)\n * pkg/setting: Check errors (#19838)\n * pkg/tsdb: Check errors (#19837)\n * Docs: Document Makefile (#19720)\n * Explore: Add functionality to show/hide query row results\n (#19794)\n * pkg/services: Check errors (#19712)\n * API: Fix logging of dynamic listening port (#19644)\n * Cloudwatch: Make it clear that role switching is not\n supported (#19706)\n * Update Apache configuration to work with MPMs as shared\n modules (#19900)\n * Cloudwatch: Lowercase Redshift Dimension entry for service\n class and stage (#19897)\n * Units: Added mega ampere and watt-hour per kg Units\n (#19922)\n * Clarify use of custom.ini on deb/rpm platforms (#19939)\n * Update ISSUE_TRIAGE.md (#19942)\n * docs: improved setup instructions for reporting (#19935)\n * grafana/ui: Enable mdx imports in stories (#19937)\n * Refactor: Suggestion plugin for slate (#19825)\n * grafana/ui: Enable storybook docs (#19930)\n * Fix: Correct color on TagItems (#19933)\n * Dependencies: Update yarn.lock (#19927)\n * Chore: Updates yarn.lock (#19919)\n * pkg/plugins: Only warn if plugins fail to load. Fixes\n #19846 (#19859)\n * Chore: Bump storybook to 5.2.4 (#19895)\n * QueryEditor: move QueryEditorRows to its own component\n (#19756)\n * ReactMigration: Migrate DataSource HTTP Settings to React\n (#19452)\n * TemplateVariables: Introduces $__searchFilter to Query\n Variables (#19858)\n * Forms: Introduce new spacing variables to GrafanaTheme\n (#19875)\n * Forms: Introduce new color variables to GrafanaTheme\n (#19874)\n * Chore: Bump Angularjs 1.6.6 -> 1.6.9 (#19849)\n * Update documentation.md\n * Edited Contribute docs\n * devenv: have bra watch attempt graceful shutdown (#19857)\n * Release: Update latest (#19866)\n * DataFrame: guess number field when on NaN (#19833)\n * Loki: Remove param (#19854)\n * InputDataSource: Fixed issue with config editor (#19818)\n * Fix: Unsubscribe from events in dashboards (#19788)\n * Explore: Add unit test to TimeSyncButton (#19836)\n * build: update scripts go.(mod|sum) (#19834)\n * Loki: Return empty result if no valid targets (#19830)\n * DataLinks: Fix url field not releasing focus (#19804)\n * Alerting: All notification channels should always send\n (#19807)\n * @grafana/toolkit: Check if git user.name config is set\n (#19821)\n * pkg/middleware: Check errors (#19749)\n * Fix: clicking outside of some query editors required 2\n clicks (#19822)\n * pkg/cmd: Check errors (#19700)\n * grafana/toolkit: Add font file loader (#19781)\n * Select: Allow custom value for selects (#19775)\n * Docs: Add database architecture docs (#19800)\n * Call next in azure editor (#19799)\n * grafana/toolkit: Use http rather than ssh for git checkout\n (#19754)\n * DataLinks: Fix context menu not showing in singlestat-ish\n visualisations (#19809)\n * Elasticsearch: Adds support for region annotations\n (#17602)\n * Docs: Add additional capitalization rules (#19805)\n * Docs: Add additional word usage rule (#19812)\n * Update aws-sdk-go (#19138)\n * Dashboard: Allows the d-solo route to be used without slug\n (#19640)\n * pkg/bus: Check errors (#19748)\n * Panels: Fixes default tab for visualizations without\n Queries Tab (#19803)\n * Chore: Refactor grafana-server (#19796)\n * Add missing info about stylesFactory\n * Types: Adds type safety to appEvents (#19418)\n * Docs: Split up Sharing topic (#19680)\n * Update README.md (#19457)\n * Docs: Link to architecture docs from Developer guide\n (#19778)\n * toolkit linter line number off by one (#19782)\n * pkg/plugins: Check errors (#19715)\n * Explore: updates live button to responsive button\n * Explore: fixes live button margin\n * Explore: fixes a responsive fold of live tailing button\n * updated live tailing text\n * updated live tail button - responsive fold\n * updated toolbar - added media query for tail buttons\n * Docs: Add docs on services (#19741)\n * fix: export Bus on search service (#19773)\n * Chore: Refactor GoConvey into stdlib for search service\n (#19765)\n * Quick typo fix (#19759)\n * Docs: Fixes go get command in developer guide (#19766)\n * Datasource: Add custom headers on alerting queries\n (#19508)\n * Docs: Add API style/casing rule (#19627)\n * Explore: updates clear all button to responsive button\n (#19719)\n * pkg/infra: Check errors (#19705)\n * Docs: Update Prometheus Custom Query Parameters docs.\n (#19524)\n * Docs: Fix playlist layout issues (#19739)\n * Docs: Update instructions and flows in Playlist.md\n (#19590)\n * pkg/components: Check errors (#19703)\n * UX: Fix empty space in select (#19713)\n * pkg/login: Check errors (#19714)\n * enforce GO111MODULE=on when running make run (#19724)\n * Docs: Add Troubleshooting section to Developer guide\n (#19721)\n * Update README.md (#19551)\n * Singlestat: Fixed issue with mapping null to text (#19689)\n * Don't truncate IPv6 addresses (#19573)\n * Tests: Fix runRequest test (#19711)\n * Docs: Update pkg\\README.md (#19615)\n * Feature: Adds connectWithCleanup HOC (#19629)\n * Docs: Add 'repository' case, and 'open source' to style\n guide\n * React group by segment poc (#19436)\n * Graph: make ContextMenu potitioning aware of the viewport\n width (#19699)\n * pkg/api: Check errors (#19657)\n * Explore: Synchronise time ranges in split mode (#19274)\n * build: use vendored packages for circle backend tests\n (#19708)\n * Docs: Add correct casing for API and ID to style guide\n (#19625)\n * API: added dashboardId and slug in response after import\n (#19692)\n * Docs: Simplify README (#19702)\n * Docs: Move dev guide from README (#19707)\n * Explore: Expand template variables when redirecting from\n dashboard panel (#19582)\n * Alerting: Fix dates stored in local time when pausing\n alerts (#19525)\n * Explore/UI: Removes unnecessary grafana-info-box wrapper\n around InfluxCheatSheet (#19701)\n * Docs: Updating to 6.4.0 (#19698)\n * Chore: Fixes lines that exceeded 150 chars (#19694)\n * Chore: Updates latest.json for 6.4.2 (#19697)\n * Chore: Updates Changelog for 6.4.2 (#19696)\n * Docs: Update folder.md (#19674)\n * build: use vendor folder for building (#19677)\n * Table: Proper handling of json data with dataframes\n (#19596)\n * SharedQuery: Fixed issue when using rows (#19610)\n * SingleStat: Fixes $__name postfix/prefix usage (#19687)\n * Chore: Upgrade Docker images to Go 1.13.1 (#19576)\n * Grafana Image Renderer: Fixes plugin page (#19664)\n * Units: consistent Meter spelling and abbreviations\n (#19648)\n * CloudWatch: Changes incorrect dimension wmlid to wlmid\n (#19679)\n * Loki: Fix lookup for label key token (#19579)\n * Documentation: Fix time range controls formatting (#19589)\n * Docs: Add additional style rules (#19634)\n * De-duplicate `lint-go` step (#19675)\n * Docs: Update keyboard shortcuts formatting (#19637)\n * AzureMonitor: Alerting for Azure Application Insights\n (#19381)\n * ci-build: Improve build-deploy script (#19653)\n * Rename live option in queries (#19658)\n * Docs: Update README.md (#19456)\n * Docs: Update typos, make docs more consistent. (#19633)\n * Docs: Fix operating system names (#19638)\n * Docs: Move issue triage docs to contribute (#19652)\n * DataFormats: When transforming TableModel -> DataFrame ->\n Table preserve the type attribute (#19621)\n * Graph: Updated auto decimals logic and test dashboard\n (#19618)\n * Graph: Switching to series mode should re-render graph\n (#19623)\n * Revert 'Feature: Adds connectWithCleanup HOC (#19392)'\n (#19628)\n * Feature: Adds connectWithCleanup HOC (#19392)\n * Panels: Progress on new singlestat / BigValue (#19374)\n * Units: fixed wrong id for Terabits/sec (#19611)\n * Docs: General improvements to docs, and a fix in oauth\n (#19587)\n * Docs: Replace ampersands with and (#19609)\n * Profile: Fix issue with user profile not showing more than\n sessions some times (#19578)\n * Azure Monitor : Query more than 10 dimensions ( Fixes\n #17230 ) (#18693)\n * Login: Show SAML login button if SAML is enabled (#19591)\n * UI: Adds Modal component (#19369)\n * Prometheus: Fixes so results in Panel always are sorted by\n query order (#19597)\n * Docs: Improve guides for contributing (#19575)\n * Migration: Migrates Admin settings from angular to react\n (#19594)\n * Chore: Converts HelpModal from angular to react (#19474)\n * Fix typo (#19571)\n * Chore: Upgrade to Go 1.13 (#19502)\n * Explore: Move data source loader into the select (#19465)\n * Release: Fix issue with tag script on osx (#19557)\n * Release: Update latest (#19559)\n * Docs: Updates about Loki annotations (#19537)\n * Theme: follow-up fix for snapshot\n * UI: Centers the filter tags in input field (#19546)\n * Update README.md (#19515)\n * Docs: Updated changelog (#19558)\n * Theme: fix theme issue\n * Provisioning: Handle empty nested keys on YAML\n provisioning datasources (#19547)\n * Docs: updates to what's new in 6.4 (#19539)\n * Loki: remove live option for logs panel (#19533)\n * Chore: Updates to 6.4.0 stable (#19528)\n * CloudWatch: Add ap-east-1 to hard-coded region lists\n (#19523)\n * ChangeLog: Release 6.4.0 Stable (#19526)\n * Docs: Add notice about plugins that need updating (#19519)\n * Panels: Skip re-rendering panel/visualisation in loading\n state (#19518)\n * Docs: LDAP Debug View documentation (#19513)\n * Docs: reports feature (#19472)\n * SeriesOverrides: Fixed issue with color picker\n * Build: Fix building when $LDFLAGS is set (#19509)\n * API: Add `createdAt` and `updatedAt` to api/users/lookup\n (#19496)\n * Fix logs panel image path\n * Logs: Publish logs panel (#19504)\n * Explore: Update broken link to logql docs (#19510)\n * Chore: Remove console.log (#19412)\n * Refactor: Split LogRow component (#19471)\n * Build: Upgrade go to 1.12.10 (#19499)\n * CLI: Fix version selection for plugin install (#19498)\n * Upgrade grafana-plugin-model (#19438)\n * grafana-ui: Moves slate types from devDependencies to\n dependencies (#19470)\n * Docs: Improve guide descriptions on docs start page #19109\n (#19479)\n * Explore: Generate log row uid (#18994)\n * Editor: Brings up suggestions menu after clicking\n suggestion (#19359)\n * Docs: Add Live tail section in Explore (#19321)\n * Docs: Add guide for developing on macOS (#19464)\n * API: Add createdAt field to /api/users/:id (#19475)\n * Docs: Updated heading to sentence case (#19450)\n * grafana/toolkit: Remove hack to expose plugin/e2e exports\n & types (#19467)\n * Testdata: Rename package to circumvent convention in go\n (#19409)\n * Docs: Update package's manual release guide (#19469)\n * Users: revert LDAP admin user page (#19463)\n * Explore: Take root_url setting into account when\n redirecting from dashboard to explore (#19447)\n * Refactor: RefreshPicker export things as statics on class\n (#19443)\n * grafana/ui: Fix value time zone names to be capitalized\n (#19417)\n * Release: Make sure packages are released from clean git\n state (#19402)\n * Docs: Add styling.md with guide to Emotion at Grafana\n (#19411)\n * Docs: Update SECURITY.md (#19385)\n * Debt: Simplifies actionCreatorFactory (#19433)\n * Update PLUGIN_DEV.md (#19387)\n * Release: Create cherrypick task work for enterprise repo\n (#19424)\n * Theme: Generate colors SASS\n * DisplayFormat: use toLocaleString for infinity\n * Docs: Update Loki docs with new syntax and features\n (#19370)\n * UI: Add orangeDark color to theme (#19407)\n * grafana/toolkit: Improve contribution readme (#19400)\n * Docs: Remove hard wrap (#19413)\n * Tests: Adds throwUnhandledRejections to jest setup\n (#19398)\n * DataLinks: suggestions menu improvements (#19396)\n * Dev: Sets `preserveSymlinks` to `false` in top-level\n tsconfig (#19395)\n * Build: fixed signing script issue with circle-ci (#19397)\n * Docs: Update readme with info about ongoing migration\n (#19362)\n * PanelData: Adds timeRange prop to PanelData (#19361)\n * Docs: Update Playlist.md (#19382)\n * Update documentation-style-guide.md (#19389)\n * Build: Fix correct sort order of merged pr's in cherrypick\n task (#19379)\n * dependencies: Update yarn.lock (#19377)\n * ValueFormats: check for inf (#19376)\n * Update UPGRADING_DEPENDENCIES.md (#19386)\n * Update ROADMAP.md (#19384)\n * Update SUPPORT.md (#19383)\n * Update ISSUE_TRIAGE.md (#19280)\n * Update datasource_permissions.md (#19336)\n * MySQL: Limit datasource error details returned from the\n backend (#19373)\n * MySQL, Postgres: Update raw sql when query builder updates\n (#19209)\n * MySQL, Postgres, MSSQL: Fix validating query with template\n variables in alert (#19237)\n * Explore: Do not send explicit maxDataPoints for logs.\n (#19235)\n * grafana/ui: Add Timezone picker (#19364)\n * Heatmap: use DataFrame rather than LegacyResponseData\n (#19026)\n * Explore: Refactor mode selection (#19356)\n * Dashboard: Fix export for sharing when panels use default\n data source (#19315)\n * Azure Monitor: Revert support for cross resource queries\n (#19115)' (#19346)\n * grafana/ui: Add electrical units mAh and kAh (#19314)\n * grafana/ui: Add Indian Rupee (INR) to currencies (#19201)\n * Chore: Bump typescript to version 3.6.3 (#19308)\n * Explore: Refactor live tail controls (#19328)\n * Docs: Documentation for return-to-dashboard feature\n (#19198)\n * Select: Set placeholder color (#19309)\n * Keybindings: Improve esc / exit / blur logic (#19320)\n * Plugins: Skips existence of module.js for renderer plugins\n (#19318)\n * Explore: Fix unsubscribing from Loki websocket (#19263)\n * Release: update latest.json (#19312)\n * Docs: Uppercase HTTP acronyms (#19317)\n * Multi-LDAP: Do not fail-fast on invalid credentials\n (#19261)\n * DataLinks: Small UX improvements to DataLinksInput\n (#19313)\n * Alerting: Prevents creating alerts from unsupported\n queries (#19250)\n * Chore: Update Slate to 0.47.8 (#19197)\n * Chore: Upgrades react-redux to version 7.1.1 (#19272)\n * Docs: Update documentation-style-guide.md (#19292)\n * Admin/user: fix textarea postion in 'Pending Invites' to\n avoid page scrolling (#19288)\n * Changelog update for 6.3.6\n * Revert 'Changelog update for 6.3.6'\n * Changelog update for 6.3.6\n * Build: Split up task in the CI pipeline to ease running\n outside circleci (#18861)\n * Build: Scanning grafana master docker image with trivy in\n ci (#19195)\n * Dashboard: Hides alpha icon for visualization that is not\n in alpha/beta stage #19300\n * Update changelog task to generate toolkit changelog too\n (#19262)\n * QueryEditor: Clean-up interface to only have one PanelData\n (#19249)\n * Docs: Add style rule for Git (#19277)\n * Docs: Update CONTRIBUTING.md (#19273)\n * Docs: Add glossary (#19148)\n * Docs: Add style guide for docs (#19190)\n * Vector: remove toJSON() from interface (#19254)\n * MySQL, Postgres, MSSQL: Only debug log when in development\n (#19239)\n * Graphite: Changed range expansion from 1m to 1s (#19246)\n * AlertBox: Merged Alertbox into Alert (#19212)\n * Explore: live tail UI fixes and improvements (#19187)\n * Docs: Update theming docs (#19248)\n * grafana/toolkit: Fix toolkit not building @grafana/toolkit\n (#19253)\n * CloudWatch: ContainerInsights metrics support (#18971)\n * Alerting: Truncate PagerDuty summary when greater than\n 1024 characters (#18730)\n * grafana/toolkit: Add plugin scaffolding (#19207)\n * Snapshots: store DataFrameDTO instead of MutableDataFrame\n in snapshot data (#19247)\n * Revert 'Graphite: Changed range expansion from 1m to 1s,\n #11472'\n * Graphite: Changed range expansion from 1m to 1s, #11472\n * Fix docs issues (#19240)\n * Docs: Minor edits to the README and several md files\n (#19238)\n * LDAP: Show non-matched groups returned from LDAP (#19208)\n * plugins: expose whole rxjs to plugins (#19226)\n * SQL: Rewrite statistics query (#19178)\n * CI: Update frontend ci metrics for strict null checks\n * grafana/ui: Add disabled prop on LinkButton (#19192)\n * Cloudwatch: Fix autocomplete for Gamelift dimensions\n (#19145) (#19146)\n * Backend: Remove redundant condition of `ROLE_VIEWER`\n (#19211)\n * FieldDisplay: Update title variable syntax (#19217)\n * Docs: Note when using For and No Data in alert rule\n (#19185)\n * Docker: Upgrade packages to resolve reported\n vulnerabilities (#19188)\n * MSSQL: Revert usage of new connectionstring format\n (#19203)\n * Prometheus: datasource config with custom parameters\n string (#19121)\n * Contributing: Add guidelines for contributing docs\n (#19108)\n * LDAP debug page: deduplicate errors (#19168)\n * Menu: fix menu button in the mobile view (#19191)\n * Dashboard: Fixes back button styles in kiosk mode (#19165)\n * API: adds redirect helper to simplify http redirects\n (#19180)\n * docs: image rendering (#19183)\n * Chore: Update latest.json (#19177)\n * Chore: Update version to next (#19169)\n * Docs: What's new in 6.4 update (#19175)\n * Devenv: create slow_proxy_mac (#19174)\n * Chore: Changelog for v6.4.0-beta1 (#19171)\n * Revert 'Chore: Update Slate to 0.47.8 (#18412)' (#19167)\n * Chore: Update Slate to 0.47.8 (#18412)\n * Changelog: Breaking changes and deprecation notes for v6.4\n (#19164)\n * Docs: What's new 6.4 draft (#19144)\n * Docs: Add docs around feature toggles config (#19162)\n * Azure Monitor: Add support for cross resource queries\n (#19115)\n * Api: Readonly datasources should not be created via the\n API (#19006)\n * Explore: Update live tail buttons (#19143)\n * LDAP: only show tab if LDAP is enabled (#19156)\n * TimePicker: Fixes onBlur issue with FireFox on MacOS\n (#19154)\n * Feature: Encapsulated dynamic imports with error boundary\n and suspense (#19128)\n * Metrics: Adds setting for turning off total stats metrics\n (#19142)\n * Add directions for more details provided when not anymore\n on issue triage (#19116)\n * grafana/data: Reorganise code (#19136)\n * Login: fix Footer to be visible (#19147)\n * Chore: fix prettier error after github suggestions commit\n (#19150)\n * Alerts: show a warning/error if transformations are\n configured (#19027)\n * Explore: No logs should show an empty graph (#19132)\n * Ldap: Add LDAP debug page (#18759)\n * Elasticsearch: allow templating queries to order by\n doc_count (#18870)\n * Chore: cross-package security bumps (#19131)\n * Close the connection only if we establish it. (#18897)\n * Fix: Fixes crash using back button with zoomed graph\n (#19122)\n * Routing: Update routing to require sign in on every route\n (#19118)\n * Graph: constant series as override (#19102)\n * Login: fix login page failing when navigating from reset\n password views (#19124)\n * DataFrame: Fixes to dealing with empty results (#19119)\n * Explore: calculate intervals when building data source\n request (#19107)\n * Graph: Adds onHorizontalRegionSelected (#19083)\n * Loki: Updated cheat sheet with new filter syntax (#18947)\n * grafana/toolkit: Find module files correctly and add basic\n error tracing (#19089)\n * Templating: Clicking Selected should deselect all if 1 or\n more are already selected (#19104)\n * NotificationChannels: Add delete button to edit page\n (#19103)\n * Dashboard: Fix arrow positioning in button while in panel\n edit mode (#19084)\n * Update _index.md (#19045)\n * CLI: Fix installing plugins on windows (#19061)\n * LDAP: Allow an user to be synchronised against LDAP\n (#18976)\n * Docs: Adds a requirements page (#18917)\n * DataLinks: enable access to labels & field names (#18918)\n * Singlestat: fix format messes up on negative values if\n select duratio… (#19044)\n * Explore: Move throttling before processing (#19095)\n * Prometheus: Fix response states (#19092)\n * Explore: Fix how log bars in graph are stacking (#19015)\n * Explore: Add throttling when doing live queries (#19085)\n * Stackdriver: Add extra alignment period options (#18909)\n * QueryProcessing: Added missing error event for angular\n editors (#19059)\n * Explore: Fixes issue with lastResult being null (#19081)\n * GraphPanel: don't listen to legacy onDataReceived events\n (#19054)\n * QueryProcessing: Fixes showing last result in initial\n loading state (#19057)\n * toolkit: fix master build, avoid null check (#19055)\n * Auth: Allow inviting existing users when login form is\n disabled (#19048)\n * MSSQL: Fix memory leak when debug enabled (#19049)\n * Update CONTRIBUTING.md (#19051)\n * Update README.md (#19047)\n * toolkit: pipe execa output to console.stdout (#19052)\n * QueryProcessing: Observable query interface and RxJS for\n query & stream processing (#18899)\n * Fix exit live mode icon: change back to Stop. (#19043)\n * Loki: Fix vertical alignment issue in label selector\n (#18943)\n * Fix: Align buttons and label in ToggleButtonGroup (#19036)\n * toolkit: run make for backend plugins (#19029)\n * Explore: Fix auto completion on label values for Loki\n (#18988)\n * TimeSeries: Replace fieldName with fieldIndex (#19030)\n * DataLinksInput - change the way enter key is handled\n (#18985)\n * TimeSeries: Add data frame index and field name (#19005)\n * Packages: update versioning and release process (#18195)\n * API: Add `updatedAt` to api/users/:id (#19004)\n * PageContent: fix logic in Page.Contents (#19002)\n * Calcs: Fixed calc reducer (#18998)\n * AlphaNotice: replaced big popover tooltip with native\n tooltip (#18997)\n * grafana/ui: Add Time of day picker (#18894)\n * QueryOptions: update maxDataPoints text and show any value\n that is configured (#18761)\n * Piechart: fix unit selector when scrolling is required\n (#18932)\n * Refactor: Move sql_engine to sub package of tsdb (#18991)\n * Refactor: move ScopedVars to grafana/data (#18992)\n * Units: Adding T,P,E,Z,and Y bytes (#18706)\n * Image rendering: Add deprecation warning when PhantomJS is\n used for rendering images (#18933)\n * Singlestat: render lines on the panel when sparklines are\n enabled (#18984)\n * Explore: Unify background color for fresh logs (#18973)\n * Annotations: Add annotations support to Loki (#18949)\n * TimeSeries: datasources with labels should export tags\n (not labels) (#18977)\n * Explore: UX/UI improvements for pausing and resuming of\n live tailing (#18931)\n * Annotations: Fix query editor rendering on datasource\n change (#18945)\n * Bump lodash-es from 4.17.11 to 4.17.15 (#18963)\n * Bump fstream from 1.0.11 to 1.0.12 (#18962)\n * Bump mixin-deep from 1.3.1 to 1.3.2 (#18960)\n * Bump lodash.template from 4.4.0 to 4.5.0 (#18961)\n * Alerting: fix response popover prompt when add\n notification channels (#18967)\n * Build: Fix potential case-insensitive import collision for\n github.com/Unknwon/com (#18915)\n * MixedDataSource: refactor, cleanup, and add tests (#18948)\n * Bump lodash.mergewith from 4.6.1 to 4.6.2 (#18959)\n * Units: Add electrical charge - ampere-hour unit\n * Transformers: configure result transformations after\n query(alpha) (#18740)\n * grafana/toolkit: Add default mock for stylesheet imports\n for Jest (#18955)\n * grafana/toolkit: Improve readme (#18747)\n * Docs: Add PR review practices link (#18937)\n * Build: Allow extending of LDFLAGS in build.go (#18954)\n * Build: Support SOURCE_DATE_EPOCH for reproducible builds\n (#18953)\n * LDAP: Fetch teams in debug view (#18951)\n * Dashboard: Fixes dashboard overwriting behavior (#18944)\n * Grafana: Create new playlist/dashboard/channel card is not\n visible when there are no items in the list (#18890)\n * Storybook: fix type error (#18934)\n * Sass: changed color in gradient in template files to lower\n case (#18921)\n * Notification is sent when state changes from no_data to ok\n (#18920)\n * SASS: Add pointer events none to .disabled class (#18919)\n * Explore: Adds ability to save a panel's query from Explore\n (#17982)\n * Loki: support loki with streaming in dashboards (#18709)\n * UserProfile: convert user organizations section to react\n (#18707)\n * Annotations: Check that timeEnd if defined before\n comparing to avoid false truthiness (#18903)\n * Sass: Align generated file with tmpl (#18896)\n * LDAP: Add API endpoint to query the LDAP server(s) status\n (#18868)\n * Add South African Rand (ZAR) to currencies (#18893)\n * Annotations: check if the name exists before creating a\n new annotation (#18880)\n * ErrorHandling: Error boundary for every container (#18845)\n * Precommit: Fixed precommit task issue (#18883)\n * Docs: Quick typo fix in readme (#18874)\n * CI: no longer using grafana-master... package. (#18884)\n * Styles: fixed gradient in logo so it doesn't go outside\n the logo and get a defined start and end color, changed\n brand gradient to be the same as in logo, created new\n variable for vertical gradient (#18882)\n * Webpack: Fix accidental double typechecking (#18881)\n * Explore: elastic small fixes (#18879)\n * Explore: Add typings for queryTransaction.request (#18847)\n * LDAP: Add API endpoint to debug user mapping from LDAP\n (#18833)\n * PanelQueryState: restore comment\n * grafana/toolkit: fix common webpack config (#18862)\n * Explore: Use DataFrame to derive graph/table/logs (#18859)\n * Updated is time series test\n * Fixed unit test\n * alerting: add lock on job to prevent a race condition\n (#18218)\n * Reworked ResultProcessor tests\n * Explore: everything seems to be working again\n * WIP: Use data frames in explore\n * Explore: Allow pausing and resuming of live tailing\n (#18836)\n * CI: stop deployment to s3 (#18831)\n * Performance/Webpack: Introduces more aggressive\n code-splitting and other perf improvements (#18544)\n * Explore: Introduces PanelData to ExploreItemState (#18804)\n * Core: Adding DashboardPicker component (#18811)\n * Git: Precomit hook slimmed down\n * DataSourceSettings: Fixed issue changing data source name,\n fixes #18660 (#18826)\n * Prometheus: Fixed Prometheus query editor error (plus new\n ErrorBoundaryAlert component) (#18838)\n * Explore: Style panel containers (#18834)\n * Snapshot: Fix http api (#18830)\n * Open new window when exploring panel metrics (#18802)\n * Release: update latest.json\n * Docs: Update changelog with v6.3.5 issues (#18827)\n * Build: Update ua-parser/uap-go (#18788)\n * Build: Use the latest build container which has go 1.12.9\n (#18807)\n * DataFrame: split DataFrameHelper into MutableDataFrame\n and FieldCache (#18795)\n * MixedDatasource: don't filter hidden queries before\n sending to datasources (#18814)\n * Enterprise: add dependencies for upcoming features\n (#18793)\n * Editor: Fixes issue where only entire lines were being\n copied (#18806)\n * Explore: Fixed query status issue (#18791)\n * DashboardMigrator: Fixed issue migrating incomplete panel\n link models (#18786)\n * Explore: Fixes query hint issues (#18803)\n * Build: Optional skipping of typescript checking in dev\n bundler (#18772)\n * Docs: Improve API tutorial intro content and readability\n (#18762)\n * Panels: Destroy panel model when recreating repeated\n panels (#18799)\n * Singlestat: Various fixes to singlestat and DataFrame\n (#18783)\n * Explore: Fixed issue in PanelQuery state arround\n cancellation (#18771)\n * Going to Explore from a panel with mixed data sources now\n works (#18784)\n * Changelog update (#18780)\n * Explore: Add memoization and remove unused props (#18775)\n * Prometheus: Changes brace-insertion behavior to be less\n annoying (#18698)\n * Datasource: Support min time interval input in ms (#18719)\n * Explore: Use PanelQueryState to handle querying (#18694)\n * Chore: Improve err message for notifications (#18757)\n * @grafana/toolkit: add package versions to the ci report\n (#18751)\n * @grafana/data: Matchers and Transforms (#16756)\n * Docs: Document LDAP config reload in admin http api\n (#18739)\n * center NoDataSourceCallToActionCard in Explore (#18752)\n * DataLinks: enable data links in Gauge, BarGauge and\n SingleStat2 panel (#18605)\n * DashboardDatasource: reuse query results within a\n dashboard (#16660)\n * Plugins: show a clear error on the plugin page when it\n failed to load (#18733)\n * Chore: Use ruleId instead of alertId as log keyword\n (#18738)\n * @grafana/data: improve the CircularVector api (#18716)\n * QueryEditor: check if optional func toggleEditorMode is\n provided (#18705)\n * Emails: remove the yarn.lock (#18724)\n * OAuth: Support JMES path lookup when retrieving user email\n (#14683)\n * Emails: resurrect template notification (#18686)\n * Email: add reply-to and direct attachment (#18715)\n * Dashboard: Adds Logs Panel (alpha) as visualization option\n for Dashboards (#18641)\n * Heatmap: Add Cividis and Turbo color schemes (#18710)\n * Units: add counts/sec (cps) and counts/min (cpm) in\n Throughput (#18702)\n * Dev Docker: Use golang:1.12.9-alpine to prevent glibc\n mismatch. (#18701)\n * Docs: Fix broken link for the Grafana on RHEL or Ubuntu\n tutorial (#18697)\n * Fixes several usability issues with QueryField component\n (#18681)\n * convert teams section of user profile to react (#18633)\n * Singlestat/Gauge/BarGauge: Improvements to decimals logic\n and added test dashboard (#18676)\n * Emails: Change text (#18683)\n * Streaming: improve JSDocs for DataSourceAPI streaming\n support (#18672)\n * TimeSrv: Enable value time windowing in TimeSrv (#18636)\n * Explore: Fixes so Show context shows results again\n (#18675)\n * Graph: Updated y-axis ticks test dashboard (#18677)\n * Add typings to package.json in packages (#18640)\n * Plugins: better warning when plugins fail to load (#18671)\n * SingleStat2: save options to defaults not override\n (#18666)\n * Packages: Fix path import from grafana/data (#18667)\n * SingleStat: use DataFrame results rather than\n TimeSeries/TableData (#18580)\n * TestData: attach labels to series results (#18653)\n * Singlestat: Disable new singlestat gauge usage (#18610)\n * Explore: Fixes query field layout in splitted view for\n Safari browsers (#18654)\n * MSI: new long file names are causing error building MSI\n (#18646)\n * Auth: change the error HTTP status codes (#18584)\n * Refactor: EmptyListCTA (#18516)\n * Build: Upgrade to go 1.12.9 (#18638)\n * Chore: Revert React 16.9.0 bump (#18634)\n * Azure Monitor and Log Analytics converted and separated\n into components (#18259)\n * Rewrite user profile edit to react (#17917)\n * Docs: remove codecov badge (#18623)\n * Prometheus: Prevents panel editor crash when switching to\n Prometheus datasource (#18616)\n * Chore: Rename Popper to Popover (#18543)\n * SingleStat: add a gauge migration call to action button in\n the editor (#18604)\n * Build: update revive dependency (#18585)\n * LDAP: multildap + ldap integration (#18588)\n * Docker: switch docker image to alpine base with phantomjs\n support (#18468)\n * Backend: Adds support for HTTP/2 (#18358)\n * Explore: Fixes error when switching from prometheus to\n loki data sources (#18599)\n * TimePicker: Set time to to 23:59:59 when setting To time\n using calendar (#18595)\n * Prometheus: Return labels in query results (#18535)\n * Docs: Update changelog and docs for annotation region\n change (#18593)\n * Refactor: move KeyValue and deprecation warning to\n @grafana/data (#18582)\n * Annotations: use a single row to represent a region\n (#17673)\n * Docs: Update upgrading guide (#18547)\n * Docs: Adds tests requirement to bugs checklist (#18576)\n * DataFrame: convert from row based to a columnar value\n format (#18391)\n * Packages: Temporarily skip canary releases if packages\n build fail (#18577)\n * Update latest.json to latest stable version (#18575)\n * Docs: Update changelog for v6.3.3 (#18569)\n * Graph: Fixed issue clicking on series line icon (#18563)\n * grafana/toolkit: Unpublish previous 'next' version when\n releasing a new one (#18552)\n * Toolkit: write PR report to a folder with the circle build\n number (#18560)\n * CI: Fail build if yarn.lock is not up to date (#18555)\n * Chore: Updates react-dependant packages to address react\n warnings (#18549)\n * Prometheus: Fix regression of rerunning query on\n legend/interval change (#18147)\n * Explore/Prometheus: More consistently allows for\n multi-line queries (#18362)\n * Login: Fixes undefined redirect (#18545)\n * Plugins: expose react-redux, redux (#18501)\n * TimeSeries: assume values are all numbers (#18540)\n * Login: Angular to React (#18116)\n * InfoTooltip: Info icon with tooltip (#18478)\n * Annotations: Fix failing annotation query when time series\n query is cancelled (#18532)\n * remotecache: support SSL with redis (#18511)\n * QueryData: Handle that response data must be array\n (#18504)\n * React: Rename deprecated UNSAFE_componentWillReceiveProps\n (#18526)\n * Explore: Replaces TimeSeries with GraphSeriesXY (#18475)\n * API: Restrict anonymous user information access (#18422)\n * Fix: failing build after React bump (#18514)\n * strictNullChecks: First batch (#18390)\n * Chore: bump React to 16.9.0 (#18502)\n * Docs: Adds a new security section (#18508)\n * Docs: Update issue triage doc with external PRs section\n (#18464)\n * Typo: fix typo in processDataFrame.ts comment (#18492)\n * Explore: Fix loading error for empty queries (#18488)\n * Fix: Fixes stripping of $d in Explore urls (#18480)\n * grafana/ui: fix toTimeTicks error (#18448)\n * Docs: Adds details to Pull Request Checklist (#18471)\n * DataLinks: respect timezone when displaying datapoint's\n timestamp in graph context menu (#18461)\n * Chore: strictNullChecks, ColoringEditor and\n time_region_manager (#18442)\n * Backend: Do not set SameSite cookie attribute if\n cookie_samesite is none (#18462)\n * DataLinks: Apply scoped variables correctly (#18454)\n * DataLinks: Use datapoint timestamp correctly when\n interpolating variables (#18459)\n * API: Minor fix for team creation endpoint when using API\n key (#18252)\n * Login: Adjust space between skip and its icon (#18407)\n * Docs: Update Auth Proxy documentation (#18444)\n * Docs: Minor Readme update (#18438)\n * OAuth: return GitLab groups as a part of user info (enable\n team sync) (#18388)\n * Fix: Avoid glob of single-value array variables (#18420)\n * DataLinks: Enable multiple data links per panel (#18434)\n * Markdown: Handle undefined/null strings (#18433)\n * Docs: Update changelog and latest with 6.3.1 and 6.3.2\n releases (#18437)\n * Explore: Fixes Legend overflow in splitted view (#18396)\n * Docs: changelog for docker 6.3 (#18429)\n * Panels: Fixed crashing dashboards with panel links\n (#18430)\n * DataFrame: remove dateFormat (#18424)\n * backend: null.Float NaN -> null for json marshal (#18284)\n * Frontend: adds folder name in home dash choose menu\n (#18346)\n * TestData: Query variable support (nested + glob queries)\n (#18413)\n * Update latest.json (#18417)\n * Changelog 6.3.0 (#18414)\n * PanelLinks: Fix render issue when there is no panel\n description (#18408)\n * e2e tests: Make pageObjects mandatory (#18406)\n * Documentation: document the 'Mixed' Data Source (#18398)\n * Explore: Moves GraphSeriesXY and DisplayValue to\n grafana/data (#18400)\n * Explore: Fixes incorrect handling of utc in timeEpic\n (#18386)\n * Postgres: Add support for scram sha 256 authentication\n (#18397)\n * Update behind_proxy.md with linkback to nginx.com (#18150)\n * Do not set SameSite for OAuth cookie if cookie_samesite is\n None (#18392)\n * Gauge/BarGauge: Rewrite of how migrations are applied\n (#18375)\n * MSSQL: Change connectionstring to URL format to fix using\n passwords with semicolon (#18384)\n * CloudWatch: Fix alerting for queries with Id (using\n GetMetricData) (#17899)\n * Chore: Update strictNullChecks error limit (#18387)\n * Chore: Fixes some strict errors (#18381)\n * Graph: Improved graph tick decimals logic arround\n significant digits (#18370)\n * CI: Added metric to track strict null erros (#18379)\n * Auth: Do not search for the user twice (#18366)\n * grafana/toolkit: improve CI task (#18189)\n * Alerting: Also include configured AlertRuleTags in\n Webhooks (#18233)\n * Loki: Apply start parameter to speed up test query\n (#18266)\n * Docs: Changelog 6.3.0 beta4 (#18359)\n * Select: Fixes issue where ToggleButtonGroup overlapped\n DataSourcePicker in Firefox (#18361)\n * SignIn: Update redirect on reroute (#18360)\n * Gauge/BarGauge: Support decimals for min/max\n toFloatOrUndefined (#18368)\n * FieldDisplay: Return field defaults when there are no data\n (#18357)\n * Auth: introduce more tests for middleware module (#18365)\n * Docs: updated latest.json (#18363)\n * LDAP: nitpicks (#18309)\n * Docs: mention unsupported versions of PostgreSQL (#18307)\n * Navigation: Fixed double settings menus (#18349)\n * Build: allow bash to expand the wildcard (#18354)\n * Gauges: Fixes error when mappings array was undefined\n (#18353)\n * Frontend: Fixes progress tracker close button to use\n `$link-hover-color` (#18352)\n * Frontend: Fixes hard-coded font-weight properties to use\n variables (#18350)\n * LDAP: Align ldap example with the devenv testdata (#18343)\n * Auth: consistently return same basic auth errors (#18310)\n * cli: fix for recognizing when in dev mode. (#18334)\n * QueryEditors: Fixes flakey text edit mode toggle (#18335)\n * Refactor: use data rather than series in stream\n callback(#18126)\n * Keybindings: Disable on login url (#18331)\n * Fix failing end to end tests job for release (#18323)\n * Fix OAuth error due to SameSite cookie policy (#18332)\n * Chore: noImplictAny no errors left (#18303)\n * [Shortcuts] Fixes shortcuts for moving time range\n backwards and forwards (#18305)\n * TablePanel: Remove scroll option on TablePanel (#18318)\n * Keyboard Shortcuts: Sign in to enable them (#18271)\n * GitHub Templates: Pull Request Template update (#18300)\n * Auth Proxy: Include additional headers as part of the\n cache key (#18298)\n * grafana/toolkit: support windows paths (#18306)\n * Chore: noImplicitAny Sub 500 errors (#18287)\n * Plugins: return a promise for loadPluginCss (#18273)\n * Utils: avoid calling console.warn() too often for\n deprecation warnings (#18269)\n * CLI: Allow installing custom binary plugins (#17551)\n * Docs: Update link to example app (#18253)\n * GettingStarted: Skip Query for getting started (#18268)\n * v6.3.0-beta2 is latest testing (#18283)\n * Release: Changelog update with v6.3.0-beta2 (#18281)\n * Chore: Upgrades typescript to version 3.5 (#18263)\n * docs: team sync (#18239)\n * SAML: Only show SAML login button on Enterprise version\n (#18270)\n * Permissions: Show plugins in nav for non admin users but\n hide plugin configuration (#18234)\n * CI: Change target branch in CI task trigger-docs-update\n (#18255)\n * Plugins: Include build number and PR in metadata (#18260)\n * Run End-to-End tests for release builds (#18211)\n * DataLinks: Fixed interpolation of series name, fixes\n #18250 (#18251)\n * Timerange: Fixes a bug where custom time ranges didn't\n respect UTC (#18248)\n * Loki: Remove prefetching of default label values (#18213)\n * Build: fix use of env vars in parentheses execs (#18249)\n * TimePicker: Increase max height of quick range dropdown\n (#18247)\n * TimePicker: Fixed css issue casued by CSS Optimizer\n (#18244)\n * Revert 'Timerange: Fixes a bug where custom time ranges\n didn't respect UTC (#18217)' (#18246)\n * Timerange: Fixes a bug where custom time ranges didn't\n respect UTC (#18217)\n * LDAP: improve POSIX support (#18235)\n * Instrumentation: Add failed notifications metric (#18089)\n * Docs: update links to sample plugins (#18240)\n * Build: Removed webpack from default grunt task, fixes\n #18232 (#18242)\n * Packages: update package.json files (#18173)\n * Replaced ubuntu:latest with ubuntu:18.04; specific image\n version to make grafana build images consistent (#18224)\n * Build: correct verify script (#18236)\n * remote_cache: Fix redis connstr parsing (#18204)\n * Auth: do not expose disabled user disabled status (#18229)\n * Build: Introduce shellcheck (#18081)\n * Docs: Update documentation with new SAML features (#18163)\n * Typo: fix threshodsWithoutKey (#18228)\n * alerting: more specific error when missing threshold\n (#18221)\n * Graph: fix time label description for datalink suggestions\n (#18214)\n * Explore: Reduce default time range to last hour (#18212)\n * alerting: return err when SetAlertState fails to save to\n sql (#18216)\n * PhantomJS: Fixes rendering on Debian Buster (#18162)\n * Docs: sudo is required on the apt-key add not on wget\n (#18180)\n * Build: watch and dev mode webpack improvements (#18153)\n * Plugin: AzureMonitor - Reapply MetricNamespace support\n (#17282)\n * Refactor: move end-to-end test infrastructure to\n @grafana/toolkit (#18012)\n * SAML: add auth provider label (#18197)\n * Plugins: avoid app importDashboards() NPE (#18128)\n * Plugins: fix previous commit, output 'build' property in\n json\n * SAML: add metrics (#18194)\n * Plugins: add build info to plugin metadata (#18164)\n * datasource: testdata - add predicatable csv wave scenario\n (#18183)\n * Docs: SAML idp_metadata_url option (#18181)\n * Panel: Show error in edit mode (#18175)\n * E2E: saving a dashboard should wait for success (#18171)\n * @grafana/toolkit: integrate latest improvements (#18168)\n * Build: change definition of the vars in makefile (#18151)\n * noImplicitAny: Down approx 200 errors (#18143)\n * datasource: testdata - add predictable pulse scenario\n (#18142)\n * Minor 6.3.0 beta1 changes (#18048)\n * Docs: SAML (#18069)\n * Docs: prioritize use of `make run` to `bra` (#18154)\n * Fix provision alerts generation script (#18145)\n * SQLStore: use bool pointer instead of string (#18111)\n * Registry: add a reusable function registry (#17047)\n * grafana/toolkit: test improvements and show stats (#18137,\n #18138)\n * Metrics: use consistent naming for exported variables\n (#18134)\n * Build: copy .browserslistrc to node build container\n (#18141)\n * @grafana/toolkit: HtmlWebpackPlugin when in watch mode\n (#18130)\n * update yarn.lock (#18125)\n * grafana/toolkit: prettier and lint fix in dev mode\n (#18131)\n * Chore: Fix about 200 noImplicitAny errors (#18067)\n * Build: allow dynamically change docker image (#18112)\n * grafana/toolkit: update the way config is being passed to\n jest cli (#18115)\n * Build: detect changes to packages based on the git diff\n (#18118)\n * Build: Release packages under next tag when changes\n detected on master (#18062)\n * SQLStore: allow to look for `is_disabled` flag (#18032)\n * Metrics: add LDAP active sync summary metric (#18079)\n * Docs: correct issue_triage.md texts\n * ValuMapping: start with some values (#18092)\n * Docs: Simplify download links & instructions and make\n download link clearer (#18090)\n * FieldDisplay: move threshold and mapping to Field (#17043)\n * InfluxDB: Enable interpolation within ad-hoc filter values\n for InfluxDB data source (#18077)\n * Docs: Move data links down (#18072)\n * grafana/toolkit: improve CircleCI integration (#18071)\n * Build: consistently reference go binary (#18059)\n * devenv: Fix typo in nginix docker for mac (#18068)\n * noImplicitAny: 1670 errors (#18035)\n * Add missing pull requests to Changelog (#18061)\n * provisioning: escape literal '$' with '$$' to avoid\n interpolation (#18045)\n * grafana/toolkit: improve CircleCI stubs (#17995)\n * Docs: clarify the ttl units (#18039)\n * Update docs readme for running MySQL/Postgres tests\n * Auth: Duplicate API Key Name Handle With Useful HTTP Code\n (#17905)\n * Chore: upgrade node-sass to 4.12.0 (#18052)\n * API: Minor fix for nil pointer when trying to log error\n during creating new dashboard via the API (#18003)\n * Chore: update lodash (#18055)\n * Update latest.json (#18043)\n * Update Changelog (#18042)\n * Chore: bump master version number to 6.4.0-pre\n * Explore/Loki: Display live tailed logs in correct order\n (#18031)\n * Fix unused variable errors (#18030)\n * Docs: First draft of whats new in 6.3 (#17962)\n * Packages: create shared tsconfig.json (#18010)\n * CLI: Fix encrypt-datasource-passwords fails with sql error\n (#18014)\n * LDAP: Adds bind before searching LDAP for non-login cases.\n (#18023)\n * Users: show badges for each auth provider (#17869)\n * Loki: Don't use _ numerical separator (#18016)\n * grafana-cli: allow installing plugins from a local zip\n file (#18021)\n * grafana/toolkit: Copy or extract static files (#18006)\n * Packages: Use lerna for release orchestration (#17985)\n * AnnoList: add alpha annotations list plugin (#17187)\n * grafana/toolkit: Use babel-plugin-angularjs-annotate\n (#18005)\n * CSV Export: Timezone based on dashboard setting (#18002)\n * LDAP: Adds back support for single bind. (#17999)\n * Reducers: consistent result for first/last reducer\n shortcut (#17911)\n * SAML: Show SAML login button even if OAuth is disabled\n (#17993)\n * Fix: Break redirect loop if oauth_auto_login = true and\n OAuth login fails (#17974)\n * Refactor: fix range util imports (#17988)\n * Refactor: move dom utils to @grafana/ui (#17976)\n * Docs: Documents new features available with Loki data\n source in Explore (#17984)\n * Prometheus: added time range filter to series labels query\n (#16851)\n * Explore: Adds support for new loki 'start' and 'end'\n params for labels endpoint (#17512)\n * Chore: Removes custom debounce utility in favor of\n lodash/debounce (#17977)\n * Api: Fix auth tokens returning wrong seenAt value (#17980)\n * Refactor: move more files to @grafana/data (#17972)\n * @grafana/data: export dateMath and rangeUtil (#17971)\n * Refactor: move some files to @grafana/data (#17952)\n * noImplicitAny: Azure Monitor (#17966)\n * grafana/toolkit: initial CI task and various small\n improvements (#17914)\n * First version of prettier checks in toolkit (#17964)\n * LDAP: finishing touches (#17945)\n * Graphite: Refactor lexer and parser (#17958)\n * noImplicitAny: Datasource files, under 2500 (#17959)\n * Auth: saml enabled check. (#17960)\n * Auth: SAML login button. (#17932)\n * grafana/toolkit: Add support for extensions styling\n (#17938)\n * Datasource: Refactor Graphite to class (#17942)\n * SAML: Configuration defaults, examples and dependencies\n (#17954)\n * OAuth: deny login for disabled users (#17957)\n * Build: Adds pre-commit check that fails if node versions\n are not synced (#17820)\n * Docs: minor ha-setup edit (#17950)\n * Docs: Added very basic docs about revoking user sessions\n (#17931)\n * Docs: Updates documentation regarding logs integration in\n Explore (#17896)\n * noImplicitAnys: Fix InfluxDB type issues #17937)\n * TimePicker: align position between dashboard and explore\n (#17940)\n * AzureMonitor: remove duplicate query logic on the frontend\n (#17198)\n * UserProfilePage: Fix team avatar urls #17866 (#17930)\n * Explore: Introduces storage keys for last used data source\n on per-orgId basis (#17934)\n * Docs: added version notice to new ldap feature docs\n (#17929)\n * Explore: Restricts query text edit toggle to metrics mode\n (#17921)\n * grafana/runtime: Expose SystemJS from @grafana/runtime\n (#17927)\n * Templating: Correctly display __text in multi-values\n variable after refresh (#17918)\n * grafana/toolkit: bundle plugins with webpack (#17850)\n * Explore: Adds orgId to URL for sharing purposes (#17895)\n * grafana/toolkit: copy sass files (#17888)\n * ChangePassword: Rewrite change password page to react\n (#17811)\n * AngularPanels: Fixed loading state indication for angular\n panels (#17900)\n * Explore: Adds support for toggling text edit mode in\n explore (#17870)\n * LDAP: Divide the requests (#17885)\n * Build: fixes missing shebang in release tagging script.\n (#17894)\n * Teams: show proper label for each auth provider (#17860)\n * Logging: Login and Logout logging actions (#17760)\n (#17883)\n * Loki: Adds comment explaining usage of RFC3339Nano string\n (#17872)\n * Explore: Query rows are now reset when changing data\n sources (#17865)\n * Codestyle: add guidelines for removing the m alias for\n models (#17890)\n * Docs: How to work with themes (#17876)\n * Docs: Fix developing plugins index page (#17877)\n * StatsPicker: Fix multiple value input layout etc. (#17827)\n * Chore: Build grafana-cli when running bra run (#17788)\n * Build: use golangci-lint as a make command (#17739)\n * Explore: Log highlights only update when user stops typing\n (#17845)\n * Loki: getHighlighterExpressionsFromQuery Returns null if\n filter term is not quoted (#17852)\n * Docs upgrading deps (#17657)\n * Testing: Include BatchRevoke for all tokens in the fake.\n (#17728)\n * Refactor: rename SeriesData to DataFrame (#17854)\n * devenv: switch OpenTSDB docker block (#17849)\n * Devenv:LDAP: couple simplifications for LDAP (#17807)\n * Login: divide login errors by pkg and service (#17835)\n * Auth Proxy: Respect auto_sign_up setting (#17843)\n * OAuth: return github teams as a part of user info (enable\n team sync) (#17797)\n * noImplicitAny: Sub 3000 errors (#17821)\n * TimePicker: Style and responsive fixes, restored dashboard\n settings (#17822)\n * Templating: Correctly display __text in multi-values\n variable (#17840)\n * Elasticsearch: Fix default max concurrent shard requests\n (#17770)\n * Explore: Fix filter by series level in logs graph (#17798)\n * Docs: Add v6.3 version notes and encryption format\n information (#17825)\n * Graphite: use POST for /metrics/find requests (#17814)\n * Dashboard: Force update after dashboard resize (#17808)\n * Toolkit: moved front end cli scripts to separate package\n and introduced very early version of plugin tools\n * Explore: Uses new TimePicker from Grafana/UI (#17793)\n * Explore: Uses RFC3339Nano string to retrieve LogRow\n contexts from Loki API (#17813)\n * noImplicitAny: Lower count to about 3450 (#17799)\n * Graphite: Fixes issue with seriesByTag & function with\n variable param (#17795)\n * noImplicitAny: Reduce errors to 3800-ish (#17781)\n * Graphite: remove feature that moves alias function last\n (#17791)\n * Explore: Adds URL support for select mode (#17755)\n * TestData: add option to increase the number of test\n streams (#17789)\n * Usage Stats: Update known datasource plugins (#17787)\n * Docs: Adds section on Querying Logs for Elasticsearch\n (#17730)\n * Docs: Adds section on Querying Logs for InfluxDB (#17726)\n * Devenv: makes the grafana users default for saml. (#17782)\n * Explore: Displays only one Time column as configured in\n TimeZone settings (#17775)\n * Markdown: Replace rendering library (#17686)\n * ApiKeys: Fix check for UTC timezone (#17776)\n * Prometheus: Minor style fix (#17773)\n * Docs: fixed notifications table\n * Auth: Allow expiration of API keys (#17678)\n * 17278 prometheus step align utc (#17477)\n * Docs: Update release guide (#17759)\n * release: update latest.json to v6.2.5 (#17767)\n * release: 6.2.5 changelog (#17766)\n * Fix typo s/Applicaiton/Application/ in error messages\n (#17765)\n * UserAdmin: UI for disabling users (#17333)\n * API: get list of users with additional auth info (#17305)\n * TimePicker: fixed minor issues with new timepicker\n (#17756)\n * Explore: Parses and updates TimeSrv in one place in\n Explore (#17677)\n * @grafana/ui: release (#17754)\n * Password: Remove PasswordStrength (#17750)\n * Devenv:SAML: devenv block with saml test app (#17733)\n * LDAP:Docs: add information on LDAP sync feature and update\n LDAP sync default (#17689)\n * Graph: Add data links feature (click on graph) (#17267)\n * Explore: Changes LogsContainer from a PureComponent to a\n Component (#17741)\n * Chore: Remove tether and tether drop dependency in\n grafana/ui (#17745)\n * noImplicitAny: time region manager etc. (#17729)\n * Panel: Fully escape html in drilldown links (was only\n sanitized before) (#17731)\n * Alerting: Improve alert rule testing (#16286)\n * Elasticsearch: Visualize logs in Explore (#17605)\n * Grafana-CLI: Wrapper for `grafana-cli` within RPM/DEB\n packages and config/homepath are now global flags (#17695)\n * Add guidelines for SQL date comparisons (#17732)\n * Docs: clarified usage of go get and go mod (#17637)\n * Project: Issue triage doc improvement (#17709)\n * Improvement: Grafana release process minor improvements\n (#17661)\n * TimePicker: New time picker dropdown & custom range UI\n (#16811)\n * RemoteCache: redis connection string parsing test (#17702)\n * Fix link in pkg/README (#17714)\n * Dashboard: Use Explore's Prometheus editor in dashboard\n panel edit (#15364)\n * Settings: Fix typo in defaults.ini (#17707)\n * Project: Adds a security policy (#17698)\n * Project: Adds support resource docs (#17699)\n * Document issue triage process (#17669)\n * noImplicitAny: slate (#17681)\n * config: fix connstr for remote_cache (#17675)\n * Explore: Improves performance of Logs element by limiting\n re-rendering (#17685)\n * Docs: Flag serve_from_sub_path as available in 6.3\n (#17674)\n * @grafana/runtime: expose config and loadPluginCss (#17655)\n * noImplicitAny: Fix basic errors (#17668)\n * Docs: Update readme to reference correct repo (#17666)\n * LDAP: small improvements to various LDAP parts (#17662)\n * Chore: Fix noImplicitAny issues (#17636)\n * AddPanel: Fix issue when removing moved add panel widget\n (#17659)\n * TablePanel: fix annotations display (#17646)\n * middleware: fix Strict-Transport-Security header (#17644)\n * Build: add @grafana/data package (#17436)\n * Update latest.json for 6.2.4\n * Update latest.json for 6.2.3\n * Update the changelog with v6.2.4 information\n * Build: Updates node image for e2e job (#17632)\n * Explore: Prometheus query errors now show (#17470)\n * Chore: Lowered implicit anys limit to 4599 (#17631)\n * noImplicitAny: SingleStat panel (#17616)\n * Build: Update node image for test-frontend job step\n (#17628)\n * grafana-cli: Fix receiving flags via command line (#17617)\n * Typescript: Removes implicit anys (#17625)\n * Explore: Removes minus button in adhoc query field\n (#17573)\n * Correct 6.2.3 release date (#17624)\n * codestyle: styleguide and arch for grafanas backend\n (#17545)\n * JsonTree: fix jsonTree angular binding (#17608)\n * HTTPServer: Fix X-XSS-Protection header formatting\n (#17620)\n * Changelog: Add known issues for v6.2.3 (#17615)\n * Update the changelog with v6.2.3 information (#17612)\n * Refactor buttons (#17611)\n * Tests: Replaces e2e tests truth screenshot (#17609)\n * cli: grafana-cli should receive flags from the command\n line (#17606)\n * AppPlugin: Fix load legacy plugin app (#17574)\n * Typescript: A batch of implicit any fixes (#17590)\n * RefreshPicker: Handle empty intervals (#17585)\n * Docker: Switch base to ubuntu:latest (#17066)\n * SQLStore: extend `user.SearchUsers` method (#17514)\n * Explore: Tag and Values for Influx are filtered by the\n selected measurement (#17539)\n * ldap: makes mocks available for testing. (#17576)\n * Devenv: Add nginx proxy for mac (#17572)\n * Graph: Added new fill gradient option (#17528)\n * Typescript: Reduce implicit any errors (#17550)\n * SinglestatPanel: Manages when getColorForValue() function\n returns null value. Closes #9747 (#17552)\n * LDAP: refactoring (#17479)\n * Elasticsearch: Fix empty query request to send properly\n (#17488)\n * SinglestatPanel: fix min/max config in singlestat\n sparklines (#17543)\n * AuthProxy: Optimistic lock pattern for remote cache Set\n (#17485)\n * Explore: Includes context parameter when invoking\n getExploreState() from Prometheus datasource (#17569)\n * Tests: Replaces truth image (#17570)\n * Fix: Fixes merge conflict (#17568)\n * Build: Fix failing e2e tests and implicit any check\n (#17567)\n * Explore: Fixes implicit any error in\n AdHocFilterField.test.tsx (#17565)\n * Fix so that correct cache is provided to di registry\n (#17566)\n * Build: Upgrades to golang 1.12.6 (#17542)\n * Explore: Adds ability to remove filter from\n <AdHocFilterField /> key dropdown (#17553)\n * codestyle: moves cache to infra (#17519)\n * Docs feedback: installation/debian.md (#17563)\n * Chore: Lowered implicit anys limit to 5131 (#17562)\n * Influx: Reset logs query field on clear all and clear row\n in explore (#17549)\n * Devenv: Add telegraf with log parsing to influxdb docker\n block (#17546)\n * Explore: Runs query when measurement/field and pairs are\n selected in logs mode for influx (#17523)\n * Influx: Adds start page for logs in Explore (#17521)\n * OAuth: Fix for wrong user token updated on OAuth refresh\n in DS proxy (#17541)\n * middleware: add security related HTTP(S) response headers\n (#17522)\n * Docs: Clarifies from which version the Patch VERB is\n available (#17532)\n * Chore: Hugo upgrade (#17494)\n * Codestyle: Fix some goconst issues (#17530)\n * Docs: Adds clarification to the provider name for\n provisioned dashboards (#17524)\n * Singlestat: Add y min/max config to singlestat sparklines\n (#17527)\n * Explore: Clear queries when switching between metrics and\n logs (#17505)\n * 16223 user auth token list and revoke (#17434)\n * Feature: Parse user agent string in user auth token api\n response (#16… (#17504)\n * Tests: Adds better logging to e2e tests (#17511)\n * Codestyle: Add typecheck and unused linters (#17491)\n * Docs: Add CircleCI step trigger-docs-update (#17481)\n * remote_cache: Fix redis (#17483)\n * auth_proxy: non-negative cache TTL (#17495)\n * Explore: Adds LogQueryField for InfluxDb (#17450)\n * sqlstore: clean quota and user_auth_tokens when removing\n users (#17487)\n * Prometheus: Preallocate data for Prometheus backend\n response parsing (#17490)\n * Docs: Fix a typo in Elasticsearch docs (#17492)\n * gtime: some code style refactoring (#17369)\n * Build: make bra a local dependency (#17414)\n * Add tests for multildap (#17358)\n * RefreshPicker: SetInterval comments to rxjs code added\n (#17404)\n * metrics: expose stats about roles as metrics (#17469)\n * Explore: Handle newlines in LogRow Highlighter (#17425)\n * Alerting: Add tags to alert rules (#10989)\n * Config: Add comment before log_queries in sample ini file\n (#17462)\n * CLI: Search perf test data (#17422)\n * Prometheus: Use overridden panel range as $_range instead\n of dashboard range (#17352)\n * Update latest (#17456)\n * NavModel: Fixed page header ui tabs issues for some admin\n pages (#17444)\n * Update changelog for 6.2.2 (#17452)\n * PluginConfig: Fixed plugin config page navigation when\n using subpath (#17364)\n * Tracing: allow propagation with Zipkin headers (#17009)\n * Perf: Fix slow dashboards ACL query (#17427)\n * Explore: Fixes crash when parsing date math string with\n whitespace (#17446)\n * Cloudwatch: Add AWS DocDB metrics (#17241)\n * Provisioning: Support folder that doesn't exist yet in\n dashboard provisioning (#17407)\n * Codestyle: Fix govet issues (#17178)\n * @grafana/runtime: expose location update (#17428)\n * Fix: Adds context to list of keys that are not part of\n query (#17423)\n * Prometheus: Correctly escape '|' literals in interpolated\n PromQL variables (#16932)\n * Explore: Makes it possible to use a different query field\n per mode (#17395)\n * DataSourceApi: remove ExploreDataSourceApi (#17424)\n * Fix: change angular loader paths (#17421)\n * Build: specify build flag for `docker-compose up` (#17411)\n * Add a @grafana/runtime package with backendSrv interface\n (#16533)\n * Database: Initialize xorm with an empty schema for\n postgres (#17357)\n * docs: configuring custom headers in the dataproxy (#17367)\n * Explore: Queries the datasource once per run query and\n uses DataStreamObserver (#17263)\n * Feature: Adds redux action logging toggle from url params\n (#17368)\n * Build: Adds e2e tests back to master workflow with better\n error messages and with artifacts (#17374)\n * Explore: Handle datasources with long names better in ds\n picker (#17393)\n * Annotations: Improve annotation option tooltips (#17384)\n * InfluxDB: Fixes single quotes are not escaped (#17398)\n * Chore: Bump axios to 0.19.0 (#17403)\n * Alerting: golint fixes for alerting (#17246)\n * Batch disable users (#17254)\n * Chore: Remove unused properties in explore (#17359)\n * MySQL/Postgres/MSSQL: Add parsing for day, weeks and year\n intervals in macros (#13086)\n * Security: Prevent csv formula injection attack (#17363)\n * LDAP: remove unused function (#17351)\n * Enterprise: remove gofakeit dep (#17344)\n * Explore: Update time range before running queries (#17349)\n * Build(package.json): improve npm commands (#17022)\n * Chore: upgrade webpack analyser (#17340)\n * NewDataSourcePage: Add Grafana Cloud link (#17324)\n * CloudWatch: Avoid exception while accessing results\n (#17283)\n * Build: ignore absence of docker-compose (#17331)\n * Build(makefile): improve error handling (#17281)\n * adds auth example for the cli cherrypick task (#17307)\n * docs: remove my email from docs examples (#17325)\n * 16365 change clashing variable names (#17140)\n * Frontend/SeriesData: Fix for convert SeriesData to Table\n format (#17314)\n * Frontend/utils: Import has only from lodash (#17311)\n * Frontend/utils: Add missing type (#17312)\n * update v6.2-beta1 changelog with missing pr (#17308)\n * explore: don't parse log levels if provided by field or\n label (#17180)\n * HTTP Server: Serve Grafana with a custom URL path prefix\n (#17048)\n * update latest.json to latest stable version (#17306)\n * release: v6.2.1 changelog update (#17303)\n * Build: Removes e2e-tests from Grafana master workflow\n (#17301)\n * Build(devenv): correct the context issue (#17291)\n * Build: Enables end-to-end tests in build-master workflow\n (#17268)\n * Gauge/BarGauge: font size improvements (#17292)\n * Chore: Update jquery to 3.4.1 in grafana ui (#17295)\n * CLI: Add command to migrate all datasources to use\n encrypted password fields (#17118)\n * Auth Proxy: Log any error in middleware (#17275)\n * devenv: metricbeat and kibana for elasticsearch 7 block\n (#17262)\n * LDAP: reduce API and allow its extension (#17209)\n * database: retry transaction if sqlite returns database is\n locked error (#17276)\n * Tech: Update jQuery to 3.4.1 (#17290)\n * fix typo in basic_concepts.md (#17285)\n * Feature: do dev environment via makefile (#17136)\n * devenv: adds auth proxy load test (#17271)\n * Table: various minor fixes (alpha panel) (#17258)\n * Singlestat: fixes issue with value placement and line\n wraps (#17249)\n * Devenv: Update Graphite port in dev datasources (#17255)\n * Chore: bump grafana-ui version (#17256)\n * Release: Updated latest.json\n * Auth: Logout disabled user (#17166)\n * docs: fixes typo in provisioning docs (#17248)\n * CloudWatch: Made region visible for AWS Cloudwatch\n Expressions (#17243)\n * Panel: Pass transparency prop down to React panels.\n (#17235)\n * Build: Fix filter for building msi during release (#17236)\n * DataSourcePlugin: Avoid anuglar injector if only one\n parameter (#17239)\n * Alerting: Support for configuring content field for\n Discord alert notifier (#17017)\n * Explore: Update the way Loki retrieve log context (#17204)\n * Docs: Fix grammar in docs (#17233)\n * LDAP: consistently name the LDAP entities (#17203)\n * Panels: Show Drilldown links in top-left corner of custom\n React panels (#17142)\n * Build: Fix final prompt for @grafana/ui npm publish\n confirmation\n * Docs: Updated versions selector\n * Docs: Example for multiple LDAP servers (#17216)\n * Release: Updated changelog\n * Release: updated changelog with v6.2 entries (#17201)\n * Search: removed old not working search shortcuts (#17226)\n * azuremonitor: revert to clearing chained dropdowns\n (#17212)\n * Search: changed how search filter on current folder works\n (#17219)\n * AzureMonitor: docs for multiple subscriptions (#17194)\n * Defer closing of files (#17213)\n * Docs: Add guidelines for PR/commit messages (#17190)\n * Users: Disable users removed from LDAP (#16820)\n * docs: what's new in v6.2 fixes (#17193)\n * DataSourceMeta: add an option to get hidden queries\n (#17124)\n * Panel: Apply option defaults on panel init and on save\n model retrieval (#17174)\n * BarGauge: Fix for negative min values (#17192)\n * Azuremonitor: multiple subscription support for alerting\n (#17195)\n * AppPlugin: add types for jsonData (#17177)\n * MSI: Generate sha256sum during MSI build process in\n circleci (#17120)\n * explore: fix null checks (#17191)\n * Fix: Fixes so new data is pushed during live tailing\n (#17189)\n * testdata: logs scenario (#17182)\n * testdata: scenarios returned are now sorted in a\n consistent way (#17181)\n * TablePanel: Check for table using keys (#17185)\n * Fix gosimple issues (#17179)\n * AppPlugin: add an init function (#17150)\n * Fix: Changes WebSocket protocol to wss:// for https\n (#17173)\n * alerting: golint fixes for alert notifiers. (#17167)\n * LDAP: add tests for initialBind (#17132)\n * Explore: Adds Live option for supported datasources\n (#17062)\n * alerting: fix a bunch of lint issues. (#17128)\n * chore: mocks plugin loader for DataSourceSettingsPage\n tests (#17157)\n * Release: Improved cherry pick task (#17087)\n * Explore: Fix selection/copy of log lines (#17121)\n * Explore: Fix empty space in toolbar on smaller devices\n (#17110)\n * Explore: display log line context (#17097)\n * Plugins: expose rxjs matching 6.4.0 (#17148)\n * Chore: fix codespell issue with build (#17144)\n * Feature: LDAP refactoring (#16950)\n * explore: fix issues when loading and both graph/table are\n collapsed (#17113)\n * explore: make sure datasource is added to target (#17116)\n * Fix: tighten revive exit code & make it happy (#17127)\n * GraphPanel: Don't sort series when legend table & sort\n column is not visible (#17095)\n * Chore: Update grafana-ui version to 6.2.0-alpha.0 (#17109)\n * add support for periodically reloading mysql client certs\n (#14892)\n * Chore: Deduplicate sqlstore transaction code (#17069)\n * Alertmanager: Replace illegal chars with underscore in\n label names (#17002)\n * Adjusted documentation for gcs to reflect the code\n (#16947)\n * fix: Initial url update in Explore should replace existing\n url history #17030 (#17061)\n * Explore: Allow switching between metrics and logs\n (#16959)\n * Chore: explore possibilities of using makefile (#17039)\n * Chore: Bump jest to 24.8.0 (#17094)\n * Chore: Bump ts-node to 8.1.0 (#17093)\n * Release: Updated changelog\n * backend: replace /pkg/errors with errutil (#17065)\n * Explore: Fixes filtering in Prometheus queries when\n clicking in Table (#17083)\n * Remotecache: Avoid race condition in Set causing error on\n insert. (#17082)\n * Build: Support publishing MSI to grafana.com (#17073)\n * InputDataSource: better empty value support (#17075)\n * Panels: Fixed alert icon position in panel header (#17070)\n * GraphPanel: use SeriesData directly (skip legacy\n transformation) (#17037)\n * Streaming: support streaming in MetricsPanelCtrl (#17034)\n * Gauge: Fix switching orientation issue when switching from\n BarGauge to Gauge (#17064)\n * serverlock: run tests async should be more linear time\n wise (#17059)\n * InfoPopover: Fixes transclude undefined error (#17063)\n * Dashboard: Fixes lazy loading & expanding collapsed rows\n on mobile (#17055)\n * fix: Azure Monitor adds missing closing div tag to query\n editor (#17057)\n * Chore: Use executable dir instead of pwd in CLI for isDev\n check (#16974)\n * Search: Set element height to 100% to avoid Chrome 74's\n overflow (#17054)\n * Docs: adds note about removing session storage (#17003)\n * Chore: remove use of `== false` (#17036)\n * Explore: use @grafana/ui legend (#17027)\n * tech: avoid alias for importing models in alerting\n (#17041)\n * DataSourcePlugin: support custom tabs (#16859)\n * Dashboard: Fixes scrolling issues for Edge browser\n (#17033)\n * SeriesData: remove color from Field (#17044)\n * chore: remove x character in explore\n * Dashboard: show refresh button in kiosk mode (#17032)\n * Devenv: Updated gauge test dashboard\n * Chore: reintroduce gosec (#17021)\n * Gauge: tweaks to background color and height usage\n (#17019)\n * Feature: provide multildap server configuration (#16914)\n * (feat/explore): Support for new LogQL filtering syntax\n (#16674)\n * fix(explore): Prevent double querying for Prometheus and\n Loki (#17004)\n * Chore: No implict any fixes (#17020)\n * move log package to /infra (#17023)\n * Chore: Lowered implicit anys limit to 5386\n * Chore: Updated snapshot\n * Select: Fixed isOpen issue\n * Chore: Typescript no-implicit any fixes progress (#17018)\n * GraphPanel: show results for all SeriesData (#16966)\n * Fix: Wrap value of multi variable in array when coming\n from URL (#16992)\n * GettingStarted: add key and remove ng-class (#17007)\n * explore: add some extra time for angular query editors to\n update query (#16955)\n * Explore: Align Explore with Dashboards and Panels (#16823)\n * Explore: Fix empty result from datasource should render\n logs container (#16999)\n * Explore: Fixes zoom exception in Loki/Graph (#16991)\n * PanelEditor: Fix queries tab now showing, wrong\n skipDataQuery logic (#16994)\n * DataSourceApi: convert interface to abstract class\n (#16979)\n * Panels: Fixed error panel tooltip (#16993)\n * Docker: Prevent a permission denied error when writing\n files to the default provisioning directory (#16831)\n * Notification: attempt to send notifications to all given\n email addresses (#16881)\n * GettingStarted: convert to react panel plugin (#16985)\n * Plugins: Remove dataFormats key and add skipDataQuery\n (#16984)\n * AlertList: removed icon\n * MetricsPanelCtrl: use shared queryRunner to support query\n execution (#16659)\n * TableData: support name (#16983)\n * Changelog: Typo guage -> gauge (#16982)\n * TestData: stream via fetch (#16963)\n * plugins: fix how datemath utils are exposed to plugins\n (#16976)\n * NewDataSource: Updated page header title\n * fix(prometheus): issue with click label to filter for\n recording rules in Explore\n * Explore: Removes Promise.All from runQueries thunk\n (#16957)\n * Chore: Add prometheus basic auth proxy (#16882)\n * Snapshot: use given key and deleteKey (#16876)\n * DataSourcePlugins: more generics improvements (#16965)\n * AddDataSource: Updated page design & categories (#16971)\n * Templating: Support selecting all filtered values of\n multi-value variable (#16873)\n * Chore: Add Input stories (#16897)\n * FieldDisplay: Don't use group ui elements in field editors\n (#16953)\n * GettingStarted: Fixes layout issues, fixes #16926 (#16941)\n * PanelModel: Fix crash after window resize, fixes #16933\n (#16942)\n * Singlestat: fixed centering issue for very small panels\n (#16944)\n * Tests: Adds end-to-end tests skeleton and basic smoke test\n scenario (#16901)\n * Chore: Replaces moment with Grafanas DateTime (#16919)\n * InfluxDB: Fix HTTP method should default to GET (#16949)\n * Chore: Skip unnecessary checks on pre commit (#16946)\n * http: remove dualstack since its deprecated (#16940)\n * devenv: add slow reverse proxy (#16943)\n * AppPlugin: Menu Edit Url Fix (#16934)\n * DataSource Plugins: consistent generics order\n <TQuery,TOptions> (#16936)\n * Plugins: update beta notice style (#16928)\n * Chore: update version number for 6.3 (#16927)\n * Plugins: Support templated urls in routes (#16599)\n * changelog: add 5.4.4 release\n * docs: add download link to what's new in v6.2\n * update changelog\n * Update changelog for 6.2.0-beta1\n * AzureMonitor: adds support for multiple subscriptions per\n datasource (#16922)\n * docs: what's new in v6.2 (#16909)\n * Chore: ban importing from @grafana/ui in grafana ui files\n (#16920)\n * BarGauge: New multi series enabled gauge like panel with\n horizontal and vertical layouts and 3 display modes\n (#16918)\n * alerting: no notification when going from nodata ->\n pending (#16905)\n * rpm: start grafana after mysqld process (#16917)\n * Build: fix failing grafana/ui build (#16913)\n * BarGauge: Updated test dashboards and threshold fix\n (#16911)\n * PanelModel: Clear queryRunner on destroy (#16906)\n * Panels: No title will no longer make panel header take up\n space (#16884)\n * Elasticsearch: Fix pre-v7.0 and alerting error (#16904)\n * Gauge: Better handling of gauge repeat title (#16886)\n * Refactor: move datemath to grafana/ui (#16890)\n * PanelQueryState: check for existing running query (#16894)\n * devenv: add alert list panel (#16896)\n * Security: Add new setting allow_embedding (#16853)\n * build: fix integer overflow in pkg/tsdb tests on 32bit\n platforms (#16818)\n * Security: Responses from backend should not be cached\n (#16848)\n * Alert: Support variables in Alert List filters (#12583)\n (#16892)\n * Chore: Lowered implicit anys limit to 5617\n * FieldDisplay: shared options model for singlestat panels\n (#16703)\n * Refactor: rename statsCalculator to fieldReducer (#16867)\n * PanelModel: expose isInView property to PanelModel\n (#16877)\n * CSV: escape quotes in toCSV (#16874)\n * Dashboard: Lazy load out of view panels (#15554)\n * LDAP: Added reload endpoint for LDAP config (#15470)\n * PluginsList: Removed icons and updated snapshots (#16872)\n * Panels: Fixed issue with panel type change and data\n updates (#16871)\n * Chore: fix modes for non-executable files (#16864)\n * DataSourceSettings: Minor fix for uncontrolled input\n (#16863)\n * Chore: Lowered implicit anys limit to 5623\n * TestData: Add dashboards to testdata (#16855)\n * Input Datasource: convert from angular config to react\n ConfigEditor (#16856)\n * DataSources: minor typescript cleanups and comments\n (#16860)\n * TestDataDatasource: Add config editor (#16861)\n * App Plugins: support react pages and tabs (#16586)\n * Add Windows MSI generation to build process (#16502)\n * Datasources: add support for POST HTTP verb for InfluxDB\n (#16690)\n * Add pattern validation in configs (#16837)\n * Search: Enable filtering dashboards in search by current\n folder (#16790)\n * FormLabel: allow any rather than just a string for tooltip\n (#16841)\n * prometheus: fix regression after adding support for\n tracing headers (#16829)\n * area/circleci: Speed up circleci build process for\n branches and pr (#16778)\n * DataProxy: Restore Set-Cookie header after proxy request\n (#16838)\n * docs: clarify page parameter version support for\n folder/dashboard search (#16836)\n * Chore: revise some of the gosec rules (#16713)\n * Refactor: consistant plugin/meta usage (#16834)\n * Explore: Use SeriesData format for loki/logs (#16793)\n * Refactor: move NavModel to @grafana/ui (#16813)\n * Auth: Enable retries and transaction for some db calls for\n auth tokens (#16785)\n * Provisioning: Show file path of provisioning file in\n save/delete dialogs (#16706)\n * Add tracing headers for prometheus datasource (#16724)\n * Config: Fixes bug where timeouts for alerting was not\n parsed correctly (#16784)\n * build: removes gopkg files from dev docker file (#16817)\n * Provisioning: Trying to fix failing test (#16800)\n * Table: React table fix rotate support in storybook\n (#16816)\n * TestData: add log level in dummy message (#16815)\n * removes gopkg.lock from root folder\n * Explore: Support user timezone (#16469)\n * Plugins: rename vizPlugin to panelPlugin (#16802)\n * Plugins: move app/feature/plugin properties into\n PluginMeta (#16809)\n * Plugins: move PanelPluginMeta to grafana/ui (#16804)\n * Plugins: move datasource specific meta out of the main\n meta type (#16803)\n * updates changelog for 6.1.6\n * Fix: Fetch histogram series from other api route (#16768)\n * phantomjs: set web-security to true\n * Chore: Lowered implicit anys limit to 5668\n * build: restore postgres integration tests (#16801)\n * docs: explain correct access control model of GCS buckets\n (#16792)\n * Chore: Fixed no implicit any Typescript errors (#16799)\n * Feature: introduce LdapActiveSyncEnabled setting (#16787)\n * Plugins: ReactPanelPlugin to VizPanelPlugin (#16779)\n * UX: Improve Grafana usage for smaller screens (#16783)\n * ThresholdEditor: Minor style fix for smaller screens\n (#16791)\n * Build: Use isolated modules for ts-jest (#16786)\n * LDAP Refactoring to support syncronizing more than one\n user at a time. (#16705)\n * build: removes unused vendored files\n * (fix/explore): remove vertical-align looks better for long\n logs (#16736)\n * Chore: bump jQuery to 3.4.0 in grafana/ui (#16781)\n * Devenv: Updated home dashboard and added new influxdb test\n dashboard\n * Chore: Lowered implicit anys limit to 5946\n * RefreshPicker: minor design update (#16774)\n * Streaming: support streaming and a javascript test\n datasource (#16729)\n * GraphLegendEditor: use stats picker rather than switches\n (#16759)\n * Feature: add cron setting for the ldap settings (#16673)\n * Build: Disables gosec until identified performance\n problems (#16764)\n * Chore: bump jQuery to 3.4.0 including prototype pollution\n vulnerability fix (#16761)\n * elasticsearch: add 7.x version support (#16646)\n * Provisioning: Add API endpoint to reload provisioning\n configs (#16579)\n * Config: Show user-friendly error message instead of stack\n trace (#16564)\n * Chore: Lowered implicit anys limit to 5954\n * Feature: Enable React based options editors for Datasource\n plugins (#16748)\n * sqlstore: use column name in order by (#16583)\n * user friendly guide (#16743)\n * Provisioning: Interpolate env vars in provisioning files\n (#16499)\n * admin: add more stats about roles (#16667)\n * Feature: Migrate Legend components to grafana/ui (#16468)\n * playlist: fix loading dashboards by tag (#16727)\n * CloudWatch: Use default alias if there is no alias for\n metrics (#16732)\n * Provisioning: Support FolderUid in Dashboard Provisioning\n Config (#16559)\n * Refactor: Make SelectOptionItem a generic type to enable\n select value typing (#16718)\n * docs: fix upgrade instructions\n * Chore: Small improvements to grafana-cli (#16670)\n * Chore: Use x/xerrors instead of pkg/errors (#16668)\n * Chore: a bit of spring cleaning (#16710)\n * Fixes #15863 (#16684)\n * Docs: Update notification services (#16657)\n * PanelQueryRunner: add datasource name to queries (#16712)\n * Chore: remove session storage references (#16445)\n * Dashboard: Minor settings UI Update (#16669)\n * Templating: Do not copy hide option (#16696)\n * Docs: Fix advanced variable formatting examples (#16691)\n * QueryEditors: pass PanelData and filtered PanelData to\n each editor (#16692)\n * Chore: remove extra logging (#16688)\n * DashboardSrv: export getDashboardSrv to react (#16687)\n * Refactor: split PanelQueryRunner into runner and state\n (#16685)\n * Docs: Googlechat provisioning config example (#16682)\n * TestDataDatasource: add the query refId to each result\n * AppPlugin: avoid app plugin navigation slowness (#16675)\n * Refactor: improvements to PanelQueryRunner (#16678)\n * Refactor: move getQueryRunner() to PanelModel (#16679)\n * Docs: initial backend plugins development guide (#16631)\n * build: remove dep config files since they are not used\n anymore\n * Fix typo in PULL_REQUEST_TEMPLATE.md\n * refactor: move timeInfo to DataRequestInfo (#16664)\n * QueryRunner: Move queryRunner to panelModel (#16656)\n * PanelQueryRunner: move error handling to\n QueryRunnerOptions (#16654)\n * refactor: Merge PanelChrome and DataPanel, do query\n execution in PanelQueryRunner (#16632)\n * Search: Fixed search issue introduced in recent PR\n (#16652)\n * Cloudwatch: fix for flaky tests (#16649)\n * UI: Remove old icons (#16335)\n * Search: Fixes search limits and adds a page parameter\n (#16458)\n * Chore: Upgrade lodash to v4.17.11 (#16645)\n * Chore: Lock dependencies (#16644)\n * tech: replace bmizerany/assert with stretchr/testify\n (#16625)\n * Chore: update yarn.lock (#16637)\n * Panel Plugins: pass query request/response to react panel\n plugins (#16577)\n * Explore: Adds logs highlighting in Explore on keypress\n (#16596)\n * Build: adding dependency used by extensions (#16622)\n * TimePicker: Re-add apply button in time picker (#16619)\n * Chore: refactor auth proxy (#16504)\n * Docs: updated help for changelog cli task (#16615)\n * replace dep with go modules (#16017)\n * Docs: Updated changelog for 6.1.4\n * Heatmap: Fixed auto decimals when bucket name is not\n number but contains dots, fixes #13019 (#16609)\n * build: partially replace gometalinter with golangci-lint\n (#16610)\n * Explore & Dashboard: New Refresh picker (#16505)\n * Build: Fix missing icon typing (#16601)\n * Plugins: added missing prop to type\n * CloudWatch: GetMetricData refactoring & fix label handling\n (#16383)\n * Chore: prepare our SQL for cockroach db (#16471)\n * AppPlugins: fix app support and add an alpha example\n (#16528)\n * Switch: made minor styling tweaks to switch to align to\n 4px grid (#16593)\n * Docs: minor docs update for old urls\n * Chore: Add more explicit typing (#16594)\n * Chore: Lowered implicit anys limit to 5977\n * Chore: Adds typings to lodash (#16590)\n * PanelEditor: Change Queries heading to Query (#16536)\n * Security: Store datasource passwords encrypted in\n secureJsonData (#16175)\n * More development dashboards (#16550)\n * build: upgrades to golang 1.12.4 (#16545)\n * Use package libfontconfig1, instead of libfontconfig\n (#16548)\n * Adjust Send on all alerts to default label (#16554)\n * Chore: Lower limit of implicit anys to 6676\n * DirectInput: new alpha datasource that lets you enter data\n via CSV\n * Plugins: expose getBackendSrv() to plugins (#15268)\n * DataPanel: Added built-in interval variables to scopedVars\n (#16556)\n * TestData: Add minInterval query option\n * Chore: Remove implicit anys for DashboardModel and tests\n (#16553)\n * Pushover alert, support for different sound for OK\n (#16525)\n * Chore: Lowered implicit anys limit to 6816\n * CloudWatch: Fix template variable expand bug (#16405)\n * CloudWatch: fix color order (#16408)\n * Plugins: Unifying alpha state & options for all plugins\n (#16530)\n * Revert 'Build: Upgrades to go 1.12.3 (#16491)' (#16544)\n * Annotations: Annotation list style improvements (#16541)\n * QueryInspector: Now shows error responses (#16514)\n * Build: Upgrades to go 1.12.3 (#16491)\n * Build: Update master version number (#16532)\n * Elasticsearch: Format elasticsearch test dashboard json\n (#16537)\n * Update jwt regexp to include = (#16521)\n * Chore: docs fixes underscore formatting (#16516)\n * Fix: Pass missing maxDataPoints to query in Explore\n (#16513)\n * Fix: Recalculate intervals in Explore on run queries\n (#16510)\n * devenv: add elasticsearch v6 filebeat integration (#16493)\n * devenv: add worldmap panel panels for elasticsearch\n (#16313)\n * Plugins: Optionally preload some plugins during frontend\n app boot (#15266)\n * Panels: Add types for DataList and range (#16500)\n * Chore: Lowered implicit anys limit to 6818\n * PanelData: Rename ColumnStats type to FieldStats (#16494)\n * DataSourceApi: add getCollapsedText(query) to\n DataSourceApi (#16482)\n * Graph: Add some typescript types for data (#16484)\n * Build: Updates goconvey to work on go1.12 (#16483)\n * Provisioning: Do not allow deletion of provisioned\n dashboards (#16211)\n * Chore: lower limit for implicit anys to 6829\n * Singlestat-v2/Gauge: Show title when repeating (#16477)\n * Docs: fix grammar in query hint, tests, and documentation\n (#16444)\n * Heatmap: Fix empty graph if panel is too narrow (#16460)\n * Release: updated latest.json\n * Docs: Updated changelog\n * docs: fixes and update current version\n * Docs: Updated changelog for v6.1.3\n * Graph: fixed png rendering with legend to the right\n (#16463)\n * Fix: Disables auto open datasource picker on focus\n (#16398)\n * add some mock/stub guidelines to testing guideline\n (#16466)\n * Feat: Suggestion list in Explore is virtualized (#16342)\n * Docs: Updated roadmap issue to link to the pinned roadmap\n issues\n * Graph: Fixed auto decimals in legend values (#16455)\n * Styling: Aligned heading (#16456)\n * add PromQL keyword for adhoc filter (#16426)\n * Singlestat: Use decimal override when manually specified\n (#16451)\n * Graph: follow-up graph decimals fix, #16414 (#16450)\n * Chore: use remote cache instead of session storage\n (#16114)\n * Docs: Minor changelog tweak\n * Docs: Updated changelog with v6.1.2 release issues\n * datasource: fix disable query when using mixed datasource\n (#16409)\n * Graph: Fixed series legend color for hidden series\n (#16438)\n * Templating: Fixed loading React variable query editor\n (#16439)\n * Styles: Fixed left menu highlight (#16431)\n * Fix: remove test artefact (#16411)\n * Theme: Reworking button styling (#16362)\n * Graph: Fixed tooltip highlight on white theme (#16429)\n * BarGauge: Round sizing to avoid float widths\n * Graph: Allow override decimals to fully override (#16414)\n * Units: Correctly use the override decimals (#16413)\n * Docs: Remove broken youtube link in timerange reference\n (#16415)\n * BarGauge: Fixed minor margin issue (#16419)\n * Docs: Updated GitHub PR Template\n * Bar Gauge: Show tile (series name) & refactorings & tests\n (#16397)\n * Fix: align panel padding between sass & js theme (#16404)\n * Fix: playlist now preserve the correct url query params\n (#16403)\n * Fix: Graphite query rendering fix (#16390)\n * Fix: Query editor toggle edit mode fix (#16394)\n * Refactor: Plugin exports & data source / panel types\n (#16364)\n * Chore: Update lockfile (#16380)\n * Alerting: Notification channel http api fixes (#16379)\n * Chore: Add task to find FocusConvey tests (#16381)\n * CloudWatch: Update AWS/IoT metric and dimensions (#16337)\n * Fix: Table Panel fix to re-render panel when options are\n updated (#16376)\n * Docs: Fix typo in Prometheus documentation (#16369)\n * build: Fixed incorrect permissions for repo folders in\n ci-deploy. (#16360)\n * Docs: remove embedd info about samesite cookie from app,\n docs only is better\n * Chore: Lowered error count limit\n * build: fixes bug in verification script.\n * Tech: Bump typescript and jest (#16354)\n * Automation: Updates to yarn cli cherrypick & changelog\n tasks (#16357)\n * Feat: Improve embed panel info text (#16344)\n * Fix: Cloudwatch fix for dimension value (#16356)\n * build: Script to check that our repos work and what the\n latest package version is (#16350)\n * Fix: Autoprefixer is now working (#16351)\n * Chore: docs updates to what's new for 6.1 (#16346)\n * build: Fix for renamed package for armv6.\n * Chore: bump storybook and add build script (#16340)\n * Refactor: React Panels to only use SeriesData[] (#16306)\n * Docs: Suggest add-apt-repository to install APT repos\n (#16333)\n * Units: Add angle units, Arc Minutes and Seconds (#16271)\n * Chore: Lowered implicit any limit to 6850\n * Feat: Adds reconnect for failing datasource in Explore\n (#16226)\n * docs: improve alert notification channel provisioning\n (#16262)\n * Build: Moved the failing appveyor file so we can get green\n builds in master\n * Fix: Build report the correct directives before failing\n (#16312)\n * Fix: input elements autofill background (#16295)\n * Fix: Bring back styles on Switch components when checked\n * Chore: breaks build if certain FrontEnd limits are\n exceeded (#16301)\n * Fix: Graphite query ast to string fix (#16297)\n * Fix: Template query editor this bind exception fix\n (#16299)\n * Fix: Alerting Notification channel http api fixes (#16288)\n * Refactor: Move LogLevel and Labels utils to @grafana/ui\n (#16285)\n * Refactor: Rename Tags to Labels in SeriesData (simple)\n (#16284)\n * Elasticsearch: Fix view percentiles metric in table\n without date histogram (#15686)\n * Configuration: Improve session_lifetime comments (#16238)\n * Alerting: Makes timeouts and retries configurable (#16259)\n * Fix: Correct SnapshotData typing (#16279)\n * Feat: Angular panels & SeriesData to Table/TimeSeries\n (#16266)\n * Fix: React Graph & Show message on no data (#16278)\n * Feature: added actionable message in Explore when no\n datasource configured (#16252)\n * Feature: Case insensitive Loki search (#15948)\n * Feat: Singlestat panel react progress & refactorings\n (#16039)\n * Chore: Implement gosec (#16261)\n * Fix: Updated snapshot unit test that was failing\n * Refactor: Theme & Removed the last rems (#16245)\n * Refactor: Theme input padding variables (#16048)\n * Feat: More robust csv support (#16170)\n * Docs: Fix rpm dependencies example (#16272)\n * Fix: HTML meta tags fix for iOS (#16269)\n * Feature: Introduced CallToActionCard to @grafana/ui\n (#16237)\n * Refactor: Rename TimeSeriesVM to GraphSeriesXY (#16216)\n * Chore: Implement revive (#16200)\n * InfluxDB: Fix tag names with periods in alerting (#16255)\n * Fix: Table Panel and string values & numeric formatting\n (#16249)\n * Tech: Patch lib updates, update yarn.lock (#16250)\n * Chore: docs whats new article for the 6.1 release (#16251)\n * Chore: Storybook improvements (#16239)\n * Feat: Introduce Button and LinkButton components to\n @grafana/ui (#16228)\n * Chore: changelog adds note for #16234\n * Fix: Prometheus regex ad-hoc filters w/ wildcards (#16234)\n * Chore: changelog notes for #13825,#15205,#14877,#16227\n * Fix: Alert email variable name typo fixed (#16232)\n * Fix: scripts changelog cli per page set to 100\n * Fix: Dashboard history diff & white theme fix (#16231)\n * Merge pull request #16241 from\n grafana/hugoh/no-implicit-any\n * Chore: Theme consistency, rems => pixels or variables\n (#16235)\n * Chore: Theme consistency, rems => pixels (#16145)\n * changelog: adds notes for #16229 and #16227\n * Fix: Elasticsearch fix template variables in the alias\n field (#16629)\n * Fix: TablePanel column color style now works even after\n removeing styles, fixes #16162 (#16227)\n * Docs: Updated changelog for 6.1 release (#16224)\n * Alerting: Notification channel http api enhancements\n (#16219)\n * Upgrades: Patch updates to yarn lock (#16215)\n * Fix: DatasourceApi query response typing fix (#16214)\n * chore(influx): no point of reading response when bad\n status (#16212)\n * docs: loki provisioning\n * docs(dev): Update docs about devenv dir (#16208)\n * fix(dashboard): time regions spanning across midnight\n (#16201)\n * fix(InfluxDB): Reads body and close request body even for\n error status codes (#16207)\n * chore: more TableData to SeriesData renaming (#16206)\n * fix(panels/graph): Default option name for spaceLength was\n accidentally changed (#16205)\n * fix(explore): only show split close button when split is\n active (#16203)\n * fix(react2angular): Fixed react to angular wrapper\n watching function expressions causing infinte digest loop,\n fixes #16194 (#16196)\n * fix(Alerting): Fixed alert rules with eval in day units,\n fixes #16174 (#16182)\n * fix(panel/table): Fix for white text on white background\n when value is null\n * refactor(grafana/ui): Replace <input />with Input\n component from grafana/ui (#16085)\n * fix(loki): Hide empty labels column\n * build: fixes publishing version.\n * refactor(data models): Renamed TableData to SeriesData\n (#16185)\n * chore(core/utils): Add typings to datemath.ts (#16195)\n * only call onPanelMigration when the version actually\n changes (#16186)\n * feat(explore): make it possible to close left pane of\n split view (#16155)\n * feat(Explore): make sure Loki labels are up to date\n (#16131)\n * build: makes sure grafana.version is available when\n deploying.\n * fix: added missing event to function signature Fixes:\n #16055\n * build: refactoring\n * build: updated build container with support for rpi1.\n * build: support for publishing armv6.\n * build: builds armv6 with rpi1 compat gcc.\n * fix: added target and datasource as isMetric property\n Fixes: #15862\n * chore: Removed implicit anys in react container and test\n helpers\n * Pamels: Options are always there\n * Panels: Support angular -> react migration via\n PanelMigrationHandler\n * Panels: Added more tests for change panel plugin\n * Panels: Refactoring how panel plugins sets hooks and\n components, #16166\n * clarify notifications API docs\n * remove processTimeSeries\n * merge master\n * don't use process timeseries\n * rename stat to show in UI\n * use display value in pie chart\n * keep plugin versions\n * remove panel plugin setters\n * renamed float to flot\n * prevOptions should be optional\n * moved migration hook to its own function\n * Minor refactoring of stats picker / shared singlestat code\n * Makes it possible to navigate back/forward with browser\n buttons in Explore (#16150)\n * Moved DisplayValueOptions type back, #16134\n * adding check for decimals\n * add one more test\n * Graphite: fixed variable quoting when variable value is\n nummeric, fixes #2078\n * Minor refactoring of #16127\n * Update provisioning.md\n * Graphite: Fixed issue with using series ref and series by\n tag, fixes #15237\n * move typings to types,\n * Link license corrections\n * remove logging\n * add stat picker to single stat\n * removed option to not check strings\n * drop one level of nesting\n * cleanup and guess all columns\n * Small license correction\n * update cloudwatch metrics/dimensions list\n * Enable sass theme change in Storybook\n * replaced rems with pixels or variables\n * adding test\n * updating usages in singlestat\n * Sorting imports\n * adding function\n * Use grafana's logger implementation\n * another change that didn't come with earlier commit\n * change that didn't come with in last commit\n * reversed dashboard-padding\n * Update CloudWatch metrics/dimension list (#16102)\n * brought back dashboard-padding and panel-padding\n variables, made dashboard-padding more specific\n * replaced rem with pixels or variables\n * fix(prometheus): Change aligment of range queries\n (#16110)\n * fix, assign by event.time\n * Minor refactoring of testdata query order PR #16122\n * simplify\n * deduplicate same value annotation\n * cleaner version\n * maintain query order\n * Remove sleeps in test code by overriding time.Now()\n * Update PLUGIN_DEV.md\n * Abstract encrypt/encode and decode/decrypt into their own\n functions\n * Rename dispatched commands to make them easy to grok\n * show all colums in graph\n * Use structured logging instead of printf\n * Make all http auth setting labels the same width\n * Merge with master, and updated logo and name\n * Rewrote creation of images tag\n * Added missing commas\n * Don't include non-existing image in MS Teams alert\n * cast to column\n * update table data model\n * show all columns in singlestats\n * fix(graphite): nonNegativeDerivative argument hidden if 0,\n fixes #12488\n * Correct table names of sql storage for remotecache\n * more fixes to snapshot\n * more fixes to snapshot\n * Fixed gofmt issue in PR #16093\n * removed empty space in snapshot\n * fix: Update snapshot related to new jest version\n * fixed snapshot for test\n * Regenerate lockfile due to the amount of merge conflicts.\n * removed dashboard variables, removed headings-font-family\n variable, created theme variables for links and z-index,\n removed unused class in _panel_editor and _dashboard\n * Remove commented code\n * flot pairs\n * add more functions and tests\n * Update org_user.go\n * Minor progress on fixing no-implicit any issues\n * refactor: merged types and updated references\n * Remove leftover from first iteration\n * Only keep certain query params when going to next playlist\n * Snapshot update\n * fix: ts issue on SelectOption test\n * chore: Bump react and react-dom to 16.8.4\n * Update latest.json\n * Update templating.md\n * chore: cleaning up noimplicit anys in search_srv and tests\n progress: #14714\n * Fix threshold editor color picker not working for custom\n colors\n * Updated comments\n * Updated threshold editor test\n * Re-render gauge / singlestat panels when changing options\n * fix: refactored so members are loaded by TeamPages and use\n hideFromTabs instead of filtering out children in navModel\n * teams: explains the external property of a team\n membership.\n * fix: fixed snapshots and permission select not beeing able\n to click\n * fix: new team link goes nowhere for viewers\n * teams: refactor so that you can only delete teams if you\n are team admin\n * permissions: removes global access to bus from\n MakeUserAdmin.\n * teams: local access to bus, moving away from dep on\n global.\n * teams: better names for api permissions.\n * teams: refactor.\n * permissions: refactor.\n * teams: refactor.\n * teams: hide tabs settings and groupsync for non team\n admins\n * teams: refactored db code.\n * teams: disable new team button if user is viewer\n * refactor: moved test from TeamMembers to TeamMemberRow\n * refactor: splitted TeamMembers to TeamMemberRow\n * teams: comment explaining input validation\n * teams: cleanup.\n * teams: cleanup.\n * dashboards: simplified code.\n * teams: disable buttons for team members\n * teams: moved logic for searchteams to backend\n * teams: viewers and editors can view teams\n * teams: editor/viewer team admin cant remove the last\n admin.\n * teams: changed permission to permission type instead of\n int\n * teams: defaulting invalid permission level to member\n permission level\n * team: uses PermissionType instead of int64 for\n permissions.\n * teams: editors can't remove the last admin from a team.\n * teams: tests use the new message for modifying team\n members.\n * team: renames teams.CanUpdate teamguardian.CanAdmin\n * teams: remov permission select for non admin users\n * docs: First take on describing feature toggle\n * config: updated feature toggle name\n * teams: cleanup.\n * dashboard: only admin permission added to dashboard in\n folder.\n * dashboards: better error handling\n * teams: team listing shows only your teams (editors).\n * teams: teams guard on all teams update methods.\n * teams: added delete team guard\n * teams: removed feature toggle as it is already in\n middleware\n * teams: added feature toggle and refactor tests\n * teams: cleanup.\n * teams: test refactorings.\n * teams: bugfix, user pointer.\n * teams: start of team update guardian for editors\n * teams: team update test\n * teams: change back to permissionlevel for Member to 0\n * teams: make sure we use TeamPermissionLevel enum\n * teams: update only the selected user\n * teams: only write error message if error\n * teams: enabled so that user can update permission for team\n members\n * teams: feature toggle component\n * teams: test for update team member.\n * teams: can update team members permission.\n * teams: basic ui for permission in team members view\n * teams: editor added as admin for created teams.\n * teams: editors can work with teams.\n * teams: show teams and plugins for editors that can own\n * teams: make test cases pass again\n * folder: uses service to make user admin of created folder.\n * permissions: broken out func for making creator admin.\n * folders: admin for created folders\n * dashboards: user automatically becomes admin for created\n dashboards\n * fix(ci): frontend tests was accidentially commented out\n * Use SecretFormField in MSSql and Postgres datasources\n * Add SecretFormField component\n * Add possibility to pass custom input component to\n FormField\n * Allow angular react bridge to use kebab case attribute\n names\n * adding story and fixing tests\n * build: migrates the build container into the main repo.\n * build: updated deploy container with crcmod.\n * build: crcmod speedups rsync to gcp for deploy.\n * Update style_guides/backend.md\n * remove the error collector\n * Copied from new timepicker and unified component branch\n * docs: renamed file and added redux framework file\n * docs: moved examples to frontend.md\n * docs: intial draft for frontend review doc\n * Use ora#fail instead of console.log\n * reorder imports\n * test\n * rename to char\n * sorting imports\n * moving\n * Remove .only function\n * Add more patterns to no-only-test task\n * chore: Cleaning up implicit anys in DashboardExporter and\n tests progress: #14714\n * rename reducer to statsCalculator\n * Great progress on bar gauge look\n * Explore: Fix log stats for long labels\n * calculate the column width\n * disable react table cell measure\n * dont test exists in the test... it will fail if not found\n * add random_walk_table scenario\n * adds backend code style guide\n * add test file\n * add startAt to random walk scenario\n * get values from base options\n * use singlestat base where appropriate\n * feature(explore/table): Add tooltips to explore table\n (#16007)\n * Update changelog\n * Bar gauge gradient mode\n * Bar gauge auto lcd cell count\n * Add check for Env before log\n * Update index.md\n * chore: Cleaning up implicit anys in manage_dashboard.ts\n and manage_dashboard.test.ts progress: #14714\n * chore: Cleaning up implicit anys in app.ts progress:\n #14714\n * panels: fix loading panels with non-array targets (add\n tests)\n * changelog: adds note about closing #15836\n * set correct return type\n * panels: fix loading panels with non-array targets\n (refactor)\n * Bar gauge styling tweaks\n * panels: fix loading panels with non-array targets\n * changelog: adds note about closing #6359 and #15931\n * add partial\n * no inheratance\n * improve single stat display\n * revert most options sharing\n * Refactoring the bar gauge and the orientation modes\n * add migration tests\n * renaming function\n * using refId from panel model\n * Tooltip: show percent instead of value\n * Add check so that header is not sent for anonymous users\n * Update config docs\n * Add custom header with grafana user and a config switch\n for it\n * changelog: adds note about closing #10816\n * Right tooltip position\n * Add 'No data points' message\n * use constants for cache type\n * makes variables template prettier complient\n * Make recently used auth_module test more robust by adding\n another 'log in'\n * changelog: adds note about #15744\n * updates old distcache names\n * dont allow inifinite expiration\n * chore: Upgrade all babel related packages that is lagging\n behind\n * return error if cache type is invalid\n * Add more info to victorOps alert notifications\n * fix: papaparse must have gone missing during rebase\n * chore: Bump jest to 24\n * fix: describe() should not be async\n * fix: Use proper syntax for plugin-syntax-dynamic-import\n * fix: Downgrade ts-node to 8.0.2 due to broken theme\n generation\n * chore: Bump ora\n * chore: Bump tslint (again)\n * chore: Bump axios\n * chore: Bump npm\n * chore: Bump glob\n * fix: Invalid css\n * chore: Bump clean-webpack-plugin,\n html-webpack-harddisk-plugin, postcss-reporter\n * chore: Bump file-loader and css optimizer webpack plugin\n * chore: Bump css-loader and remove minimize option since\n its removed in css-loader\n * chore: Bump npm packages and lock down some versions\n * chore: Bump mini-css-extract-plugin\n * chore: Lock down versions of expose-loader and html-loader\n * chore: Bump fork-ts-checker-webpack-plugin\n * chore: Prod builds should not cache\n * chore: Replace Uglify with Terser\n * chore: Bump webpack, webpack-bundle-analyzer, webpack-cli\n and webpack-dev-server to latest\n * reuse more gauge settings in bargauge\n * set the unit on time data\n * add error when not found\n * Added metric math docs\n * check types better\n * check types better\n * docs: Change type of 'tags' in annotationQuery result\n example to list\n * single hook\n * Change import path for social in the tests\n * Change import path for social since it has moved\n * generic repeater\n * generic repeater\n * Remove todo about index on user_id in user_auth because it\n exists\n * Add function in ds_proxy to handle oauthPassThru headers\n * Remove auth_module settings from oauthPassThru ui\n * Remove auth module from ds_proxy oauth test\n * Get most recent oauth token from db, rather than lookup by\n auth_module\n * Improve tooltip look\n * explore/logs: Hide empty duplicates column\n * merge master\n * fix for firefox checkboxes not appearing properly, added\n appearance as none\n * Always return most recently used auth_module from\n GetAuthInfo\n * used regex instead of string replacing\n * Fixed issue with alert links in alert list panel causing\n panel not found errors, fixes #15680\n * Add comments\n * Add simple test for the ColorPicker\n * Use render props pattern in color picker\n * Move ColorPicker trigger to separate component and cleanup\n css\n * Improved error handling when rendering dashboard panels,\n fixes #15913\n * fix return type\n * Only send ci metrics to hosted metrics instance\n * adding types\n * Added back branch guard\n * moved delete button from sidebar to general tab and\n renamed it\n * Refactoring the ci metrics a bit more making it easier to\n re-use\n * removed unused and very specific variables, also variables\n with same value as general variable\n * reduce loglevel to debug\n * Updated bar gauge snapshot\n * added some comments about state of components things\n * better comments\n * comment cleanup\n * force circleci to try again\n * format\n * touch\n * touch\n * make sure the validator is called before setState\n * API to fix/update properties before load\n * more tests\n * more options in storybook\n * adding simple widget to pick the reducer\n * heatmap: fix for negative values\n * Fixed more typescript no implicit any issues\n * Also push to ci metrics to new shared HM instance\n * move sort to table processing\n * Fixed type issues introduced by adding angular types\n * Typescript noAny fixes, start of a long journey\n * Updated code stats collection\n * Updated path to new script\n * POC on collecting metrics in ci process\n * changelog: add notes about heatmap issues #15683 #14019\n * added two new variables in default theme for panel\n padding, replaced panelhorizontalpadding and\n variables.panelverticalpadding with new variables\n * renamed default variables: s -> sm, m -> md, l -> lg\n * removed gf-form-margin variable and replaced with space-\n variables where it was used\n * add table reducer\n * heatmap: able to hide buckets with zero value #12080\n * s -> sm, m -> md, l -> lg\n * heatmap: fix prometheus buckets sorting, closes #15637\n * s -> sm, m -> md, l -> lg\n * removed headings-margin-bottom variable\n * rename to displayValues\n * remove kbn test\n * more tests\n * use new settings\n * fix tests\n * make value processing reusable\n * Call ora instead of instantiating it\n * Added scopedVars argument in datasourceSrv.get in\n DataPanel\n * MutableColumn\n * cleanup after review\n * rename handleXXX to onXX events\n * torkel feedback\n * onCellClick\n * heatmap: able to reverse Y buckets order, #15683\n * fix(explore/logs) not collapsing whitespace (#15737)\n * Refactoring of multi-value datasource PR #15812\n * fixed minor misstake with dashboard padding\n * removed -margin, replaced with new general variables\n * Move oauth token migrations in user_auth_mig\n * heatmap: fix middle bucket bound for prometheus\n * Refactoring / fixing password hint PR #15868\n * chore: Move sidemenu out of context service and use the\n logic we have in the router already for hiding the\n sidemenu\n * Fix deduplication results displaying wrong data (#15755)\n * added new space variables to margins in AddPanelWidget,\n add_data_source, dashboard_settings and sidemenu\n * use `Get` instead of `Find`\n * avoid exposing cache client directly\n * add docs about remote cache settings\n * renames distcache -> remotecache\n * renames key to cache_key\n * build steps for cache servers\n * code layouts and comments\n * rename put -> set\n * reverts package.json I made during the flight >.>\n * `memcache` -> `memcached`\n * removes memory as distcache option\n * test redis and memcached during integration tests\n * adds config to default settings\n * avoid exporting test helpers\n * uses set instead of add for memcache\n * adds memory as dist storage alt\n * extract tests into seperate files\n * avoid exposing internal structs and functions\n * heatmap: don't display cut cards\n * heatmap: fix error when series empty\n * heatmap: middle bucket bound option, #15683\n * rotate!\n * added new variables for spacing, set margins in _cards\n with new variables\n * better css\n * Revert 'Fix Datasource Update to no User/Password'\n * rotate!\n * fix imageurl in notification test\n * add comment\n * attach themes to table story\n * reuse deprecationWarning\n * move to string.ts\n * move stringToJsRegex\n * get field mapping to actually work\n * add variable size storybook\n * cell builder cleanup\n * minor storybook cleanup\n * fix typos\n * autofill space rather than force with/height values\n * return table directly, not the debug info\n * Minor fix in values to histogram conversion\n * Fix histogram x-axis min/max\n * moved utillities to util\n * Change xaxis min and max form input types to number\n * Fix histogram xaxis min/max tests\n * Optionally set histogram x-axis min/max\n * table using MultiGrid\n * cleanup\n * cleanup\n * adding toolbar\n * adding stub table input CSV\n * docs: Fix indentation level for OAuth2 config\n * docs: update CONTRIBUTING.md\n * merge master\n * docs: update slack alert notification settings\n * docs: update admin and user http api documentation\n * feat(api): support list/revoke auth token in admin/current\n user api\n * support get user tokens/revoke all user tokens in\n UserTokenService\n * @grafana/ui - release docs v1 (#15835)\n * Minor refactoring of copy tags when saving feature, #15446\n * Simple implementation for preserve tags, closes #11627\n * Updated prettierignore\n * Refactoring of PR #14772\n * Simple storybook\n * fix typo in pr template\n * add nil/length check when delete old login attempts\n * Minor refactoring of new react text panel\n * Improve rendering\n * fix allow anonymous server bind for ldap search\n * changed all rems to pixels in defaults and template,\n changed back root font size\n * piechart -> pieChart\n * Rename: Piechart -> PieChart\n * Import only what is used from d3\n * less nesting and add test\n * remove type field and add helper functions to check if\n data isTableData\n * add storybook\n * fixes typo in redis devenv\n * add support for memcached\n * add support for redis storage\n * add garbage collector for database cache\n * test at interface level instead impl\n * cache: initial version of db cache\n * don't include stuff from app/...\n * fix scss\n * rename to Table\n * rename to Table\n * fix type errors\n * move to grafana/ui\n * better sort function\n * use TableData, not interface\n * Make password hint configurable from settings/defaults.ini\n * move toTableData to grafana/ui\n * don't require x & y columns for timeSeries\n * use TableData for timeseries in react\n * Update README.md\n * heatmap: reduce number of legend segments to reasonable\n value and round x values to prevent gaps\n * heatmap: fix legend padding\n * heatmap: fix legend for small values, #14019 #15683\n * status: alpha\n * changed root font to 100%(default 16px), changed font-size\n from px to rem, updated rem sizes in template and\n default.ts files, removed display classes and variables\n since not used, removed lead class and variables since not\n usedremoved serif font since not used and probably never\n should be used\n * Update core:start cli command to watch theme changes again\n (#15856)\n * Updated pull request template\n * Updated pull request rtemplate\n * Removed title case from issue template title\n * Updated issue template titles\n * Updated issue templates\n * Updated templates\n * fix: Update error message and replace npm with yarn #15851\n * fix: Make sure we dont add &autofitpanels to the url if it\n already exists #15849\n * fix: Update test snapshot\n * fix: Logo goes Home instead of toggling side menu #15482\n * Update upgrading.md for wrong spell\n * remove _\n * cleanup\n * use pure component\n * return the same panelData unless it changes\n * sortable class\n * Map dataSourceTypeSearchQuery state from redux to search\n input.\n * move rendering to its own file\n * try virtualized\n * Initial tooltip\n * Minor refactoring of PR #15770\n * Revert 'Fix for leaving playlist mode'\n * Alternative fix to detecting when to stop a playlist,\n fixes #15701 and #15702\n * fix discord notifier so it doesn't crash when there are no\n image generated\n * fix: Consistency in unit labels #15709\n * Update latest.json\n * Run prettier\n * position from add panel, dimensions from copied panel\n * Fix donut rendering\n * Run prettier\n * Fix pieType change\n * changelog: add notes about closing #14509 #15179\n * Render svg instead of canvas\n * fix: Add class for input fields with help icon to avoid\n icon hiding the text #15771\n * restore to current folder when restoring old dashboard\n version\n * fix(renderer): Vendor ansicolor as typescript\n * log phantomjs output even if it timeout and include orgId\n when render alert\n * keep size from copied panel and not from add panel widget\n * Added basic cherry pick helping task\n * Prevent search in VizPicker from stealing focus (#15802)\n * fix only users that can edit a dashboard should be able to\n update panel json\n * Updated changelog task\n * Fixed image rendering issue for dashboards with auto\n refresh, casued by missing reloadOnSearch flag on route,\n fixes #15631\n * use props.replaceVariables rather than templateSrv\n * Updated to add PR author, skip PR issue references\n * Added first iteration/poc of changelog task\n * Enable @grafana/ui version bump based on package.json\n contents\n * Fixed styling of gicon's in dropdown menus\n * cleanup plugin versions\n * use explore icon\n * fix comments\n * typescript functions on replace\n * remove console.log\n * add ScopedVars to replace function\n * Make datasource variables multiselect and dashboard\n repeatable\n * set height\n * add test file (ignored)\n * fix variable name\n * use typescrit in angular table\n * use react-table\n * add a basic alpha react table\n * Ensure clean master only when publishing package to npm\n * Remove log\n * Ensuring master branch when performing release\n * upgrade xorm packages to latest versions\n * Expose onQueryChange to angular plugins\n * docker: update prometheus2 block to version 2.7.2\n * use replaceVariables\n * Add a keybinding that toggles all legends in a dashboard\n * fix allow anonymous initial bind for ldap search\n * changelog: adds note for #8253\n * prettier\n * Aftermerge fixes\n * use default min interval of 1m for sql datasources\n * changelog: adds note about closing #15608\n * Fixed scrollbar not visible due to content being added a\n bit after mount, fixes #15711\n * Added comment to Docker file\n * moving\n * style: add gicon-shield to sidemenu class Closes #15591\n * remove `UseBool` since we use `AllCols`\n * fix: Move chunk splitting from prod to common so we get\n the same files in dev as prod\n * fix: update datasource in componentDidUpdate Closes #15751\n * changelog: add notes about closing #15739\n * Moved Server Admin and children to separate menu item on\n Side Menu (#15592)\n * update version to 6.1.0-pre\n * Viewers with viewers_can_edit should be able to access\n /explore (#15787)\n * Fixed scrolling issue that caused scroll to be locked to\n the bottom of a long dashboard, fixes #15712\n * reordered import\n * Wrapperd playlist controls in clickoutsidewrapper\n * Turn off verbose output from tar extraction when building\n docker files, fixes #15528\n * Hide time info switch when no time options are specified\n * Made sure that DataSourceOption displays value and fires\n onChange/onBlur events (#15757)\n * Updated react select fork to 2.4.1\n * utils: show string errors. Fixes #15782\n * Update frontend.md\n * Update frontend.md\n * Minor refactor of cli tasks (core start, gui publishing)\n * Fixed url of back button in datasource edit page, when\n root_url configured (#15759)\n * use onOptionsChange\n * use replaceVariables rather than onInterpolate\n * use updateOptions rather than onChange\n * changelog: add notes about closing #15650\n * changelog: add notes about closing #15765\n * fix: Kiosk mode should have &kiosk appended to the url\n #15765\n * changelog: add notes about closing #15077\n * org admins should only be able to access org admin pages\n * only editor/admin should have access to alert\n list/notifications pages\n * Added MaximumUsedTransactionIDs metric to list of AWS RDS\n metrics.\n * fix: When in tv-mode, autofitpanel should not take space\n from the navbar #15650\n * devenv: fixes incorrect influxdb config.\n * Fixes #15739\n * Don't mutate seriesList parameter in mergeSeriesByTime\n (#15619)\n * new stable docs version\n * Fix: #14706 Incorrect index pattern padding in alerting\n queries\n * fix\n * changelog: adds note about closing #14239\n * fix: prevent datasource json data stored as nil (#15508)\n * changelog: adds note about closing #10506\n * changelog: adds note about closing #15651\n * Return 404 on user not found (#15606)\n * Catch bad regex exception at controller level\n * Prettier fix\n * Add PiechartOptionsBox\n * docs: missing field added to example\n * 11780: invalid reg value can cause unexpected behaviour\n * Fixed right side scrollbar margin on dashboard page\n * fix: Return url when query dashboards by tag\n * Fix prettier\n * Initial rendering\n * Add PiechartType enum\n * Install d3\n * Remove extra props\n * Removed commented code\n * Fixed alias in Cloudwatch Expressions\n * Explore: Enable click on name label\n * Bumping grafana ui version (#15669)\n * Style and grammar fixes\n * big text option\n * Need this to be available for plugins\n * service: fix for disabled internal metrics.\n * docs: 6.0 whats new\n * Toggle stack should trigger a render, not a refresh\n * Updated latest.json with 6.0\n * docs: grafana 6.0 has been released.\n * moves social package to /login\n * moves tracing packge into /infra\n * changelog: adds notes for #14509 and #15179\n * graph: fixes click after scroll in series override menu\n * moves metric package to /infra\n * Explore: Make sure line graphs get different colors\n * stackdriver: change reducer mapping for distribution\n metrics\n * stackdriver: fix for float64 bounds for distribution\n metrics\n * update\n * style tweaks\n * Refactoring orientation stuff\n * Refactoring bar gauge\n * Refactoring bar gauge\n * Added missing file\n * refactoring repeater and code in gauge and bar gauge to\n reuse more code\n * docs: link to azure monitor from what's new in v6.0\n * Fixed value dropdown not updating when it's current value\n updates, fixes #15566\n * docs: tweaks to AzureMonitor docs\n * Added feature toggle to defaults.ini and sample.ini after\n PR comments\n * Moved variable to config struct after PR comments\n * Added feature toggle editors_can_own\n * updates all cols except created so user and password of\n the database can be chaned to no user and password\n * Fixed bug with getting teams for user\n * Improve Loki logs render with ANSI colors (#15558)\n * grafana/ui 6.0.0-alpha.0 release version bump\n * removed color in color variables names\n * changelog: add notes about closing #15303\n * changelog: add notes about closing #1441\n * update changelog\n * grafana/ui 1.0.0-alpha.0 release\n * Update grafana/ui readme\n * docs: landing page update\n * Bring back plugins page styles\n * docs: layout fixes\n * prettier fix\n * Make published package public by default\n * docs: fix link\n * docs: fix order of datasources in menu/index and update\n alert support\n * Fixed prettier issue in color picker\n * Update docs to match current npm scripts\n * Added keywords and description go grafana/ui package\n * Fixed failing tests because of circular dependency\n * Fix version and name in grafana/ui package.json\n * Imports updates\n * Implemented scripts for building and releasing grafana/ui\n * changed some more color variables to use variables\n * fixed tests\n * panel: defensive coding that fixes #15563\n * Minor fix/polish to gauge panel and threshold editor\n * copying options between visualizations\n * fixed issue in dark sass template\n * Updated body & page variables to use variables from code\n theme\n * updated building from source docs\n * fixed snapshots failing in master\n * Synced variable template files\n * fix: mysql query using __interval_ms variable throws error\n * Fixed scrollbar issue introduced in theme changes\n * Fix build\n * minor touch ups\n * Fix heading levels in generic-oauth.md\n * updated colors in light, dark and theme files, in template\n file basic colors uses variables from dark/light files,\n also changed to -basic in some files\n * ValueOptions -> PiechartValueEditor\n * Make it build\n * fixes\n * added orientation option\n * export PiechartDataPoint from @grafana/ui\n * change valueOptions\n * get label and color from series\n * prettier fix\n * PieChartDataPoint -> PiechartDataPoint\n * Rename PieChartPanelEditor to PiechartPanelEditor\n * docs: adds Azure Monitor docs\n * Fix blue in dark theme\n * Readme update\n * Minor fixes\n * Review fixes\n * Fixes after merging #15468\n * Pass dashboardModel to PanelCtrl class. Fixes #15541\n * Add piechart to builtInPlugins\n * logo: svg -> png\n * Remove old overwritten sass vars\n * first draft of repeater component\n * docs: howto for recreating our debian repositories.\n * fix: Filter out values not supported by Explore yet #15281\n * Bump Prettier version (#15532)\n * updated theme variables to master\n * updated theme template files variables to master\n * add new issue templates\n * Fixes #15506\n * chore: graph2 panel plugin should use the new\n ReactPanelPlugin from @grafana/ui\n * fix: Have the tab param removed from the url when leaving\n edit mode #15485\n * reduce loglevel to debug\n * Fixes #15505\n * fix native annotation filtered by template variable with\n pipe\n * Fixed navbar backbutton padding\n * Updated explore icon and style tweaks Lowered icon size\n and improved paddings, tried to align placement between\n dashboard and explore\n * Display graphite function name editor in a tooltip\n * Fixing array direction, adding simple render test, fixes\n #15478 Fixed unit test and updated gauge Added migration\n for threshold order\n * changelog: adds note for #15500\n * fixed page-header-bg\n * cli: chmod 755 for backend plugin binaries\n * reversed most of grays in dark theme\n * Fixes #15477\n * Changed how react panels store their options (#15468)\n * Remove maxDataPoints and interval props from props to\n remember in panel model\n * Fix typo in view mode cykle button\n * Variables regenerated\n * Make clear that variable scss files are generated from\n templates\n * Fixed spelling issue in templating docs\n * Removed primary class from Add Query button, and changed\n name of Panel Options tab o General Options\n * improved formatting of variable docs\n * Datasource docs for Loki\n * Replace require with import in start task\n * Added enable_gzip documentation (#15322)\n * Add Lux to units\n * Fixed issue with PanelHeader and grid-drag-handle class\n still being applied in fullscreen, fixes #15480\n * Began work on handling panel type switching and keep\n setting\n * Fixed unit tests\n * Fixed gauge issue that will require migration later and\n also value options editor did not handle null decimals or\n 0 decimals\n * Added missing Gauge props\n * Bar gauge icon updated\n * Added bar gauge icon\n * Began work on adding options\n * Added basic tests\n * bar-gauge storybook\n * Began experimenting with a bar gauge\n * Also remove nested options prop that was there due to bug\n * Moved gauge value options into a sub oject and made editor\n more generic, will be moved out of gauge pane later and\n shared between singlestat, gauge, bargauge, honecomb\n * Added a ReactPanelPlugin as the interface that react\n panels export, this way react panels have clearer api, and\n gives us hooks to handle migrations and a way for panel to\n handle panel changes in the future\n * Changed how react panels store their options\n * Fixed prettier issue (#15471)\n * Initial commit\n * Added bar gauge icon\n * Began work on adding options\n * Added basic tests\n * run db tests in all packages\n * bar-gauge storybook\n * new dark-3 became new dark-2, created new lighter dark-3,\n changed panel-bg, empty-cta etc to dark-2\n * Began experimenting with a bar gauge\n * docs: suggested changes\n * docs: fix header\n * fixed handling of alert urls with true flags, fixes #15454\n * Fixed dashboard navbar buttons being visible in\n fullscreen, fixes #15450\n * Added missing strict type checking options to grafana/ui\n and fixed type errors\n * Extracted common code for diff calculation\n * fix spelling error\n * whats new: rename security section\n * Fix percent_diff calculation when points are nulls\n * Restored loading spinner to DataPanel\n * rearrange bullet points in PR template\n * added another error message scenario\n * link to contributing guidelines in pr template\n * Fixes to error handling and clearing, also publishing of\n legacy events so old query editors work with react panels\n fully\n * contributing: adds link to help wanted label\n * contributing: adds link to our CLA\n * removes testing instruction from contributing doc\n * docs: move alerting above session\n * docs: mention samesite setting\n * increased blue in dark-1-5, dark-3 and dark-4\n * docs: adds note about new login cookie name\n * changed color for blue light in light theme + small\n changes in naming etc\n * Add missing nodemon dependency\n * make bug/feature titles more verbose\n * mentioned closes/fixes for new features\n * docs: improve removal of session storage for what's new in\n v6.0\n * docs: add upgrade notes for v6.0\n * docs: add note regarding auth proxy and user session\n requirement\n * docs: fix typo\n * removed more unused variables, restyled scrollbar\n * allow 90 percent of alertTimeout for rendering to complete\n vs 50 percent\n * Fixed issue with sass variables used from typescript, the\n prettier lowercases export variables\n * using error callback from datapanel instead\n * docs: add availability note regarding non-compliant\n providers\n * Fixed sass vars template files\n * Added deprecation warning to npm watch script - use start\n script instead\n * added new dark variable to dark theme(the color used for\n page-bg), changed some backgroud colors that doesn't use\n variables to use variables, made some slight tweaks to\n dark variables, fixed so item hover is the same as card\n hover\n * Simple CLI for running grafana in dev env\n * Added common theme variabless generation, created\n GrafanaThemeCommons interface\n * contributing: improve guide for bug fixes\n * Changed devenv default data source to testdata\n * added support for influxdb non_negative_difference\n function in tsdb\n * added support for influxdb non_negative_difference\n function in tsdb for alerting\n * Remove precommit from npm scrips\n * More files that has fixed with prettier\n * Added prettierignore and check script\n * devenv: use grafana:dev image in ha test per default\n * devenv: send nginx logs to loki in ha test\n * devenv: proper fluentd conf for grafana and loki\n * devenv: use grafana/fluent-plugin-loki\n * devenv: trying to make fluentd with inoffical\n fluent-plugin-loki work\n * fixed issue with updatePopperPosition\n * Prettier had not been running as a precommit hook for some\n time so had to run in on all files again\n * removed _plugins.scss and _settings_permissions.scc,\n removed unused classes in _login.scss, reduced dark\n variabels in light theme and alignied light theme a bit\n with dark theme, turned blue-gray, dark-3 and panel-bg\n variables into one variable and removed gray-7 in dark\n theme\n * feat: Add EmptySearchResult ui component and use it in\n VizTypePicker\n * Revert 'feat: Add css-support for invalid form input\n elements'\n * Revert 'feat: Highlight vizpicker input when there are no\n panels matching the search query'\n * Regenerating variabless sas on theme edit v1\n * Fixed a minor plugin json lingering issue\n * Removed some icons in action button Trying to align some\n title case issues\n * implement show error in panelcorner\n * Forgot about the snapshots\n * Renamed to FilterInput and added label and search icon\n * feat: Highlight vizpicker input when there are no panels\n matching the search query\n * Updated a few plugin json files with dataFormats\n * feat: Add css-support for invalid form input elements\n * remove comments\n * bubble error from datapanel to panelchrome\n * Changed noQueries to a dataFormats array that will allow a\n panel to define supported formats and prefered (first in\n array)\n * use authtoken for session quota restrictions\n * Fixed issues with double page body and husky pre-commit\n hook\n * fix: No need to have edit permissions to be able to 'Save\n as' a dashboard\n * Revert 'chore: wip: Replace brace with ace-builds to get\n latest version of ace'\n * chore: wip: Replace brace with ace-builds to get latest\n version of ace\n * fix: Error tooltip should have white text on red\n background. Not red text on red background\n * Move explore selectors to a separate file\n * removes unused session code\n * chore: Rename renderPanel to renderPanelBody\n * chore: Rename renderDataPanel to renderPanel\n * chore: Rename renderHelper > renderDataPanel and move\n logic to smaller functions\n * chore: PR feedback, shorten boolean check\n * chore: Rename isDataPanel to noQueries\n * chore: Only show Queries tab for panel plugins with\n isDataPanel set to true\n * feat: Only use the DataPanel component when panel plugin\n has isDataPanel set to true in plugin.json. And fix\n PanelData when using snapshots\n * feat: Add util to convert snapshotData to PanelData\n * feat: Introduce IsDataPanel attribute to plugin.json\n * fix: Add missing typing\n * Fixes #15372 with number input and parseFloat\n * Revert 'hard move'\n * chore: PR feedback, shorten boolean check\n * chore: Rename isDataPanel to noQueries\n * Merge with master\n * Found another input that was tied to a regexp\n * Fixes bug #12972 with a new type of input that escapes and\n unescapes special regexp characters\n * enable testing provsioned datasources\n * Fixed elastic5 docker compose block\n * Added one more test case for color resolving helper\n * Fix error caused by named colors that are not part of\n named colors palette\n * Fixed issue with gauge requests being cancelled\n * Update package.json\n * changelog: adds note for #15363\n * Move deduplication calculation from Logs component to\n redux selector\n * style tweak to alert\n * Removed plus icons\n * hard move\n * restoring green CTA\n * Removed double page container\n * chore: Only show Queries tab for panel plugins with\n isDataPanel set to true\n * Removing default thresholds values.\n * adds edition to build_info metric\n * Updated lint-staged\n * changelog: adds note for #14623\n * Fixed double page class on api keys and org details page\n * Color tweaks\n * azuremonitor: don't use make for maps and array\n * changed back to old green in light theme\n * changelog: add notes about closing #15258\n * changelog: add notes about closing #15223\n * changelog: add notes about closing #15222\n * changelog: add notes about closing #15122\n * changelog: add notes about closing #15219\n * changelog: add notes about closing #14432\n * update changelog\n * changelog: adds note for #15131\n * changelog: add notes about closing #15284\n * Fixed issue with light theme introduced by #15333\n * devenv test dashboard\n * minor style update\n * revert ds_proxy timeout and implement dataproxy timeout\n correctly\n * changelog: adds note about closing #15295\n * azuremonitor: fix auto interval calculation on backend\n * Minor style fixes\n * Remove not related code\n * make sure opentsdb takes dashboard timezone into\n consideration\n * make sure influx takes dashboard timezone into\n consideration\n * Do not read store state from toggle panelaction creator\n * make sure graphite takes dashboard timezone into\n consideration\n * Review changes\n * return series label if selected stat is name\n * Fix plugin loading failure message not being displayed\n * fixes invalid folder check\n * extract notifiers folder creation to new if statement\n * interval: make the FormatDuration function public\n * Fixed missing time axis on graph due to width not being\n passed\n * make sure notifiers dir exists for provisioning in docker\n * should be able to navigate to folder with only uid\n * renames usage state name for auth token\n * Clear visualization picker search on picker close\n * Update README.md\n * changelog: adds note about closing #15288\n * v1\n * removed extra semi-colon\n * Commented out the Loki dashboard query editor\n * added old green to dark-theme\n * Fixed issue with logs graph not showing level names\n * set secondary to new blue\n * removed unused directive\n * Fixed issue where double clicking on back button closes\n sidemenu\n * changelog: add notes about closing #8570\n * update changelog\n * changelog: add notes about closing #14233\n * changelog: add notes about closing #15189\n * changelog: add notes about closing #13324\n * azuremonitor: small refactoring\n * azuremonitor: handles timegrain set to auto on backend\n * Navbar back button, no title edit this time\n * provide time range to angular query controllers\n * azuremonitor: add test for dimension filter\n * azuremonitor: refactor azure monitor api code into own\n file\n * azuremonitor: handle multi-dimensions on backend\n * use timeSrv in metricFindQuery as timeRange\n * remove unnecessary spy\n * azuremonitor: add support for aggregations on backend\n * Fix formatting\n * Add aws ec2 api metrics for cloudwatch\n * Improve usability showing disabled lines in forms\n * Fixed issues with plus button in threshold and panel\n option header, and current state in viz picker, fixes\n #15329\n * support three letter hex color strings\n * azuremonitor: simple alerting for Azure Monitor API\n * use unique datasource id when registering mysql tls config\n * azuremonitor: builds a query and sends it to Azure on the\n backend\n * mark packages as Apache license\n * Minor refactoring around theme access\n * Use TS instead of JS to store theme variables@next\n * Do not use js theme variables in sass (poor dev experience\n for now)\n * Update config mock in metrics panel controller test\n * ldap: refactoring.\n * ldap: fixes #14432. Fix for IPA v4.6.4\n * ldap: adds docker block for freeipa\n * feat: Only use the DataPanel component when panel plugin\n has isDataPanel set to true in plugin.json. And fix\n PanelData when using snapshots\n * feat: Add util to convert snapshotData to PanelData\n * feat: Introduce IsDataPanel attribute to plugin.json\n * fix: Add missing typing\n * slight tweaks\n * fixed explore width-0 issue, fixes #15304\n * Persis deduplication strategy in url\n * Support ANSI colors codes in Loki logs\n * adds usage stats for sessions\n * Panel edit navbar poc\n * make sure to create provisioning/notifiers directory for\n deb and rpm packages\n * log root cause error when reading from provisioning\n directories\n * moves usage stats sender to new package\n * changelog: add notes about closing #15291\n * Removed unnecessary code from ColorPicker and extended\n theme type\n * Selecting theme variable variant helper function\n * added reducers tests\n * update docs\n * added way to test action called from react component\n * Added annother initDashboard test\n * removes cleanup setting from docs\n * make hourly cleanup the default behavior\n * fix single gauge\n * removed direction and series mode options, cleaned up the\n code somewhat\n * Simplified condition\n * support json format templating\n * support /api/v1/labels\n * devenv: update ha test and load test\n * run token cleanup job when grafana starts, then each hour\n * Added another error object message detection\n * Fixed some remaining issues\n * Improved dashboard page test\n * Improved dashboard page test\n * Big refactoring for dashboard init redux actions\n * Fix SemVersion.isGtOrEq\n * making changes suggested in review and improving typings\n * fix\n * show timeseries label under gauge\n * Minor cleanup\n * Added test for SASS variable retrieval function from JS\n definition\n * Updated stories to use new theming\n * move authtoken package into auth package\n * vertical and horizontal, removed mode option\n * move UserToken and UserTokenService to models package\n * Add failing test\n * Rename version_test to version.test\n * change UserToken from interface to struct\n * replaced some hex values with variables\n * some changes i forgot to save in first push in\n variables.dark\n * removed trailing whitespace\n * removed unused theme variables, removed empty sections,\n aligned the order of sections in the files\n * combine mode with avg value\n * Fix issue with graph legend color picker disapearing on\n color selection\n * changelog: add notes about closing #12546\n * Added a basic test for initDashboard thunk\n * docs: update annotaions http api\n * azuremonitor: improve autocomplete UX\n * Added DashboardPage tests that tests view mode transition\n logic\n * azuremonitor: fix autocomplete menu height\n * Revert 'chore: Replace sizeMe with AutoSizer in\n DashboardGrid'\n * Revert 'chore: Remove react-sizeme'\n * fix spelling\n * wip: tests\n * middleware fix\n * enhanced expiration logic for lookup token\n * changelog: add notes about closing #15265\n * Address review comments\n * auth token clean up job now runs on schedule and deletes\n all expired tokens\n * changes needed for api/middleware due to configuration\n settings\n * change configuration settings in auth package\n * document login, short-lived tokens and secure cookie\n configurations\n * refactor login/auth token configuration settings\n * remove unused code\n * Added ServerlessDatabaseCapacity metric to list of AWS RDS\n metrics.\n * changelog: add notes about closing #8207\n * Minor code simplification\n * Delete template.html\n * cloudwatch: Add tests for resource_arn template query\n * cloudwatch: Add resource_arns template query function\n Implements feature request #8207\n * update to aws-sdk-go v1.16.15\n * Updated add panel related flows\n * Update types and themes usage in components\n * Implemented theme context and renamed/moved theme related\n types\n * refactor panel\n * changelog: adds note for #15182\n * Breaking init dashboard up in to fetch & init\n * stackdriver: fixes #15182\n * Closing timepicker when clicking outside the picker\n * Optimized so we only do checks when dropdown is opened\n * stackdriver: add some more typings\n * Fixed so that we close angular TimePicker when user clicks\n outside the dropdown\n * Moved remove panel logic to dashboard srv\n * first working draft\n * Removed unused controllers and services\n * Improved error handling\n * fix: Update snapshot\n * chore: Explore: Remove inner AutoSizer, spread the\n size-object to width/height, change height type to number\n * chore: Remove react-sizeme\n * fix: Calculation issue with AutoSizer in explore\n * chore: Replace withSize with AutoSizer in\n explore/Graph.tsx\n * chore: Replace sizeMe with AutoSizer in DashboardGrid\n * Prevent viewers from going into edit mode\n * Expand rows for panels in collapsed rows\n * Basic loading state for slow dashboards\n * Fixes #15223 by handling onPaste event because of bug in\n Slate\n * Fixed add panel should scroll to top\n * minor layout change, simple render test\n * azuremonitor: improve autocomplete experence\n * docs: fixes #14940\n * Added custom scrollbar and remember scroll pos to jump\n back to same scroll pos when going back to dashboard from\n edit mode\n * created new color variables, changed primary to blue,\n changed success-btns to primary-btns.\n * azuremonitor: more autocomplete suggestions for built-in\n functions\n * Updated playlist test\n * added missing typing to explore props\n * added comment to initDashboard\n * improve the stackdriver logo\n * Fixed so onBlur event trigger an QueryChange and\n QueryExecute if values differ\n * Renamed initialQueries to queries\n * Added PATCH verb end point for annotation op\n * move auth token middleware/hooks to middleware package\n * auth package refactoring\n * render after leaving fullscreen\n * added flags to vizpicker from query param\n * Added playlist controls to new react DashNav\n * Fixed lots of loading flow issues and updated solo route\n page\n * Set page title on dashboard load\n * now /api/login/ping returns Response\n * Added handling of kiosk mode\n * WIP Enable js defined theme to be used in SASS\n * fix: Explore: Query wrapping on long queries #15222\n * azuremonitor: fix where suggestions\n * prepping go to visualization\n * azuremonitor: use kusto editor for App Insights\n * basic layout\n * fixed unit test\n * Made dashboard view state srv panel view state obsolete\n * fix: Set ace editor min height to avoid problem with\n scrollbar overlapping ace content #15122\n * Missed to save\n * fix: Data source picker in panel queries options should\n overlap content below, including ace scrollbar #15122\n * Fixed handling of orgId\n * Fixed template variable value changed handling\n * Fixed bug with removing a QueryRow thats not part of\n nextQueries\n * Now handles all dashbord routes\n * Replaced intialQueris with queryKeys\n * fix util for splitting host and port\n * azuremonitor: where clause autocomplete\n * azuremonitor: don't go back to dashboard if escape pressed\n in the editor\n * azuremonitor: suggest tables initially\n * azuremonitor: add more builtin functions and operators\n * Reverted redux-logger\n * Added more typings\n * added submenu, made sure submenu visibility is always up\n to date\n * changelog: add notes about closing #14231\n * Removed modifiedQueries from state\n * fixing logging action\n * devenv: switching back using loki master plus various\n fixes\n * Fix save provisioned dashboard modal\n * Merge with master\n * Refactor of action, actionTypes and reducer\n * More types and some refactoring\n * Alignment of interfaces and components\n * Removed the on every key change event\n * Add AWS/Neptune to metricsMap and dimensionsMap\n * added time picker\n * refactorings and cleanup\n * mssql: pass timerange for template variable queries\n * improving dash nav react comp\n * fixed panel removal\n * Added more buttons in dashboard nav\n * wip: progress\n * Url state -> dashboard model state sync starting to work\n * Dashboard settings starting to work\n * wip: dashboard in react starting to work\n * wip: minor progress\n * wip: dashboard react\n * base64 encode encrypted oauth token fields\n * Add string quote func\n * Remove option used to control within browser\n * Remove length from text columns\n * Add oauth pass-thru option for datasources\n * did not add file, removing centerered\n * Legend toggle should only trigger a re-render, not a\n refresh\n * first stuff\n * updated snapshot\n * Adding pointer to colorpicker\n * Minor post review changes\n * More style tweaks to panel option group add button\n * Made some style tweaks\n * setting margin on label\n * Make runQueries action independent from datasource loading\n * fixing test\n * add button in header\n * minor fix\n * Made really good progress on loki support in dashboards\n * Temporarily run queries independently from UI state of\n explore panels\n * Remove extra newline\n * Clearify the Run from master instructions\n * Use slate-plugins from app/features/explore\n * Remove newline && runner plugins\n * Move prism to app/features/explore\n * Restoring explore panels state from URL\n * Remove version.ts\n * introduce samesite setting for login cookie\n * sending paneldata to component, gauge can handle table\n data\n * always delete session cookie even if db delete fails\n * New solo panel route working in all scenarios I can test\n * Removed unused factory and fixed index based mapper lookup\n * Fixed dashboard row title not updating when variable\n changed, fixes #15133\n * Removed comment from panel editor\n * signout user if /api/login/ping returns 401 unauthorized\n * must return json response from /api/login/ping\n * adds more tests signing out session\n * changes some info logging to debug\n * wip\n * tailing grafana logs and temporaily using an older build\n * add missing ngInject annotation\n * renames signout function\n * delete auth token on signout\n * typing data\n * changelog: adds note about closing #10780\n * Do not render time region line or fill if colors not\n provided\n * Fixed row options html template location, fixes #15157\n * creating table data type\n * wip: New react container route for solo panels that\n supports both angular and react panels\n * build: enterprise release co project.\n * Fixed another type of fluent reducerFactory\n * Moved dashboard state components to state folder\n * Moved time_srv to services folder, this should not belong\n to dashboard feature but it is too dependant on dashboard\n to move it out now, needs a bigger refactoring to isolate\n from dashboard\n * Moved a few things around\n * Removed then clauses, no need to test the test within the\n test\n * Updated what's new article\n * Added reducerTester, reducer tests and tests\n * Removed ActionTypes and fixed a\n noPayloadActionCreatorFactory\n * Replace usages of kbn.valueFormats with ui/getValueFormat\n * Refactored Datasources as POC\n * Fix anchor\n * Added download links to docs\n * Updated docs\n * Updated version again\n * Updated version and made some changes to changelog and\n what's new article\n * docs: Added version notice for time range variables\n * Added loki video\n * spell fixes\n * chore: Add typings for react-grid-layout and\n react-virtualized\n * fix: Don't open panel menu when dragging (react-)panel in\n dashboard #14946\n * chore: Add missing typings in PanelResizer\n * chore: Fix typings and remove bindings for arrow functions\n in DashboardGrid\n * Updated explore section again\n * Updated explore section\n * fixe merge issue\n * updated what's new article\n * adjusting types to match\n * Add storybook script to run it from root dir\n * Minor change to Action interfaces\n * Simplified inteface for reducerFactory\n * Fixed a small bug and added case sensitivity\n * docs: whats new tweaks\n * Added reducerFactory and tests\n * Minor updates to text and image placements\n * docs: add video link to what's new\n * whats new: note about session storage\n * first implementation\n * Added actionCreatorFactory and tests\n * whats new: provisioning for alert notifiers\n * Rename SetInitialQueries action to QueriesImported\n * Add missing code\n * changelog: adds note for #15129\n * docs: update to what's new\n * docs: wip - what's new for 6.0\n * Minor style fix to button group\n * Fixed failing unit test\n * Added basic docs\n * Minor refactoring and adding some typing\n * changelog: add notes about closing #14709\n * fixed sqlite issue introduced by #14709\n * Change primaryAggregation to crossSeriesReducer in\n Stackdriver\n * update changelog\n * changelog: add notes about closing #12764\n * fix: Remove legacy title-prop and update document.title\n when navModel is changed #15108\n * Explore: query field should not propagate non-text change\n * Wait for queries to be imported before proceeding with\n datasource change\n * removing alpha\n * Remove commented code\n * Tweaked panel option group styles\n * Import queries before datasource is changed\n * fixed prettier on switch component\n * adding from and to built in variables\n * azuremonitor: adds macros to slate intellisense\n * Fixed issue with explore changeTime redux action not being\n hooked up, fixes #15115\n * Fixed explore query editor styling issues\n * azuremonitor: remove wrong completions\n * azuremonitor: autocomplete on enter\n * Progress on tooltip style update\n * azuremonitor: fix tests\n * devenv: loki provisioned datasource\n * azuremonitor: revert 'memory for webpack build'\n * Azure Monitor: replace monaco by slate with initial Kusto\n syntax\n * docker: block for loki\n * Make language provider cancelable in Loki and Prometheus\n QueryField, to avoid setting state on unmounted component\n * Add util for handling promise cancelation to avoid setting\n state on unmounted components\n * stackdriver: remove beta notice from config page\n * increasing font size on longer strings\n * magic number solution\n * Propagate event to onChange prop in Switch component\n * two minor bug fixes introduced in recent refactorings\n * Minor progress on react query editor support, solving\n updating query persisted state\n * did some styling changes\n * Updated Explore query styles to align them to other query\n editor to make them fit in better\n * chore: Fix typings and add Page-component to\n FolderPermissions #14762\n * chore: Fix typings and add Page-component to ServerStats\n #14762\n * chore: Fix typings and add Page-component to AlertRuleList\n #14762\n * chore: Fix typings and add Page-component to\n DataSourceDashboards #14762\n * fix: Add plugins to StoreState interface\n * chore: Fix typings and add Page-component to\n NewDataSourcePage #14762\n * chore: Fix typings and add Page-component to\n DataSourceSettingsPage #14762\n * chore: Fix typings and add Page-component to\n FolderSettingsPage #14762\n * test: Updated snapshot\n * chore: Fix typings and add Page-component to TeamPages\n #14762\n * fix: Add pageName default to avoid 'Loading undefined...'\n * changelog: adds note about closing #10487\n * pkg/util/{filepath.go,shortid_generator.go}: Fix golint\n issues\n * pkg/util/{ip.go,url.go}: Fix some golint issues\n * pkg/util/*: Add missing function comments.\n * docs: updates docs to refer to using uid\n * azuremonitor: increase memory for webpack build\n * gofmt issue\n * moves test files into testdata folder\n * renames alert_notifications -> notifiers\n * changelog: add notes about closing #14711\n * update inline documentation\n * extract parsing of datasource tls config to method\n * extract tls auth settings directive from datasource http\n settings directive\n * changelog: add notes about closing #13711\n * changelog: add notes about closing #5699\n * Fix for annotations not clearing when switching\n dashboards, fixes #15063\n * Import fix\n * build: ignore latest\n * Spelling/grammar fixes in top level markdown files\n * build: publishes armv6 to grafana.com.\n * Removed the initial data source as I could not see it\n being used anywhere\n * Initialize named colors palete lazily\n * Fix thresholds default colors not being applied\n * removes unnessecary db request\n * Making sure we do not pass a long invalid queries and save\n to state\n * single import for types from @grafana/ui\n * tab/spaces formatting\n * Revert 'Updated home dashboard, removed home dashboard\n header'\n * Fixed wrong line in test\n * Made sure we only resetTypeahead if mounted\n * Delayed explore query loading indicator and implemented\n minor ux improvements to it\n * fixing test\n * support both uid and id for showing/removing notifiers\n * Revert 'Use the same panel loading indicator in explore as\n on dashboard's panel'\n * Firing off an action instead of listening to location\n changes\n * Handle undefined graph and table results\n * enable explore by default\n * Use the same panel loading indicator in explore as on\n dashboard's panel\n * Prevents query result cleaning when new query trransaction\n starts\n * Changes after PR Comments\n * Made ExplorerToolbar connected and refactored away\n responsabilities from Explore\n * Removed some split complexity\n * Fixed some more styling\n * Fixed close split look and feel\n * Fixed position of Closesplit\n * Fixed small issue with TimePicker dropdown position\n * Simplified some styles and dom elements\n * Fixed some more with the sidemenu open and smaller screens\n * Fixed so heading looks good with closed sidemenu\n * Restructure of component and styling\n * Refactored out ExploreToolbar from Explore\n * updating state if no panel\n * updated the color palette\n * Fixed reinitialise of Explore\n * changelog: add notes about closing #13929\n * changelog: add notes about closing #14558\n * changelog: add notes about closing #14484\n * changelog: add notes about closing #13765\n * changelog: add notes about closing #11503\n * changelog: add notes about closing #4075\n * changelog: add notes about closing #14722\n * update changelog\n * changelog: add notes about closing #10322\n * changelog: add notes about closing #12991\n * update changelog\n * Update datasource before the loading has started\n * Add cursor pointer to color swatches\n * Fixed import path\n * changelog: adds note about closing #14701\n * upgrade golang to 1.11.5\n * moves timeout tests to an integration test\n * Moving a few things from dashboard folder\n * Correct formatting of sqlstore_test.go\n * pkg/services/dashboards/dashboard_service.go: simplify\n return\n * Updated url query param encoding to exctly match angular\n encoding\n * Updated snapshot\n * Added missing props not being passed to scrollbar\n component, fixes #15058\n * Parse database host correctly when using IPv6\n * Document /api/health\n * some working solution, needs refactor\n * changelog: adds note for #15062\n * Do not update color picker popover position on tab change\n * change default rotate_token_minutes to 10 minutes\n * Rename deprecation warning helper\n * Implemented tests for ColorPickerPopover and\n NamedColorsPalette\n * fix\n * load test/ha fixes\n * set low login cookie rotate time in ha mode\n * Fix light theme issues with named colors disabled\n * Stories cleanup\n * fix multiple piechart instances bug\n * scripts/build/*: Fix some golint issues\n * scripts/build/*: Fix golint issues Url => URL\n * build: fixes building grafana completely within docker.\n * dont specify domain for auth cookies\n * monaco-kusto: fix imports\n * use @alexanderzobnin/monaco-kusto package for kusto syntax\n highlight\n * New snapshot reflecting changes\n * Makes the clickable side menu header look great in light\n theme again\n * org id fix for load test\n * user auth token load tests using k6.io\n * add global datasource proxy timeout setting\n * moves cookie https setting to [security]\n * Azure Monitor: build monaco with webpack WIP\n * Use Switch to control y-axis in series color picker\n * Move Switch component to grafana-ui\n * improves readability of loginping handler\n * Bug Fix #14961\n * minor styling changes to gaps, font-size and width\n * makes sure rotation is always higher than urgent rotation\n * use defer to make sure we always release session data\n * Enable custom picers on color color picker popovers (for\n y-axis support in legend picker)\n * feat: Use CustomScrollbar in explore #14752\n * chore: Better comment\n * chore: Remove comment and unneeded export\n * fix: Enable -webkit-scrollbar related css when there's no\n overlay scrollbar #14807\n * fixes broken test\n * Make series overrides color picker display correctly\n * removes unused/commented code\n * removes old cookie auth configuration\n * makes auth token rotation time configurable\n * Update story for NamedColorsPalette\n * Update imports of NamedColorsPalette\n * Restore missing styles\n * Fixed issue with color name retrieval not being aware of\n current theme\n * Fixed dashboard import issue after move\n * Moved add panel panel and renamed it to add panel widget\n * Fixed react key warning for loki start page\n * Moved row options to it's own component folder\n * Removed old query inspector (that was opened by clickin\n error in panel title) think the new query insector from\n Queries tab can replace this old one.\n * Moving files to better locations\n * Disable query should trigger refresh\n * added docs entry for check_for_updates config flag, fixes\n ##14940\n * Loki query editor is starting to work, had to make changes\n to explore query field in order to update query from the\n outside without unmount between\n * store oauth login error messages in an encrypted cookie\n * Removed sass import of spectrum.scss\n * replaced palette colors with current palette adjusted for\n dark and light theme\n * Remove spectrum.js vendor dependency from grafana/ui\n * changed light-theme tool-tip to be a bit lighter, trying\n different paddings\n * Fix hide timeout for color picker\n * Rename colorsPalette util to namedColorsPalette\n * Make small swatches react to theme changes\n * redirect logged in users from /login to home\n * Explore: Fix scanning for logs\n * Update styles of selected named color swatch\n * restrict session usage to auth_proxy\n * Implement pointer component for spectrum palette sliders\n * minor updates\n * Make default color picker close on trigger mouse leave\n * Moved ad hoc filters and upload directive\n * Added deprecation warning to old color picker API props.\n Moved named color support handling to color popovers\n * changed color for label tooltips from blue/red-yellow\n gradient to black/white\n * Moved dashboard srv and snapshot ctrl\n * Moved share modal\n * Moved dashboard save modals to components folder\n * Moved unsaved changes service and modal\n * Removed unused alertingSrv\n * Moved view state srv to services\n * Moved timepicker to components\n * Moved submenu into components dir\n * Moved dashboard settings to components\n * Moved dashboard permissions into components dir\n * Moved history component, added start draft of frontend\n code style guide\n * fix: Use custom whitelist for XSS sanitizer to allow class\n and style attributes\n * Reduce padding in color picker popover\n * Began work on improving structure and organization of\n components under features/dashboard, #14062\n * Fix a typo in changelog\n * Implemented new spectrum palette\n * Update ROADMAP.md\n * use resetfolder instead so it shows current folder\n * Updated home dashboard, removed home dashboard header\n * fixes nil ref in tests\n * add setting for how to long we should keep expired tokens\n * stores hashed state code in cookie\n * creates new config section for login settings\n * based on encodeURIComponent() using strict RFC 3986\n sub-delims\n * fix: Dispatch the correct action (#14985)\n * passing middleware tests\n * Stories update for color picker\n * Make named colors optional in color picker, enable named\n colors in graph legend series picker\n * Storybook - add actions addon\n * fixes:#14282 - Do not change folder for persisted\n dashboards\n * extract auth token interface and remove auth token from\n context\n * Fixed issues with the sanitizie input in text panels,\n added docs, renamed config option\n * build: removes arm32v6 docker image.\n * Updated version in package.json to 6.0.0-pre1\n * build: armv6 docker image.\n * build: skips building rpm for armv6.\n * build: builds for armv6.\n * CustomScrollbar - expose underlying's\n react-custom-scrollbars API to allow scroll tracks config.\n * Explore: mini styling fix for angular query editors\n * Removed unused props & state in PromQueryField\n * chore: Remove logging and use the updated config param\n * chore: Reverse sanitize variable so it defaults to false\n * feat: wip: Sanitize user input on text panel\n * fix: Text panel should re-render when panel mode is\n changed #14922\n * Minor rename of LogsProps and LogsState\n * Splitted up LogLabels into LogLabelStats and LogLabel\n * Make popover hide delay configurable to enable better UX\n * Stories - fix import\n * Enable new color picker in Gauge and Thresholds editor,\n use ThemeProvider instead of ContextSrv\n * Updated table tests to new behavior for colors (values are\n always rendered as hex/rgb)\n * Make named colors usable in angular code pt 1\n * Story updates\n * Update grafana/ui exports\n * Refactor color picker to remove code duplicartion\n (introduced colorPickerFactory). Allow popver position\n update on content change\n * Fix lint\n * Updated stories\n * Rendering arrows for color picker, applying color changes\n to time series\n * Fix TS errors\n * Stories updates\n * Unified color picker API, allowed for color specified for\n theme selection, updated code to changes in\n PopperController API\n * Get rid of unused renderContent prop on PopperController\n * Enabled knobs for storybook and implemented some stories\n * Lint fix\n * Render series color picker with correct theme\n * Added config provider to be able to access config easily\n from react components\n * Migrating color pickers to Popper from drop.js pt1\n * Updates to Popper to be positions correctly within window\n * Move tooltip themes to Tooltip component making\n Popper/PopperController theme agnostic\n * WIP Basics of named color picker\n * Refactored out LogRow to a separate file\n * Removed strange edit\n * Added link to side menu header and fixed styling\n * Moved ValueMapping logic and tests to separate files\n * more auth token tests\n * Fixed data source selection in explore\n * Added refId to missing queries on panel model init\n * adds cleanup job for old session tokens\n * Fixed loading of default query editor\n * Changed null logic for range value mappings after PR\n comments\n * fix tests after renaming now\n * Added check for null value in ValueMappings and added\n tests\n * s/print/log\n * avoid calling now() multiple times\n * passing auth token tests\n * fixed trailing whitespace\n * handle expired tokens\n * fixed circleci script run path for gometalinter\n * Fixed circleci name for gometalinter exec step\n * moved script and added exit_if_fail\n * Moved gometalinter to a script instead of seperate\n commands in circleci file, removed megacheck and added\n staticcheck\n * set userToken on request when logging in\n * moves initWithToken to auth package\n * set cookie name from configuration\n * Added function hasAccessToExplore in ContextSrv and\n refactored tests\n * change rotate time\n * mixor fixes\n * dead code\n * fix ip address parsing of loopback address\n * removes commented code\n * moves rotation into auth since both happens before\n c.Next()\n * fix: Viewers can edit means that viewers have acces to\n Explore #14281\n * Add loop counter for full refresh in playlist\n * decreased panel height in edit mode\n * toggle collapse when clicking on collapse state text\n * Query editor row style update & sass cleanup\n * Delete .all.ts@neomake_22624_74.ts\n * Further refinements of typings\n * more typings work around data query and data source\n * wip: progress on adding query types\n * wip: more typings\n * wip: typings\n * Revert 'Specify expected encoding for access/secret key'\n * Moved add query button to the right\n * Updated removing notification channel by uid\n * Check that alert notification with id already exists in\n notification settings\n * change enabled to true\n * Fixed scrollbar issue where it jumped to the top\n * Added test case dashboard\n * fix: Hack for getting the same height in splitted view,\n view could use refactor IMHO #14853\n * Minor refactoring and name changes\n * Fixed issue with explore angular query editor support\n introduced by recent angular query editor changes\n * Redid logic for fontcolor and thresholds in Gauge and\n added tests\n * Make sure we do not change -Infinity\n * Passed the theme to Gauge\n * Added tests for formatted value\n * Small refactor of Gauge and tests\n * Added typings and refactored valuemappings code\n * Moved Gauge to ui/components\n * Preparing move to ui/viz\n * Fixed getFontColor, added tests and fixed thresholds logic\n * Removed baseColor\n * add timeout test for alert handling.\n * remove maxage from session token\n * fix broken code\n * fix cannot set cookie when response is written\n * began work on react query editor props and integration\n * Added data source type to explore state\n * updated snapshot\n * renaming DataSource type to DataSourceSettings and moved\n to grafana ui\n * Fixed issue with team and user picker, fixes #14935\n * Moved data source and data query types\n * Moved plugin types to @grafana/ui\n * log fix\n * inital code for rotate\n * wip: moved plugin exports\n * build: usage instruction for repo test.\n * build: comments\n * Minor fix scrollpos when duplicating\n * build: updates ci deploy.\n * build: fixes the path for gsutil and gcloud.\n * build: fixes permissions issue.\n * removed unused props from angular query component\n interface\n * Additional query editor row tweaks\n * Query editor row in react is working\n * shortening callback functions\n * Explore: Fix datasource selector being empty with single\n datasource\n * Scroll to top when visualization picker is opened\n * Made scrollbar have scrollTop and setScrollTop props so we\n can control scroll position\n * build: only build amd64 for enterprise.\n * azuremonitor: guard for when switching from monaco editor\n * azuremonitor: move files into grafana\n * Query editor row react progress, buttons working\n * build: test script for rpm repo.\n * chore: Replace the deprecated SFC with FC\n * chore: Wrap footer with React's memo hoc\n * chore: Reduce code duplication by letting the page\n component adding the header and taking care of the page\n title\n * mini stylefix to select component\n * cloudwatch.md - quick typo fix\n * removing Label and going with FormLabel\n * Use light theme in storybook\n * Toggle edit mode works\n * login users based on token cookie\n * test: Update snapshots and mocks\n * build: deb repo update test usage instructions.\n * fix: Use Page component on 'Api Keys' and 'Preferences'\n under Configuration\n * build: uploads binaries before metadata in deb repo.\n * feat: Generate page titles from navModel\n * test: Updated snapshots\n * chore: Better way of getting the body node\n * chore: Reactify footer\n * fix: Add Pages component to Plugins and TeamList\n * fix: Configuration: Users should also use the Page\n component\n * feat: Possibility to change document title on pages using\n the Page component\n * fix: Add CustomScroller on DataSources page\n * fix: Proper types for linter\n * test: Snapshot update\n * fix: Fix import path after Scrollbar move to @grafana/ui\n * POC of page layout component\n * Added uid to AlertNotification json\n * Converted notification id to uid via fmt for old alert\n notification settings\n * Returned id for alert notifications which were created\n without uid\n * Formatted errors to err\n * Using func InitNotifier for verifying notification\n settings\n * Added uid for alert notifications\n * Renamed validation funcs for alert notification\n * Commented alert_notifications sample config\n * Instantiating notifiers from config before using\n * Added parameter org_name of alert notification to\n documentation\n * Added orgName parameter for alert_notifications\n * Added alert_notification configuration\n * redoing input props\n * another minor style change\n * More style tweaks to thresholds\n * fix: Manually trigger a change-event when autofill is used\n in webkit-browsers #12133\n * move styling\n * renaming after pr feedback\n * minor style change\n * wip: testing new query editor row design\n * Removed snapshot\n * Refactored ValueMappings\n * Moved ValueMappings to grafana/ui/component and renamed it\n ValueMappingsEditor\n * Moved Label to grafana/ui/components\n * build: repo update testable and more robus.\n * Experimenting with generating doc for ui component\n * Move action properties to payload\n * Fixed small bug with entries outside the min max values\n * Fixed NaN issue when parsing\n * Remove BasicGaugeColor from state\n * Fixed so that we can not change base threshold\n * Fixed so added threshold colors are always unique\n * Fixed issue with changing value not changing index\n * Fixed styling for small screens\n * Reordered the input row\n * Fixed the circle\n * Fixed styling\n * Refactored logic in ThresholdEditor\n * File organization, action naming, comments\n * Fix reducer issues\n * Connect Explore child components to store\n * Update comments\n * Move types to types/explore\n * Save state in URL and fix tests\n * Allow multiple Explore items for split\n * WIP Explore redux migration\n * Fixed a bug with prefix and suffix not showing when using\n value mappings\n * fixing imports, minor fix on mapping row\n * test and minor fix on mapping row\n * updated snapshot\n * Added suffix interpolation\n * Scrollbar select fix\n * Remove duplicated import\n * Initial commit\n * changelog: adds note for #14795\n * Move ColorPicker leftovers to @grafana/ui\n * inject login/logout hooks\n * begin user auth token implementation\n * utils\n * fix: It should be possible to scroll in the unit picker\n before selecting a value #14871\n * fix go fmt\n * [Feature request] MySQL SSL CA in datasource connector\n https://github.com/grafana/grafana/issues/8570\n * removes debug2 logging\n * removes error2 logger\n * WIP: good progress on react query editor support\n * Updates to latest checking.\n * 5.4.3 changelog\n * changelog: adds ntoe about closing #12864\n * fix that alert context and result handle context do not\n use the same derived context.\n * docs: add a title to the Explore docs\n * stackdriver: converts some variables from any to types\n * FormGroup component and implements\n * Restored http settings directive that was hidden in an\n unused angular controller page\n * stackdriver: small fixes after reactifying\n * changelog\n * stackdriver: add help text for bucket alias\n * Prometheus: Fix annotation step calculation\n * stackdriver: fixes space before caret icon in query editor\n * Fixed Syntax for folder permission's JSON\n * avoid infinite loop in the dashboard provisioner\n * build: fixes release problems.\n * changelog: add notes about closing #5968\n * wip: another wip commit\n * Moved panel editing components to it's own folder\n * removed old unused angular stuff, rename\n * wip: react query editors\n * Move panel width/height calculation to PanelChrome\n * Updated singlestat to use new value format function syntax\n and capitalized unit categories, fixes #12871\n * build: build specific enterprise version when releasing.\n * Fixed Gauge being cropped when resizing panel\n * units: adds back velocity units. Fixes #14851\n * Fix bug tls renegociation problem in Notification channel\n (webhook) #14800\n * Fix Error 500 on unexisting /api/alert-notification/<id>\n * updated snapshot\n * Minor renames and other fixes\n * pushover: add support for attaching images (closes #10780)\n * panel option section moved to grafana-ui and new panel\n option grid component\n * Simplified folder structure in grafana-ui lib\n * Addedd assertions about raw time range when panel time\n overriden\n * Panel time override tests\n * add feedback to what interval is being used (calculated in\n the backend)\n * use typings for ds and template srv\n * value formats: another rename and updates code to use new\n valueFormats func\n * value formats: renamed folder\n * Reverted move of defaults for GaugePanelOptions\n * refactoring alias by\n * Move Select styles to grafana/ui\n * Moved defaultProps to ui/components\n * Moved the rest of Threshold dependencies to ui/components\n * Renamed Threshold files\n * Renamed Thresholds to ThresholdsEditor\n * Moved Thresholds and styles to grafana/ui/components\n * Removed default export for colors\n * Fixed typings\n * Small change in SeriesColorPickerPopoverProps\n * Moved colorpicker to ui/components\n * Fixing test and small refactor\n * Moving to grafana ui, fix issue with TestRuleResult\n * Fix panel time overrides not being applied fully\n * access scope directly from this. update tests\n * build: makes sure all builds use the latest container.\n * changelog: docker images for arm.\n * Renamed Select related components: Picker* to Select*,\n Option* to SelectOption*\n * build: removes curl install from build.\n * build: tags arm as well as amd64 as latest.\n * Docker image for ARM\n * Fixing TS and updating snapshot\n * make sure frequency cannot be zero\n * refactoring. fix broken test\n * Migrate Select components to @grafana/ui\n * provide angular directive scope props correctly\n * docker: enable flux in influxdb docker block\n * Moved Thresholds and styles to grafana/ui/components\n * Update README.md\n * 11503: escape measurement filter regex value\n * 4075: Interpolate tempvar on alias\n * rename\n * fixing unitpicker\n * removing tests\n * React graph panel options component rename\n * Minor refactor of Gauge panel\n * Revert 'Docker image for ARM'\n * Revert 'build: fixes docker push.'\n * build: fixes docker push.\n * feat: Add brand as tooltip theme and use it on panel edit\n tabs #14271\n * Docker image for ARM\n * fix broken test\n * chore: Remove ScrollBar component, superseded by\n CustomScrollbar\n * Update storybook static files option to load statics\n correctly\n * unregister event listener correctly\n * Changes after PR comments\n * Removed unused refClassNameprops from Propper\n * Fixed a small bug when toggling items in toolbar\n * build: deploys enterprise to its own repo.\n * build: inline docs\n * build: publishes beta releases to separate repos.\n * refactoring\n * build: makes repo update enterprise compatible.\n * build: uses official deployment image.\n * build: adds aptly and createrepo to deploy tools.\n * build: handles unexpected cases.\n * build: only adds the correct packages to the repo.\n * build: rpm repo deploy.\n * build: repo update input error.\n * build: release of debs to our debian repo.\n * Added tests for TestRuleButton\n * Removed Test Rule button from Angular and view\n * Added TestRuleButton\n * Hint for user on when the repeat is applied\n * Removes unnecessary warnings from webpack output about\n missing exports\n * Use factors for max repeated panels per row\n * Fixing TS errors and updating snapshot\n * Move Portal to @grafana/ui\n * chore: Move sass code related to custom scrollbar into\n @grafana/ui #14759\n * Post merge updates\n * chore: Move CustomScrollbar to @grafana/ui #14759\n * changed light theme page background gradient\n * WIP\n * Max number of repeated panels per row\n * wip\n * Make tooltips persistent when hovered\n * docs: rpm/deb beta repo.\n * update snapshot\n * add form grow\n * fix: Clean up per PR feedback. Thanks @dprokop\n * removing duplicated things\n * minor code refactor\n * splitting into more files\n * Moved AlertTab and StateHistory to app/features/alerting\n * fix: When loki is default data source, datasource is\n passed as undefined to QueryOptions #14667\n * remove redundant max-width. it's already declared in\n gf-form-select-box__menu-list\n * add typing for metric descriptor\n * Removed unused Popover component\n * Update components to fit updated PopperController API\n * make templateSrv a prop\n * Refactored withPoper HOC to PopperController using render\n prop\n * use correct event handler name convention. register\n directive on startup\n * fix: Remove the onRenderError prop and add an\n ErrorBoundary component\n * replace fragment with empty jsx tags\n * refactoring tests\n * ugly fix. will be removed later on\n * adds note for #13914 and #14581\n * moved all units\n * fix: GraphPanel should be a PureComponent\n * fix more broken tests\n * feat: Display error when plot fail to render\n * wip: fix broken tests\n * adding more units and functions\n * Remove the jump effect on run query button\n * ugly temporary fix for scope issue. will be removed later\n on\n * refactoring\n * fix filter bug\n * fix: Light theme corner bg color update\n * set max width on the whole menu list instead\n * bind array instead of function\n * feat: Add 'theme' to Tooltip\n * Notify user on query error\n * Revert 'Revert 'add max width to group header\n description''\n * Revert 'add max width to group header description'\n * remove not used property\n * fix broken tests\n * use correct type for select option\n * set issearchable default value to true\n * make variable type more slim\n * remove group name from select component. let the parent\n set group name instead\n * move component to components dir. also move directive\n registration out from datasource\n * add template variable type\n * rename template variables prop\n * rename selected prop\n * rename searchable prop\n * improve component performance\n * add max width to group header description\n * remove debug logging\n * rollback test state to before template variables were\n added\n * cleanup\n * move template variable logic to component\n * remove extra arrow div\n * fix condition that expands group if it has a selected\n child. also make it possible to pass expanded as a prop\n * align input widths\n * remove console log\n * rename directive\n * remove linebreak\n * remove old group heading\n * use new generic picker\n * remove on metric type change\n * fix remove filter bug\n * use same color for label as in explore dropdown\n * cleanup query filter\n * update failing tests\n * remove redundant default value\n * use new option group in aggregation directive\n * remove redundant default value\n * wip: add option group component\n * wip: add basic option header\n * Wrap react select component in angular directive\n * updated scrollbar snapshot\n * remove not used files\n * Fixed new gometalinter issues\n * fix JSON in responses for Admin API documentation\n * 14722 - removing unnecessary arn check that breaks assume\n role feature in other AWS partitions\n * Fixed issue with cut legend in firefox & mobile devices,\n fixes #14744 and #14489\n * Some cleanup\n * EqualFold()\n * forgot go fmt\n * pull connection string args from url instead\n * Add mean on distribution as well\n * docs: updated debian and centos repo.\n * Fix stackdriver aggregation series merge\n * first stuff\n * Updated documentation for new macros\n * Minor refactoring of EditorTabBody\n * Fixed timepicker css issue introduced by PR #14700 and\n remove hotfix from 297241c\n * AlertTab style fixes\n * Updated alert tab layout & markup\n * Changed datasource list page default layout mode\n * Fixed timepicker css issue introduced by PR #14700\n * Added macros to mysql\n * FIxed syntaxis mistake unixEpochNanoFrom and\n unixEpochNanoTo\n * Added previous macros to mssql\n * Added unixEpochNanoTo and unixEpochNanoFrom macros to\n postgresql\n * Renamed unixEpochFilterNano to unixEpochNanoFilter\n * cleanup\n * add aggregation tests\n * add tests\n * Fix issue with value disappearing when selecting stat\n * Fixing issue with value color being wrong\n * initial design for way to build value formats lazily and a\n backward compatability layer via Proxy\n * fix template variable bug\n * Don't cut off subsecond precision for postgres macros\n * Nanosecond timestamp support postgresql\n * remove not used file\n * Fixed new gotmetalinter warning\n * add support for defining additonal database connection\n string args via extra_connection_string_args\n * clear history\n * cleanup. remove comments, not used files etc\n * state history tab\n * fix broken tests\n * use correct type for select option\n * set issearchable default value to true\n * make variable type more slim\n * remove group name from select component. let the parent\n set group name instead\n * move component to components dir. also move directive\n registration out from datasource\n * add template variable type\n * rename template variables prop\n * rename selected prop\n * rename searchable prop\n * improve component performance\n * add max width to group header description\n * remove debug logging\n * rollback test state to before template variables were\n added\n * cleanup\n * move template variable logic to component\n * remove extra arrow div\n * fix condition that expands group if it has a selected\n child. also make it possible to pass expanded as a prop\n * align input widths\n * remove console log\n * rename directive\n * remove linebreak\n * remove old group heading\n * use new generic picker\n * remove on metric type change\n * fix remove filter bug\n * use same color for label as in explore dropdown\n * cleanup query filter\n * update failing tests\n * remove redundant default value\n * use new option group in aggregation directive\n * remove redundant default value\n * wip: add option group component\n * wip: add basic option header\n * Wrap react select component in angular directive\n * s/initialDatasourceId/initialDatasource/\n * add alert in react instead of angular\n * Fixed issues with panel size in edit mode, fixes #14703\n * hide protip if not defined\n * fix filter bug\n * add help text component\n * Tweak datetime picker layout for mobile\n * Explore: Remember last use datasource\n * Update yarn.lock\n * Logs data model: add more log levels\n * Review feedback\n * Explore: fix loading indicator z-index on panel container\n * Loki: change query row to be single field again\n * Explore: logging UI style fixes\n * Loki: query limit configurable in datasource\n * Removed rxjs compat\n * ldap: adds extra debug logging\n * reactify annotation query editor\n * adds orgId to user dto for provisioned dashboards\n * Update rxjs\n * closes the body properly on successful webhooks\n * makes cache mode configurable\n * Fix general tab typos\n * added node-sass as dev dependency, needed after I removed\n grunt-sass\n * Husky and sasslint fixes, fixes #14638\n * Added a form component to @grafana/ui\n * created visualizations folder\n * Fixed JQuery typing issues\n * Typings issues\n * wip: moving react graph component to grafana/ui\n * Don't do a full frontend release build in test-frontend\n job, added typescheck (tsc noEmit) instead, fixes #14639\n * Moved sass for component to @grafana/ui lib\n * Moving a couple of types to @grafana/ui\n * Testing moving out one type to grafana/ui\n * Increased margin between controls in logs panel, fixes\n #14637\n * Fixed dashboard links not updating after variable or time\n range change, fixes #14493\n * Fixed group button tooltip placement from auto to bottom,\n fixes #14634\n * Removing erroneous backtick in docs\n * Updating docs for auth_proxy whitelist CIDR support\n * Add timestamp back to log entry type\n * Update\n public/app/plugins/datasource/loki/result_transformer.ts\n * Loki: fix timestamp field\n * Fixed panel height & scroll issue with flexbox in firefox,\n fixes #14620\n * remove segment srv prop\n * use ds template srv reference\n * remove not used stuff\n * add event handler\n * add help component\n * Add support for InfluxDB's time zone clause (backend)\n * note to future me\n * delete works\n * grunt test task update\n * Add support for InfluxDB's time zone clause\n * @grafana/ui lib now contains one components, seperate lint\n & tsc steps\n * changelog: add notes about closing #14519\n * Grafana ui lib is starting to work\n * typings and renamings\n * breaking up grafana into multiple packages poc\n * add project and help component\n * add alias by component\n * add alignment periods component\n * cleanup aggregation picker\n * move alignment population code to parent component. make\n alignment a stateless component instead.\n * flatten target obj\n * Grafana ui library poc\n * elasticsearch: support bucket script pipeline aggregations\n * Add units for blood sugar concentration 💉\n * on deselect when reducer is set to none\n * add alignment component\n * Fixes undefined issue with angular panels and editorTabs\n * changelog: adds note about closing #14562\n * refactor aggregation picker\n * use render props pattern\n * Update field name\n * Add documentation\n * use template variable prop\n * cleanup\n * Rename the setting and add description\n * export init notifier func\n * render editor toolbar buttons\n * Increase recent and starred limit in search and home\n dashboard, closes #13950\n * changelog: adds note about closing #14486\n * Panel help view fixes\n * rewrite angular view\n * Add min/max height when resizing and replace debounce with\n throttle\n * changelog: adds note about closing #14546\n * Adding tests for auth proxy CIDR support\n * fix only add column if not exists for mysql\n * changelog: adds note about closing #14109\n * fix handling of indices with multiple columns (mysql)\n * fix only create/drop database indices if not exists/exists\n * fix signed in user for orgId=0 result should return active\n org id\n * Another take on resizing the panel, now using\n react-draggable\n * only update session in mysql database when required\n * Raise datasources number to 5000\n * improve component performance\n * add max width to group header description\n * copy props to state to make it visible in the view\n * remove debug logging\n * rollback test state to before template variables were\n added\n * cleanup\n * move template variable logic to component\n * remove extra arrow div\n * refactor to not crash when no links\n * updating snaps\n * renaming component\n * panel help working\n * snapshots: Close response body after error check\n * fix condition that expands group if it has a selected\n child. also make it possible to pass expanded as a prop\n * align input widths\n * Update sample and default configs\n * Add OAuth provider flag to indicate if it's broken\n * Register BrokenAuthHeaderProviders if needed\n * Add units for Floating Point Operations per Second\n * remove console log\n * rename directive\n * remove linebreak\n * remove old group heading\n * use new generic picker\n * remove on metric type change\n * fix remove filter bug\n * use same color for label as in explore dropdown\n * cleanup query filter\n * update failing tests\n * remove redundant default value\n * use new option group in aggregation directive\n * remove redundant default value\n * wip: add option group component\n * wip: add basic option header\n * Wrap react select component in angular directive\n * Minor update\n * Make sure panel id is unique since some datasources\n (Graphite) will cancel ongoing requests with the same\n panel id\n * changelog: adds note about closing #14548\n * Adding CIDR capability to auth_proxy whitelist\n * Minor cleanup now that angular panel edit is no longer\n * Gauge option form markup fixes\n * toolbaritems viztab\n * filter out table responses that don't have columns and\n rows\n * enable goto explore from query panel editor for all\n datasources\n * started with component for generic panel help\n * moves migrations to /sqlstore/migrations\n * adds integration tests to ci build\n * renames main lock function\n * clean up integration tests\n * change from db_text to nvarchar\n * adds server lock package\n * initial verison of server lock\n * Minor react graph panel refactorings and fixes\n * sorting tests for change value\n * Fixes issues with user and team picker\n * fixing coloring\n * upgrade to golang 1.11.4\n * remove printed index\n * updating test\n * adding threshold\n * Refactoring react graph\n * updated dropdown typeahead to place down instead of up,\n works better when inside scrollable area\n * minor style tweak\n * propagate initial state back to explore query runner\n * Update gitlab.md\n * Update github.md\n * minor style fixes\n * Updated snapshot\n * Switched to react-select fork\n * ldap: upgrades go-ldap to v3\n * table: fixes #14484. Renders epoch string if date column\n style\n * changelog: adds note for #14483\n * Fix for no metrics panels, now goes to viz tab and does\n not show queries tab\n * minor style fix\n * minor change to table panel edit options\n * minor tweaks to text panel\n * Fixes and cleanup\n * Show predefined time ranges as first in timepicker on\n small screens\n * code cleanup in add panel, and switched off grid css\n transforms to fix z-index issuse\n * minor tweaks to alert tab\n * fixed name of alert tab\n * removed unnessary test\n * updated add panel a bit\n * minor style fix\n * updated snapshot\n * fixes to unit picker\n * updates on thresholds component\n * remove check on axis.used in flot #13765\n * Added custom scrollbar to select component\n * removed a test that isn't neccessery any more\n * replaced content in addpanelpanel with three buttons that\n can create new panel, paste copied panel, and add a new\n row, to paste panel one must copy one first, code is still\n quite rough\n * fixed cloudwatch issue\n * select refactor fixes\n * gauge working without thresholds\n * changin colors\n * explore using data source picker\n * fixing issue with copy invite link\n * getting closer with no thresholds\n * renamed folder to select\n * User picker using common select componnet\n * wip: unifying select components\n * fixing input unit test failure\n * fixed issue with switching panels\n * refactored panel-option-section into react component\n * removed console log\n * updated styles\n * starting with threshold refactor\n * wip: convert angular directives to react components\n * wip: style change progress\n * Update latest.json\n * wip: styles are starting to come together\n * wip: styles\n * wip: testing new styles\n * wip: style changes\n * fixed ordering changing panel types, fixes issues with\n loading panel options\n * moving min/max to gauge options\n * log error when resolvePath\n * wip: minor style changes\n * wip: changes\n * break out metric picker and filter\n * migration: renames logging ds to loki ds in data_source\n table\n * loki: updates the logo\n * fixing tests\n * mixing color when\n * wip\n * wip\n * remove on metric type change\n * things are working\n * fix remove filter bug\n * use same color for label as in explore dropdown\n * cleanup query filter\n * changelog: add notes about closing #8843 #11175\n * fixed unit tests\n * update failing tests\n * remove redundant default value\n * wip\n * wip\n * redone state\n * display value map or range map\n * add oauth_auto_login setting to defaults file\n * use new option group in aggregation directive\n * wip\n * remove redundant default value\n * Adding mixed query\n * Check with lowercase\n * wip metrics tab changes\n * changelog: adds note about closing #13754\n * wip: making things work again\n * React-select refactorings\n * wip: add option group component\n * wip: add basic option header\n * wip: react select css refactoring\n * docs: fix broken link on explore page\n * wip\n * changing type and started on Gauge\n * fix threshold test\n * Adding label\n * styling on dropdowns\n * Using drop down instead\n * Filter tags select box on text input #14437\n * fixed id bug\n * Using an id to identify mappings\n * Change KeyboardNavigation from hoc to render prop\n component\n * Clean up hoc and extend component props automatically\n * Let VizTypePicker use the keyboard navigation hoc\n * Moved more metrics tab to react\n * Wrap react select component in angular directive\n * Don't show heading for first tab\n * snapshots: Add support for deleting external snapshots\n * docs: explore\n * snapshots: Move external snapshot creation to backend\n * snapshots: Add external_delete_url column\n * Add keyboard navigation to datasource picker via a hoc.\n * Use react's onKeyDown event on the input instead of event\n listener on document\n * Explore: Improved line parsing for logging\n * fixed typings and remove\n * updated publish script\n * Unmount component when fading out to reset its state, such\n as search..\n * Variable rename. Did not make sense at all.\n * Fix styling for vizPicker keyboard nav and change so only\n arrow up/down is OK to use\n * fixed styling\n * Start adding keyboard navigation to VizPicker\n * use links instead of bridge network\n * fix time regions bugs\n * fixed issue with colorpicker position above window, fixes\n #14412\n * fixed issue with singlestat and repeated scopedVars, was\n only working for time series data sources, and only if\n there was any series, now scoped vars is always set, fixes\n #14367\n * fix search tag issues, fixes #14391\n * Clear query models when changing data source type, fixes\n #14394\n * fixed issue with grid responsive mode\n * fixed max height issue not being respected by react select\n dropdown\n * removed side menu for column styles, added small header to\n column styles with a border\n * Use correct variable name in fail text\n * Fix search field styles\n * Enable search also after editing\n * Explore: Split logging query into selector and search\n * Fix logs panel meta wrap\n * Explore: dont pass all rows to all rows, fixes profiler\n * Explore: Logging dedup tooltips\n * Explore: Hide scanning again after result was found\n * Explore: Fix timepicker inputs for absolute dates\n * Switch to global match for full browser support of escaped\n custom vars\n * Allow backslash escaping in custom variables\n * Fixed issue with logs graph and stacking\n * align yellow collor with graph in logs table\n * minor style change\n * Add the AWS/SES Cloudwatch metrics of BounceRate and\n ComplaintRate. Pull request #14399\n * logs style polish\n * allow sidemenu sections without children still have a\n hover menu/header\n * explore logs options styling\n * transparent toggle style and new button group style\n * Toggle buttons\n * render a value mapping row\n * removed side menu from display options, kept overrides in\n display options, moved thresholds and time regions to its\n own section in visualization\n * changelog: adds note about closing #11221\n * removes unused code\n * fixes merge error\n * remove result format. might add this later\n * filter out build in datasources. add unit test\n * click on dashboard title moves you back to dashboard\n instead of search\n * graphInterval needs to update after query execution, fixes\n #14364\n * Explore: Parse initial dates\n * Aligned styling of stats popover/box with rest of grafana\n & minor css refactoring\n * Remove Explore > 'New tab' from sidebar\n * initialize empty variables array in constructor so that\n datasources can use the array in explore\n * Prometheus: Make result transformer more robust for empty\n responses\n * add table support flag in influx config\n * add scoped vars to query options\n * Rebase fixes\n * Explore: Logging line parsing and field stats\n * fixed unit tests\n * made unknown color theme aware and sync with graph color,\n some minor cleanup\n * initial stuff\n * Explore: improve error handling\n * use render props instead of cloneElement\n * sort of a hacky way to figure if the small variation\n should be used for the label\n * add basic button group component, using the the same label\n style as is\n * Restore PluginEditCtrl accidently removed\n * explore logs styling\n * wip: alternative level styling & hover effect\n * wip: explore logs styling\n * more detailed error message for loki\n * If user login equals user email, only show the email once\n #14341\n * UserPicker and TeamPicker should use min-width instead of\n fixed widths to avoid overflowing form buttons. #14341\n * wip: explore logs styling\n * restoring monospace & making sure width are correct when\n hiding columns\n * fixed logs to time series calculation issue, increased\n bucket size, fixes #14248\n * Always open panel links in new window if user asked for it\n #14333\n * Changing from PureComponent to Component to re-render on\n link updates made in Angular #14333\n * minor tweaks, now table renders faster and changes less on\n second stage rendering\n * explore logs css refactoring, step1\n * explore logs styling poc, WIP\n * Fix transparent option #14333\n * Add prop key to panelPropsString to avoid a bug when\n changing another value and the render doesnt trigger\n * loki: adds proper error handling for config page\n * renames Grafana Logging ds to Loki\n * Pass some panel props down as strings to trigger render\n #14333\n * Trigger panel.render on title, description, links change\n #14333\n * Put issue number to test code\n * Fix bug what updating user quota doesn't work\n * Fix bug what updating org quota doesn't work\n * public/app/plugins/*: Fix some misspell issues\n * public/sass/*: Fix misspell issue\n * public/app/features/*: Fix some misspell issues\n * public/app/core/*: Fix some misspell issues\n * README.md: Fix small typo\n * fix snapshots\n * Added isDefault switch on settings\n * fix to switch component\n * Rename BodyPortal to Portal and accept prop 'root' which\n is where the portal should be placed\n * Create a portal and use it with our popper component\n (tooltip and popover) to avoid potential\n overflow-/zindex-bugs\n * add icon\n * explore data source selector fix\n * Update css to use the border-radius variable and add a new\n variable for the popper's distance to its ref\n * Update README.md\n * fix for panel-initialized event not being called\n * refactored and added tests for panel model remember\n properties\n * redact value for plugin proxy routes\n * pkg/*: Fix misspell issues\n * fix for panel embedding. Solo panel height was not\n correctly set. Made panel--solo into panel-solo class. in\n develop branch we have remove the need for the panel class\n * added support for influxdb cumulative_sum function in tsdb\n * Use buildTableConstraint instead of buildSchemaConstraint\n to find the datatype of a column if using a table from a\n different database schema\n * Readme: We should write Node.js the same way in all places\n in the readme\n * Small tooltip css-adjustments and add css for position\n 'bottom-start' used by the panel header corner\n * Explore: Display duplicate row count as number\n * Adapt styles\n * Explore: Logging query live preview of matches\n * added max-widths to explore start pages boxes\n * Alert tab fails when datasource method\n targetContainsTemplate doesnt exist #14274\n * improve comments\n * fixed promql and loggging syntax so all punctuation chars\n are treated the same, remove hover move\n * remove all query empty related code. root cause of the\n problem was to fix hasNonEmptyQuery\n * Let the cached props from previous visualization be the\n masters, unless specified in keepLatestProps const\n * POC on how to save away settings from a viztype and\n restore when switching back to it #14274\n * remove redudant spread\n * Set query empty condition in render function. Also clear\n query transactions when no valid query is present\n * Remove query empty from model\n * fixed logging start page\n * Use popover styles for stats popover\n * Fine tune stats styles\n * Tests for label stats calculation\n * Explore: Logging label stats\n * stop scanning when clear all button is clicked\n * build: update latest when pushing docker.\n * Use origin meta\n * only display scan button if there is at least one existing\n selector that returned an empty result\n * minor refactoring\n * Explore: return to grid layout for logs table\n * Add VizPicker search #14274\n * changelog: add notes about closing #11067\n * fixed grabage in markup\n * fix: align input backgrounds for code editors\n * fixedUnit for Flow:l/min and mL/min\n * feat: #11067 prevent removing last grafana admin\n permissions\n * another style fix for broken dark theme word highlight\n * fix time regions using zero hours\n * Misc styling fixes to explore: start page, slate code\n editor colors, text highlight in auto completeter\n suggestion\n * Revert commit\n * only make it possible to scan for older logs if there is\n at least one non failing selector\n * update package.json to next version\n * Stick to .tsx? for babel file test\n * changelog: add notes about closing #13815\n * changelog: add notes about closing #14246\n * arrow function\n * changelog: add notes about closing #12653\n * fix for add/remove labels\n * Hid 'Forgot your password' link from login menu when reset\n is disabled\n * Prevent password reset when login form is disabled or\n either LDAP or Auth Proxy is enabled\n * fix for initial options\n * minor css fixes\n * update changelog\n * update latest.json to latest stable version\n * new stable docs version\n * minor css fix\n * redid props for gauge options\n * dataproxy: Override incoming Authorization header\n * changelog: add notes about closing #14228\n * Explore: Show logging errors from backend\n * change obj order when merging so that correct format is\n being used\n * Explore: Fix logging query parser for regex with\n quantifiers\n * Update README.md\n * Fixed typo in function name\n * Explore: Fix label and history suggestions\n * tidy import\n * let each sql datasource handle timeFrom and timeTo macros\n * style changes for panel placeholder (move and resize)\n effect\n * never load fallback query field. remove commented code\n * add an error alert component that will be displayed when\n there was an error loading ds in explore\n * fix: minor style changes, removed hover scale increase\n * react-panel: Add nullcheck to prevent error on datasources\n without meta options\n * react-panel: Options button should always be enabled now\n when Time Range-options are there\n * react-panel: Move time range options to its own component\n and render it under the options button instead\n * created color enum\n * make sure target obj is not destructured so that angular\n copy of objected can be mutated\n * Review feedback\n * react-panel: Add test for Input with validation on blur\n * react-panel: Input validation should be optional\n * react-panel: Clean up input validation and increase code\n readability\n * react-panel: Time range options moved to 'Queries' tab\n * react-panel: Remove mock response button for now\n * react-panel: Remove comments and improve readability in\n render()\n * react-panel: Use correct type for children prop to avoid\n the use of fragments <></>\n * react-panel: Remove json-formatter-js since we will\n continue with the 'patched' version\n * react-panel: Move all query inspector logic into\n QueryInspector component and start with the 'Mock\n response'\n * react-panel: Toggle Expand/Collapse json nodes in Query\n Inspector\n * react-panel: Add CopyToClipboard-component and separate\n QueryInspector to its own component from QueriesTab\n * react-panel: Trigger panel refresh when opening inspector.\n Add loading-message\n * react-panel: Replace JSONFormatter npm package with the\n current monkey patched JsonExplorer\n * react-panel: Clean up the JSONFormatter and make sure it\n updates both on mount and when props update\n * react-panel: Get real datasource query for query inspector\n * react-panel: Create component for JSON formatting and use\n it on query inspector\n * changelog: add notes about closing #14167\n * make getAll return array instead of object\n * remove obsolete test\n * Update README.md\n * Add AWS/CodeBuild namespace for CloudWatch datasource\n * Fixed styling issues with new checkbox style\n * Fix other misspell issues\n * docs/*: Fix misspell issues\n * CHANGELOG.md: Fix misspell issues\n * Explore: Logging render performance\n * remove log\n * min and max value\n * update gauge on remove threshold\n * user added thresholds state\n * console logs and code layout\n * pass data correctly to event handler\n * revert Label change\n * update color on gauge when changing\n * remove explore check - make it possible to load all\n datasources\n * add table support flag for stackdriver\n * add table support flag for prometheus\n * add table support flag for postgres\n * add table support flag for opentsdb\n * add table support flag for mysql\n * add table support flag for mssql\n * add table support flag for logging\n * add table support flag for graphite\n * added google_tag_manager_id from defaults.ini\n * removed extra whitespace\n * Update export_import.md\n * added new icons, fixed so different icons in different\n themes, added animation to hover on icons, styled choose\n visualization and datasource for both themes, made som\n styling adjustments to whole panel editor\n * sorting tests\n * remove border\n * color indicator\n * add new flag in order to be able to indicate whether the\n datasource has native support for tables\n * prevent explore from crashing when table is not present in\n response\n * Explore: Logging label filtering\n * Logging: fix query parsing for selectors with multiple\n labels\n * using percentage to not hide search when smaller screen\n * build: explaining the linux build.\n * check for null with toLocalString (#14208)\n * Fix elastic ng-inject (build issue) (#14195)\n * add current editor to panel targets\n * Added stop scan button\n * Explore: Scan for older logs\n * color picker\n * remove time srv initialization\n * restructure imports\n * get intervals from explore function\n * unregister all query editor event listeners\n * remove comments\n * temp remove until stackdriver implements explore\n * sort on value\n * use default range from time picker\n * Requested Backend changes, removed link in popover\n description for the offset field\n * Remove confusing <> from variable intro\n * includes ranges correctly in the options object\n * docker: Upgrades base packages in the images.\n * small fixes\n * logic for adding rows, styling\n * chore: correct pause-all-alerts auth in docs\n * Requested Backend changes, added details to popover\n description for the offset field\n * Explore: Fix JS error when switching between 2 prometheus\n datasources\n * color touches\n * Add support for Offset in elasticsearch datasource,\n date_histogram aggregation, fixes grafana #12653\n * Fix tests to account for sortText\n * build: always test publisher.\n * build: packages linked to dl.grafana.com.\n * Fix tests to account for loglevel long names\n * Explore: Filter logs by log level\n * styling\n * created test for some functions\n * update changelog\n * mock interval data\n * fix handle of elasticsearch 6.0+ version\n * rename variable\n * hide row specific buttons when query editor is rendered\n from explore\n * add support for explore events\n * minor style fix\n * minor fixes\n * docs: various fixes of what's new in v5.4\n * use plugin_loader directly instead of using the wrapper\n * docs: fix old ldap url redirect\n * fixed issue with babel plugin proposal class properties\n that initiated properties to void 0. This breaks angularjs\n preAssignBinding which applies bindings to this before\n constructor is called. Fixed by using fork of babel\n plugin.\n * Explore: make query field suggestions more robust\n * Fix abbreviations of Litre/min and milliLitre/min (#14114)\n * Sort Prometheus range suggestions by length\n * docs: what's new in v5.4\n * Explore: swtiching to logging should keep prometheus\n labels in case of error\n * tweaks to gf-inline-form style PR #14154 change\n * adding back button\n * styling tweaks\n * initial commit\n * docs: signout_redirect_url description in auth overview\n * minor style changes\n * Sticky footer for all pages\n * edit mode styling\n * edit mode styling\n * edit mode styling\n * Added comments\n * style tweaks\n * render and sort\n * return actual error if failing to update alert data\n * Fix issue with deleting a query (empty string not\n updating)\n * Fix history rendering for DataQuery\n * margin when listing multiple gf-form should be right\n * styling progress\n * Fix a typo\n * panel edit ux experiments\n * changelog: add notes about closing #14150\n * temporary fix for starting grafana not running systemd\n * cloudwatch: handle invalid time ranges\n * cloudwatch: recover/handle panics when executing queries\n * Combine query functions\n * Renamed targets to queries\n * added icons for panel-edit side menu\n * updates time range options for alert queries\n * format: remove </input> and align tabs\n * updating state\n * Explore: Introduce DataQuery interface for query handling\n * Fix set utilities for explore section\n * typos in docs/sources/alerting/rules.md\n * typos in docs/sources/alerting/rules.md\n * fixed failing graph tests\n * gfdev: fixes unparseable for duration\n * fixed issue with new legend not checking if\n panel.legend.show\n * gfdev: adds alert always in pending state\n * docs: adds example timeline for alerting for\n * build: docker build for ge.\n * react-panel: Avoid duplicate keys\n * added alert tab to new react panel editor\n * update path to alerting for image\n * started on thresholds\n * react-panel: Add data source 'options'. Needs UX, WIP.\n * update release publish script links\n * fixes to view mode for panels, can now go back as before\n * Add visibility toggle for explore graph series\n * what's new in v5.4 placeholder\n * fix label and default threshold\n * react-panel: Add data source 'help'\n * fix for issue with error view in production builds\n * changelog: adds note for #13561\n * update changelog\n * stackdriver: remove not used variable\n * fixed menu to go to panel view mode\n * stackdriver: use angular dropdown so that we can restrict\n user input\n * stackdriver: make sure object type queries are also\n checked for vtemplate variables\n * minor style update\n * changelog: adds note about closing #13577\n * adds basic auth configuration to default.ini\n * added header section to legacy tabs\n * stackdriver: reset defaults.ini\n * changelog: add notes about closing #14120\n * changelog: add notes about closing #14129\n * switch slider changes\n * linters.\n * build: correct filters for ge build artifacts.\n * build: releaser supports releasing only some artifacts.\n * Revert 'docs: building Grafana on arm.'\n * Add doc for api 'GET /api/users/:id/teams'\n * Re-organize packages and add basic auth test\n * Revert 'Update google analytics code to submit full URL\n not just path'\n * Add Cloudwatch/CloudHSM Metrics and dimensionMaps\n * remove react warning\n * added chekbox and other tweaks\n * refactor options, show labels and markers\n * docs: building Grafana on arm.\n * stackdriver: add query keyword to service, metric and\n project since these were the only fields in the editor\n that was missing it in the whole editor\n * Explore: POC dedup logging rows\n * stackdriver: add query keyword style to query fields\n * stackdriver: fix failing test\n * stackdriver: reimplementing service variable query type\n * Revert 'typo fix'\n * typo fix\n * prefix and suffix\n * decimals\n * update snapshot\n * stackdriver: fix failing tests\n * changelog: add notes about closing #13352\n * changelog: add notes about closing #13810\n * changelog: add notes about closing #13605\n * changelog: add notes about closing #13876\n * changelog: add notes about closing #13946\n * changelog: add notes about closing #13555\n * changelog: add notes about closing #13425\n * changelog: add notes about closing #13655\n * stackdriver: update docs\n * stackdriver: add support for template variables\n * react-panel: Finish the data source search on query tab\n and start moving switch-data-source-logic from angular\n * linter.\n * fixed issue switching back from mixed data source,\n introduced by react panels changes\n * build: minor refactor.\n * build: fixes a bug where nightly rpm builds would be\n handled as stable.\n * some touch ups on unit\n * go meta lint errors\n * update changelog\n * builds: introduces enum for relase type.\n * fix group sync cta link\n * picker and functionaliy\n * fixed issue with panel size when going into edit mode\n * stackdriver: join resource and metric labels. split them\n in values and keys\n * changelog: add notes about closing #13924\n * build: table-driven tests for publisher.\n * fix id returned from google is a string\n * changelog: adds note about closing #7886 & #6202\n * changelog: adds note about closing #11893\n * Fix param\n * Add GET /api/users/:id/teams for orgAdmin\n * Tooltip should be able to take up space when used on an\n absolute positioned element\n * minor fixes\n * panel-header: Move the corner information in the panel\n header to its own component\n * changelog: add notes about closing #12550\n * fix selected home dashboard should show as selected even\n though its not starred\n * panel-header: Move the panel description/links/error\n container outside of panel header to not interfere with\n the react-grid stuff\n * reload browser after preferences been updated\n * panel-header: Unmount popper when not needed.\n * fix snapshot tests\n * panel-header: Updated snapshots for popper\n * panel-header: Add fade in transition to tooltip\n * Trying to reduce the amount of duplication with\n preferences\n * panel-header: Make it possible to style the reference\n element and fix so panel description looks good\n * filter out alpha plugins in api call, fixes #14030\n * panel-header: Simplify condition\n * panel-header: Avoid undefined classNames and use the real\n panel description\n * panel-header: Updates for the new react-popper api and\n make it possible to hover the tooltip popper without it\n closing\n * panel-header: Bump @types/react, @types/react-dom, react,\n react-dom, react-popper to latest versions\n * panel-header: Display description in modal\n * update changelog\n * changelog: add notes about closing #11977\n * changelog: add notes about closing #6367\n * docs: team http api update\n * [elasticsearch] Do not set a placeholder to index name, if\n it's already specified.\n * changelog: adds note about closing #14043\n * fixed issue with save.\n * fixed mutability issue in dashboard dropdowns\n * Explore: Fix table pagination styles\n * team preferences ui\n * feat: team preferences\n * Explore: Dont set datasource in state if navigated away\n * fix switching from es raw document metric breaks query\n editor\n * alerting: reduce the length of range queries\n * Mitigate XSS vulnerabilities in Singlestat panel\n * Retain decimal precision when exporting CSV\n * Added Id to BasicUserInfo returns\n * Added google oauth account id\n * switch style tweaks\n * Explore: collapsible result panels\n * removing test page\n * format value\n * default value\n * created classes for new checkbox and variables\n * Prometheus: fix rules expansion\n * handle default value\n * various fixes to angular loading\n * Explore: POC for datasource query importers\n * build: enabled darwin build.\n * expand groups when searching\n * build: darwin compatible build env.\n * maxHeight and style overrides\n * moved slider into label to make it clickable, styled\n slider in dark and light theme, created variables for\n slider\n * fix: dont setViewMode when nothing has changed\n * fix redirect issue, caused by timing of events between\n angular location change and redux state changes\n * fix datasource testing\n * panel options now load even when changing type\n * fixed issues when changing type, need to remove event\n listeners and cleanup props\n * build: refactoring.\n * React edit mode for angular panels progress\n * minor fixes\n * fixed order of time range tab\n * Update ReadMe.\n * Update google analytics code to submit full URL not just\n path\n * devenv: elasticsearch datasources and dashboards\n * fix pipeline aggregations on doc count\n * changelog: add notes about closing #5930\n * fixed alert tab order and fixed some console logging\n issues\n * Add tooltip\n * some progress on groups and options\n * changed time region color modes\n * panel-header: Move the corner information in the panel\n header to its own component\n * changelog: add notes about closing #12550\n * fix pending alert annotation tooltip icon\n * alert rule have to be pending before alerting is for is\n specified\n * fix selected home dashboard should show as selected even\n though its not starred\n * build: internal metrics for packaging.\n * panel-header: Move the panel description/links/error\n container outside of panel header to not interfere with\n the react-grid stuff\n * alerting: improve annotations for pending state\n * reload browser after preferences been updated\n * panel-header: Unmount popper when not needed.\n * fix snapshot tests\n * panel-header: Updated snapshots for popper\n * panel-header: Add fade in transition to tooltip\n * Trying to reduce the amount of duplication with\n preferences\n * stackdriver: revert project test stuff\n * stackdriver: revert test code\n * panel-header: Make it possible to style the reference\n element and fix so panel description looks good\n * adds pending filter for alert list page\n * adds pending state to alert list panel\n * alertmanager: adds tests for should notify\n * Extracted language provider variables for readibility\n * devenv: graph time regions test dashboard\n * fix time regions mutable bug\n * set default color mode\n * filter out alpha plugins in api call, fixes #14030\n * alerting: support `for` on execution errors and notdata\n * poc: handling panel edit mode in react even for angular\n panels poc\n * panel-header: Simplify condition\n * wip: minor update\n * minor fix\n * css update to switch slider\n * tests for supporting for with all alerting scenarios\n * should not notify when going from unknown to pending\n * Fix formatting and remove enabled toggle\n * panel-header: Avoid undefined classNames and use the real\n panel description\n * wip: switch slider test\n * panel-header: Updates for the new react-popper api and\n make it possible to hover the tooltip popper without it\n closing\n * panel-header: Bump @types/react, @types/react-dom, react,\n react-dom, react-popper to latest versions\n * Add basic authentication support to metrics endpoint\n * panel-header: Display description in modal\n * minor panel options type fix\n * docs: description about graph panel time regions feature\n * update changelog\n * changelog: add notes about closing #11977\n * changelog: add notes about closing #6367\n * docs: team http api update\n * wip: adding general tab for react panel edit mode\n * [elasticsearch] Do not set a placeholder to index name, if\n it's already specified.\n * devenv: graph time regions test dashboard\n * create time regions solely based on utc time\n * started on options and groups\n * fix: added events to MetricsTabCtrl to closer mimic\n MetricsPanelCtrl\n * minor css change\n * Moved query manipulations from metrics controller to\n metrics tab so they are more easily shared between angular\n and react panels\n * fixed panel focus for react panels\n * minor changes to react panels\n * changed how size is calcualted and propagated and added\n proper interval calc to DataPanel\n * changelog: adds note about closing #14043\n * first stuff\n * pkg/cmd/grafana-server/server.go: Check\n sendSystemdNotification return value.\n * pkg/cmd/grafana-server/server.go: check\n serviceGraph.Provide() errors\n * pkg/cmd/grafana-server/main.go: Fix error value not\n checked\n * wip panel size handling\n * fixed issue with save.\n * fixed mutability issue in dashboard dropdowns\n * adced clickoutside wrapper\n * fixed singlestat guage ceneterd dot rendering issue\n * refactoring back the interval calculation, needs to be\n different for react panels\n * fix case where timeshift and time override is used\n * wip: refactoring interval and time override handling\n * updates latest to 5.3.4\n * changelod: add release date for 5.3.3 and 5.3.4\n * devenv: graph time regions test dashboard\n * graph: Time region support\n * Explore: Fix table pagination styles\n * devenv: update alerting with testdata dashboard\n * stackdriver: use arrow functions\n * stackdriver: use new naming convention for query editor\n all over\n * adds redis devenv block\n * restore user profile preferences\n * changelog: add notes about closing #13328 #13949\n * updates macaron session package\n * minor react panels refafactor\n * removed console.log\n * some cleanup of unused stuff and type fixes\n * completed work on panel not found view\n * Clarify wording of playlist protip\n * team preferences ui\n * feat: team preferences\n * Explore: Dont set datasource in state if navigated away\n * Explore: Don't suggest term items when text follows\n * wip: panel plugin not found\n * fixed scrollbar autohide prop\n * wip: panel-header: On panel refresh, get new timeRange\n from timeSrv, not the old one from the state\n * wip: panel-header: Avoid null returning to get better code\n readability. High five @ peterholmberg\n * wip: panel-header: Remove the TimeData type\n * wip: panel-header: Add proper typings to maxDataPoints and\n interval + remove code in comment\n * wip: panel-header: Move getResolution and\n calculateInterval into utils-functions and use the same\n code from react and angular\n * wip: panel-header: Start implementing the\n applyPanelTimeOverrides in the react panels by moving it\n to a util, make it pure and call it from angular and\n react.\n * import changes\n * updated text styling when switching views\n * Add `gofmt -s` to CircleCI\n * minor fixes based on code review\n * Fix gofmt issues\n * Add pic into actionCard message\n * minor style fixes & polish\n * minor update\n * disable custom webkit scrollbar styles\n * refactoring & cleaning up css\n * Minor progress on edit mode\n * improve dropdown pane connetion to tab toolbar\n * Add megacheck to gometalinter CircleCI target\n * pkg/tsdb/influxdb/influxdb.go: Fix surrounding loop is\n unconditionally terminated.\n * scripts/build/release_publisher/publisher_test.go: Fix\n trivial megacheck warning.\n * draw gauge\n * data source picker demo state\n * stackdriver: remove service query tyhpe\n * stackdriver: correct aligner name\n * fix in to not render multiple labels\n * stackdriver: typescriptifying props\n * stackdriver: remove redundant try catch\n * Update stackdriver.md\n * Adjust UI depth of query statistics\n * stackdriver: rename query function\n * stackdriver: rename query variable\n * stackdriver: remove debug log\n * stackdriver: add documentation for the template query\n editor\n * stackdriver: test saved variable\n * stackdriver: fix failing tests\n * stackdriver: remove services query type\n * stackdriver: update tests\n * stackdriver: add tests for render snapshop and default\n query type\n * stackdriver: remove lodash since object assign will do the\n trick\n * stackdriver: make sure we don't crash when selected\n service doesnt have a value\n * stackdriver: add simple render test\n * stackdriver: rename params\n * stackdriver: remove not used prop\n * stackdriver: persist template variable definition\n * stackdriver: add default value for query type\n * stackdriver: pass query definition from react, making it\n possible to use another definition than the query string\n only\n * stackdriver: make it possible to use alignment period\n template variable\n * stackdriver: make it possible to use aligner template\n variable\n * stackdriver: make it possible to use aggregation template\n variable\n * stackdriver: make it possible to use aggregation template\n variable\n * stackdriver: make it possible to use metric type template\n variable\n * stackdriver: set currentdatasource when editview is\n enabled\n * stackdriver: return correct value\n * stackdriver: reset query value on datasource changed\n * stackdriver: fix default value bug\n * stackdriver: extend label width\n * stackdriver: revert refactoring\n * stackdriver: extract variables for pickers\n * stackdriver: cleanup\n * stackriver: rename interface\n * stackriver: use type for state\n * stackdriver: rename state vars\n * stackdriver: extract common function\n * stackdriver: streamline the way labels are refreshed when\n a new value is picked in the dropdowns above\n * stackdriver: handle default state\n * stackdriver: refactor dropdown component\n * stackdriver: replace components with basic stateless\n select\n * stackdriver: remove not used func. wrap query in exception\n * stackdriver: reload all child dropdown and update selected\n accordingly\n * stackdriver: improve default state handling\n * stackdriver: use standard naming convention for selects\n * stackdriver: streamline label change\n * stackdriver: refactor TemplateQueryComponent\n * stackdriver: use enum for query type\n * stackdriver: add aggregation query\n * stackdriver: add alignment periods\n * stackdriver: add aligner query\n * stackdriver: add resource types query\n * stackdriver: add support for resource label queries\n * stackdriver: return friendly display name\n * stackdriver: add metric labels query\n * stackdriver: move response parsing to datasource file\n * stackdriver: return values for services and metric types\n * stackdriver: rename default component\n * stackdriver: more renaming\n * stackdriver: refactoring - rename react components and\n file structure changes\n * stackdriver: remove not used code\n * stackdriver: add selector components for service and\n metric type\n * stackdriver: refactor stackdriver query ctrl\n * stackdriver: make sure default template query editor state\n is propagted to parent angular scope\n * stackdriver: conditional template component rendering\n * stackdriver: add react component for template query editor\n * stackdriver: make it possible to load react plugin\n components from template query page\n * stackdriver: add basic directive for loading react plugin\n components\n * Preserve suffix text when applying function suggestion\n * wip: progress on edit mode ux with tabs\n * can render something\n * don't drop the value when it equals to None\n * changelog: adds note about closing #13993\n * Remove Origin and Referer headers while proxying requests\n * Refactored log stream merging, added types, tests,\n comments\n * docs: improve helper test for `For`\n * alerting: adds docs about the for setting\n * panel-edit-ux-tabs on top alternative\n * Add new option to set where to open the message url\n * added loading state\n * Fixes #13993 - adds more options for Slack notifications\n * fix switching from es raw document metric breaks query\n editor\n * add auth.proxy headers to sample.ini\n * add auth.proxy headers to default.ini\n * refactored how testing state was handled, using redux for\n this felt way to require way to much code\n * adds debounce duration for alert dashboards in ha_test\n * fixed issue with reducer sharing url query instance with\n angular router\n * fixed exporter bug missing adding requires for datasources\n only used via data source variable, fixes #13891\n * minor text change in export modal\n * build: removes unused.\n * clear test box if success\n * Fixed issues introduced by changing to PureComponent\n * Added testing state in reducer\n * further refactoring of #13984\n * minor fix\n * refactorings and some clean-up / removal of things not\n used\n * Update\n docs/sources/permissions/dashboard_folder_permissions.md\n * Fix typo in docs/sources/reference/scripting.md\n * experimental option boxes\n * ux: changed panel selection ux\n * move enterprise down in menu\n * wip: panel-header: Fix shareModal compatibility with react\n and angular\n * wip: panel-header: Remove custom menu items from panels\n completely\n * wip: panel-header: Reverted a lot of code to pause the\n 'custom menu options' for now\n * wip: panel-header: More merge conflicts during cherry pick\n * wip: panel-header: More merge conflicts during cherry pick\n * Update docs/sources/permissions/datasource_permissions.md\n * Update docs/sources/permissions/datasource_permissions.md\n * Update\n docs/sources/permissions/dashboard_folder_permissions.md\n * Update docs/sources/http_api/datasource_permissions.md\n * Update docs/sources/enterprise/index.md\n * Update docs/sources/enterprise/index.md\n * Update docs/sources/enterprise/index.md\n * Update docs/sources/enterprise/index.md\n * Update docs/sources/enterprise/index.md\n * Update docs/sources/enterprise/index.md\n * minor change\n * wip: panel-header: More merge conflicts\n * Fix loglevel tests for Explore loggging\n * wip: panel-header: Merge conflicts\n * wip: panel-header: Fragment not needed anymore\n * wip: panel-header: Add possibility to add custom actions\n to the menu by passing them in as props\n * wip: panel-header: Separate all panel actions to its own\n file so we decouple them from react\n * wip: panel-header: Start implementing the Toggle legend,\n but its not taken all the way\n * wip: panel-header: Change DashboardPanel to a\n PureComponent to avoid unwanted rerenders\n * wip: panel-header: Refactor so 'Share' use the same code\n in angular+react\n * wip: panel-header: Add 'Edit JSON' functionality + make\n sure everyone using the json editor pass in the model\n property instead of the scope property when triggering the\n json modal\n * wip: panel-header: Add 'Copy' functionality\n * wip: panel-header: Add 'Duplicate'\n * wip: Add 'Share' to the react panels\n * wip: panel-header: Move code existing in both\n angular+react to utility functions\n * wip: panel-header: Remove panel\n * Mobx is now Redux\n * wip: Initial commit for PanelHeaderMenu\n * changelog: add notes about closing #13903\n * changelog: add notes about closing #13932\n * unify log level colors between rows and graph\n * Graph log entries by log level\n * fix selecting datasource using enter key\n * Adaptive bar widths for log graph\n * changelog: add notes about closing #13970\n * build: fixes\n * build: publisher handles nightly builds.\n * rename and mark functions as private\n * drag handle css\n * moved drag handle\n * fixed options\n * Time selection via graph\n * minor code style change\n * basic panel options working\n * Adding Cloudwatch AWS/Connect metrics and dimensions\n * wip: react panel options architecture\n * export: provide more help regarding export format\n * build: minor publisher fixes.\n * extract store from configurestore\n * added actions\n * build: publishes grafana enterprise to grafana.com\n * changelog: adds note about closing #13322\n * build: publisher uses local time.\n * build: publisher supports both local and remote.\n * build: publisher can find artifacts from local sources.\n * build: refactor releaser.\n * build: prepares release tool for finding local releases.\n * build: improved release publisher dry-run.\n * build: use build workflow id instead of build number.\n (#13965)\n * alerting: delete alerts when parent folder is deleted\n * refactor dashboard alert extractor\n * for: use 0m as default for existing alerts and 5m for new\n * panel options wip\n * Exposing digest from angular component\n * adds tests for extracting for property\n * minor fix\n * changelog: add notes about closing #13606\n * devenv: table panel links\n * renames `debouceduration` to `for`\n * introduce state `unknown` for rules that have not been\n evaluated yet\n * fixes go meta lint issue\n * wire up debounce setting in the ui\n * adds db migration for debounce_duration\n * introduces hard coded deboucing for alerting\n * always execute the user teams query\n * handle error before populating cache\n * build: fixes gcp push path.\n * alerting: adds tests for the median reducer\n * add minimal permission\n * typo fix for 'has'\n * Gitlab -> GitLab\n * changelog: adds note about closing #13945\n * Add tests covering alternate syntax for aggregation\n contexts\n * Handle suggestions for alternate syntax aggregation\n contexts\n * fix terms agg order deprecation warning on es 6+\n * fix failing tests\n * removed file I added accidentally\n * fixed to template PR issues, #13938\n * alerting: increase default duration for queries\n * Explore: Logging graph overview and view options\n * Load hash based styles in error.html, too\n * Add [hash] to filename of grafana.{light,dark}.css\n * minor tweak to back to dashboard buttons\n * Fix minor JSON typo in HTTP API docs\n * remove replaced components\n * reverting babel change\n * remove this\n * removed these unused components\n * reverting script change\n * updated snap\n * tests\n * minor doc tweaks\n * updated enterprise page\n * Added new backend setting for license file\n * updating state and save\n * make permission sub items in sidemenu cleaner\n * changelog: add notes about closing #13925\n * Explore: fix metric selector for additional rows\n * fix for responsive rule for footer\n * Updated login page logo & wordmark and responsive behavior\n * added new workmarks\n * fixed react whitespace warning on teams page\n * renamed org files to match new naming guide\n * moved profile pages to it's own feature folder\n * moved new teams page\n * reload page after preferences update\n * Add delta window function to postgres query builder\n * Increase Telegram captions length limit.\n * docs: enhanced ldap\n * Explore: async starts of language provider\n * listen for changes in angular land and propagate that back\n to react\n * docs: fix datasource permissions keywords\n * build: grafana enterprise docker image.\n * added caching of signed in user DB calls\n * added actions\n * IE11 fix for legend tables below graph\n * cleaned up render\n * renders angular component\n * updated api keys snapshot\n * restored transition\n * removed logging call\n * add table column date format\n * fixed memory leaks and minor refactoring\n * build: gpc credentials added to deploy.\n * changelog: add notes about closing #13762\n * update changelog\n * build: deploys to gcp.\n * build: deploys to gcp. (#13911)\n * datasource permission http api\n * restructure administration/permissions page into a section\n with sub pages\n * Fix TimePicker test by enforcing UTC on date string\n * updated view to use angular loader\n * Explore: repair logging after code restructuring\n * docs: schema -> database\n * build: deployment ci container. (#13902)\n * docs: mysql\n * minor progress\n * Make Explore plugin exports explicit\n * add functionality to override service in registry\n * moved state\n * register datasource cache service with proper name\n * revert application lifecycle event support\n * changelog: adds note about closing #13876\n * Add new build info metrics that contains more info\n (#13876)\n * JS tooling: run TS grunt tasks only when files changed\n * revert file name change\n * remove unused code\n * log error on datasource access denied\n * include teams on signed in user\n * application lifecycle event support\n * refactor datasource caching\n * Fix cell coloring\n * Fix bug with background color in table cell with link\n * add dashnav responsive rule to hide tv button on smaller\n screens\n * Implement oauth_auto_login setting\n * Explore: fix copy/paste on table cells\n * rename type\n * using label component\n * Pluggable components from datasource plugins\n * fixed type\n * removed angular code\n * test and some refactoring\n * build: adds branch info to binary build\n * now that css is loaded sync again I can remove some styles\n from index html body css\n * WIP babel 7\n * Revert to sync loading of css, sometimes js loaded before\n css which caused issues\n * Update grafana_stats.json\n * Makefile: dependency-driven target to build node_modules\n * removes old invalid release guide\n * added missing alpha state prop to graph2 panel\n * minor update\n * added switch form component\n * updated graph tests dashboard\n * fixed width of panel edit mode\n * Fix query hint tests after refactor\n * Fixing issue 13855\n * Add tests to cover PlaceholdersBuffer and sum hint\n * Add sum aggregation query suggestion\n * fixes to angular panel edit mode\n * Reduce re-renderings when changing view modes\n * updated singlestat logo\n * more ux progress\n * Add tests to cover aggregation context cases\n * Fix label suggestions for multi-line aggregation queries\n * panel edit mode changes\n * Update snapshots.\n * Use jest.fn instead of string.\n * Explore: error handling and time fixes\n * ux experiments\n * build: builds grafana docker for enterprise at release.\n * Add code to flot that plots any datapoints which to not\n have neighbors as 0.5 radius points - fixes\n https://github.com/grafana/grafana/issues/13605\n * adding default value and update actions\n * build: ge build fix.\n * build: grafana enterprise docker. (#13839)\n * moved state to redux, renamed entities\n * testing panel edit ux idea\n * changelog: add notes about closing #13769\n * add test\n * cache region result\n * use default region to call DescribeRegions\n * fix: updated backend srv to use appEvents and removed\n parts of alertsSrv\n * simple select\n * build: correctly adds enterprise to the filename. (#13831)\n * docs: improve ES provisioning examples\n * changelog: adds note about closing #13723\n * stackdriver: don't set project name in query response\n since default project is now loaded in its own query\n * Optimize the Dingding match values format\n * Add Dingding message type to support mass text\n notification\n * graph legend: fix table padding\n * Moved prom language features to datasource language\n provider\n * Split text template into variable\n * Add match values into Dingding notification message\n * graph legend: fix phantomjs rendering when legend is on\n the right\n * fix for annotation promise clearing, bug introduced last\n week when merging react panels step1\n * fix panel solo size\n * mysql: fix timeFilter macro should respect local time zone\n * load preferences\n * support template variable in stat field\n * only look in current database in findMetricTable\n * graph legend: fix table alignment\n * fix dingding doc error\n * fixed routes and page\n * graph legend: minor refactor\n * Added types to query rows\n * update latest.json to latest stable version\n * changelog: update\n * cleaned up the flow\n * changelog: add notes about closing #13280\n * delete provisioning meta data when deleting folder\n * Update the regex-matching in templateSrv to work with the\n new variable-syntax and be more flexible to regex-changes\n #13804\n * changelog: add notes about closing #13600\n * changelog: update\n * Move the variable regex to constants to make sure we use\n the same reg… (#13801)\n * docs: fix tutorials index page. Fixes #13799\n * graph panel: fix legend alignment\n * Explore: fix graph resize on window resize\n * changelog: adds note for #13691\n * docs: fix tutorials index page. Fixes #13799\n * Resource type filter (#13784)\n * Fix race condition on add/remove query row\n * moving things\n * typing changes\n * changelog: add notes about closing #13764\n * pkg/tsdb/stackdriver/stackdriver.go: Fix regular\n expression does not contain any meta characters.\n * pkg/tsdb/graphite/graphite.go: Fix regular expression does\n not contain any meta characters.\n * pkg/login/ldap.go: Fix warning comparison to bool constant\n * Added margin and correct border radius\n * Fix rebase, fix empty field still issuing query problem\n * Changelog: Adds curl to docker image in 5.3.2\n * fix: another fix for #13764 , #13793\n * Submit query when enabling result viewer\n * Get query hints per query transaction\n * docker: adds curl back into the docker image for utility.\n (#13794)\n * Explore: query transactions\n * connected to store, self remove logic\n * fix: kiosk url fix, fixes #13764\n * changelog: add notes about closing #13633\n * changelog: add notes about closing #13666\n * fix: Text box variables with empty values should not be\n considered fa… (#13791)\n * renaming things\n * graph legend: review fixes\n * add debug logging of folder/dashbord permission checks\n * sync mysql query editor template with postgres\n * add char as datatype for metric and group columns\n * build: indentation mistake.\n * build: fixes filename issues.\n * fix injecting dependencies to graph legend directive\n * changelog: adds note for #13669\n * docs: update debian installation instructions\n * stackdriver: some tweaks to the text on the config page\n and in docs\n * stackdriver: refactoring request builder\n * stackdriver: remove not used struct\n * stackdriver: remove not needed scope\n * stackdriver: add provisioning example for gce\n authentication\n * stackdriver: add documentation for gce default account\n authentication\n * stackdriver: change name of authentication type\n * stackdriver: improve config page info box documentation\n * stackdriver: prevent backend query from being made when\n there are not yet any defined targets\n * stackdriver: fix failing tests\n * stackdriver: improve error handling\n * graph legend: fix legend when series are having the same\n alias\n * stackdriver: remove not used query file\n * stackdriver: remove test datasource query. use\n ensuredefaultproject instead\n * stackdriver: remove debug comments\n * stackdriver: improve error handling in the datasource\n * stackdriver: fix typo\n * stackdriver: add debug logging\n * stackdriver: fix broken braces\n * stackdriver: fix broken condition after rebase\n * stackdriver: use constant instead of variable\n * stackdriver: remove debug log\n * stackdriver: fix failing test\n * stackdriver: use gce variable\n * stackdriver: add variable for gce authentication type\n * stackdriver: get default project from backend. also ensure\n default project could be retrieved when authentication\n type is gce\n * stackdriver: only load default project from backend if\n it's not available on the target. this might happen when\n using gce authentication and provisioning\n * stackdriver: display error message if project name is not\n present in jwt file\n * stackdriver: only load project name if it's not already\n stored in the ds info json\n * stackdriver: add default value for authentication type\n * stackdriver: wip - remove debug code\n * stackdriver: improve ui for toggling authentication type\n * stackdriver: only get default token from metadata server\n when applying route\n * stackdriver: only get default token from metadata server\n when applying route\n * stackdriver: make backend query a pure test datasource\n function\n * stackdriver: add status code\n * stackdriver: wip - return metric descriptors in the format\n of tablew\n * stackdriver: wip - get metric descriptors in the backend\n * stackdriver: wip - add logic for retrieving token from gce\n metadata server in the auth provider\n * stackdriver: wip - add very basic checkbox for gce auto\n authentication\n * stackdriver: break out project name resolving into its own\n function in the stackdriver.go file\n * stackdriver: wip - temp remove jwt token auth\n * stackdriver: wip - always use gce default account for\n stackdriver\n * stackdriver: wip - add scope and remove debug code\n * stackdriver: WIP - test retrieving project id from gce\n metadata\n * skip jwt token auth if privateKey is empty\n * fetch token from GCE metadata server\n * Revert 'for development'\n * for development\n * graph legend: fix quotes displaying\n * graph legend: minor refactor\n * Enterprise crosscompilation (#13783)\n * component working\n * graph legend: fix rendering after legend changes\n * graph legend: refactor, fix another review issues\n * fix: DataPanel isFirstLoad state fix\n * Fix click-based selection of typeahead suggestion\n * ux: remove duplicate placeholder attribute\n * initial work to add shortcut to toggle legend - generic\n * scripts/build/publish.go: Fix warning on err variable.\n * pkg/services/alerting/reader.go: Fix should use for range\n instead of for { select {} }.\n * pkg/middleware/middleware.go: Fix empty branch warning.\n * pkg/plugins/plugins.go: remove ineffective break\n statement.\n * fix order for mysql, remove postgres specific code\n * using react component\n * Explore: reuse table merge from table panel\n * graph legend: refactor, move behaviour logic into\n component\n * stackdriver: add default project to provisioning\n documentation\n * adjust meta data queries for mysql\n * fix references to postgres datatypes\n * graph legend: review fixes\n * changelog: add notes about closing #13667\n * changelog: add notes about closing #13718\n * fixed gofmt issue after go update\n * fix cannot receive dingding alert bug\n * fix: fixed variable srv tests\n * stackdriver: only add unit to resonse obj if it has a\n value\n * make interpolateVariable arrow function\n * fix: another set of fixes for refresh\n * fixed issue with template refresh\n * Fix tslint errors\n * stackdriver: fix failing tests\n * stackdriver: make sure unit is not returned to the panel\n if mapping from stackdriver unit to grafana unit can't be\n made\n * Fix variable highlighting\n * Fixed yarn.lock (previous merge took out integrity)\n * changelog: add notes about closing #13710\n * wip: enterprise docs\n * allow unit override if cloudwatch response unit is none\n * Revert 'don't overwrite unit if user set'\n * don't overwrite unit if user set\n * changelog: add notes about closing #13674\n * fix LDAP Grafana admin logic\n * graph legend: remove unused code\n * graph legend: refactor\n * docs: cleanup of how to build for docker.\n * Review feedback, increased height\n * changelog: add notes about closing #12342\n * update changelog\n * remove not used file\n * simplify code\n * Explore: fix render issues in split view\n * A list of where to make changes when upgrading Go and\n Node.js (#13693)\n * tests\n * Update PromQueryField tests to address fixed bug\n * Fix typeahead behaviour for QueryField\n * permissions: cleanup.\n * hooked up actions\n * Explore: Use react-table as table component\n * created view\n * docs: installing custom plugins in docker.\n * Document oauth_auto_login setting\n * changelog: add notes about closing #13692\n * postgres: use arrow function declaration of\n interpolateVariable\n * Use closure for calling interpolateVariable\n * changelog: add notes about closing #12308\n * Add socket support for mysql data source\n * changelog: adds note about closing #12330 and #6696\n * remove addpermissions component\n * cloudwatch: return a distinct list of regions\n * docs: update cloudwatch iam policy description\n * removes d in disableResolvedMessage\n * removed snaps\n * alerting: tests default value for disable resolve message\n * re-add hard coded region list\n * update doc due to client layout change\n * clean up tests\n * fix gofmt, add test, correct noted concerns with default\n value\n * fix gofmt, add test, correct noted concerns with default\n value\n * changelog: add notes about closing #13629\n * add encrypt connstr param conditionally on the value\n chosen via GUI.\n * graph legend: add color picker (react)\n * removing datasource permissions states from grafana\n * update latest.json to latest stable version\n * update changelog\n * build: Upgraded nodejs to 8 on appveyor\n * codestyle\n * rename UI Option, align with control, update tests\n * pausing for now\n * Remove unwanted char\n * Fix incorrect alt text on logo\n * return default region list from backend\n * don't merge hard coded region list\n * add error message\n * get regions from after datasource save\n * show all CloudWatch regions\n * get region list from ec2:DescribeRegions\n * fix concurrent map writes\n * update, don't remove 'Known Issues' docs section.\n * update provisioning docs.\n * fix new setting default value handling.\n * rename new JSON data attrbute.\n * changelog: add notes about closing #13464\n * changelog: add notes about closing #13553\n * update changelog\n * doc(documentation) license\n * doc(documenation)\n * add channel option to disable the resolved alert (OK\n Message) that is sent when condition returns to normal.\n * Can render graph\n * Add 'encrypt' setting to MSSQL data source.\n * rendering settings\n * build: makes sure publisher.sh is available when\n deploying.\n * Fix grammar in log message\n * changelog: add notes about closing #13641 #13650\n * Escape typeahead values in query_part\n * Escape values in metric segment and sql part\n * changelog: add notes about closing #13628\n * update .bra.toml for using latest bra version\n * progress on react time series infra\n * wip: began first steps for a react graph component\n * various fixes to to queries tab (in react mode)\n * react panels query processing\n * react panels: got data\n * working on react data / query exectution\n * changed DataPanel from HOC to use render props\n * fixing unit tests\n * Removed reference to plugin_api.md (SDK Readme) on the\n development page as the file that it points to no longer\n exists. This addresses an open issue on the grafana.org\n repo\n * Adding tests\n * Adding time clockms and clocks\n * pkg/cmd/grafana-server/main.go: remove os.Kill as it\n cannot be trapped\n * changed to plain errors further down the alerting\n validation model so error did not get double wrapping in\n ValidationError\n * alerting: propagate alert validation issues to the user\n instead of just 'invalid alert data' message\n * updated gitignore\n * fix for graph time formating for Last 24h ranges, fixes\n #13650\n * pkg/services/sqlstore/user_auth_test.go: comment unused\n users slice\n * fixed a typo\n * fixed a typo\n * fix: label values regex for single letter labels\n * created component for http settings\n * removes debug log.\n * make sure to add all variable nodes to dag before linking\n variables\n * changelog: adds note for #13607\n * updated jest to 23.10\n * Adds backend hooks service so extensions can modify index\n data\n * fix route issue\n * removed unused setting variable\n * minor setting refactorings\n * renamed extension point in the frontend\n * updated circleci build-container version\n * minor change to cloudwatch code formatting\n * minor ux fix for new select\n * fmt\n * grafana/grafana#13340 complete oauth doc\n * changed property name to UserWasDeleted and added an\n assert for it\n * Update check for invalid percentile statistics\n * pkg/services/alerting/notifiers/telegram.go: check error\n before close.\n * pkg/tsdb/*: Fix do not pass a nil Context\n * devenv: fix influxdb block\n * docs: refer to v5.3 instead of v5.2\n * removed unsused function\n * docs: stackdriver fixes after review\n * fix mutability bug, removed unused constructor\n * stackdriver: check if array is empty to prevent filter\n from crashing. This closes #13607\n * Handle DescriptionPicker's initial state #13425\n * stackdriver docs: metric query editor and annotations\n * Update snapshots after merge\n * Requests for ds via backend blocked for users without\n permissions.\n * Removes unused code.\n * Remove CTA when CTA-action is clicked instead of a /new\n route #13471\n * Add fancy delete button for ApiKeys.\n * Add form to both the CTA page and the regular list.\n * Add onClick handler to CTA.\n * Updated tests for new protip.\n * Updated protip, not sure what to write there.\n * Update tests for ApiKeys CTA screen.\n * changelog: add notes about closing #13616\n * Show CTA if there are no ApiKeys, otherwise show table.\n * Extract ApiKeyCount from state.\n * made it possible to have frontend code in symlinked\n folders that can add routes\n * Added Loading state on org pages\n * fix phantomjs render of graph panel when legend as table\n to the right\n * changelog: add notes about closing #13172\n * add test for es alert when group by has no limit\n * poc: frontend extensions\n * added the UserWasRemoved flag to make api aware of what\n happened to return correct message to UI\n * Remove user form org now completely removes the user from\n the system if the user is orphaned\n * remove tab\n * bug fix\n * Update time_series_query.go\n * changelog: add notes about closing #11711\n * add admin page to show enterprise license status\n * docs: add version notes\n * tests\n * Css fix for selected option\n * User without permission to a datasource won't see it.\n * Updated test snapshot #13425\n * Initialize Explore datasource correctly\n * Refactors ds permissions to a filter.\n * Remove the fixed widths and make it possible to pass it in\n as a prop instead #13425\n * User filtering now works properly at the backend #13425\n * Removed old code #13425\n * Rename css class 'gf-form-select2' to 'gf-form-select-box'\n #13425\n * Use new class names #13425\n * Fixes for the tag filtering in the search #13425\n * Start implementing the upgraded react-select in the tag\n filter box #13425\n * fix /api/org/users so that query and limit querystrings\n works\n * Bump grafana/build-container to 1.2.0\n * Revert 'Lock down node version to see if we get rid of the\n circleci build issue'\n * Revert 'Try to remove circleci cache to see if that solves\n the build issue'\n * Try to remove circleci cache to see if that solves the\n build issue\n * Generate yarn.lock from older yarn\n * Revert 'Add node version output for debugging'\n * Add node version output for debugging\n * Lock down node version to see if we get rid of the\n circleci build issue\n * Lock down webpack to 4.19.1 to avoid issue with\n webpack-cli\n (https://github.com/webpack/webpack/issues/8082)\n * Bump react-select to 2.1.0 #13425\n * Updated lockfile to get rid of build error #13425\n * Add frontend filtering of users in user picker #13425\n * Replace $white with a color working in both themes #13425\n * Replace System.import() with import() to get rid of\n warning\n * Clean up css for react-select v2 #13425\n * Upgrade Datasources-picker on Explore page #13425\n * Enable trailing on the debounce in the TeamPicker (same as\n in UserPicker) #13425\n * Update typescript notifications #13425\n * Update (js-) tests and snapshots for react-select 2 #13425\n * Remove variables not used #13425\n * wip: Remove code for old react-select component #13425\n * wip: The pickers are stateful nowadays, no need to pass in\n the current value #13425\n * wip: Upgrade react-select #13425\n * set v5.3 as root docs\n * disable permissions\n * whatsnew: adds image for Stackdriver\n * fixing weird arrow in select\n * update latest.json to 5.3.0\n * changelog: set date for 5.3.0 release\n * fixing permission rows\n * changelog: add notes about closing #13575\n * enable permissions for data source\n * Use correct naming convention\n * Fix typo\n * Provide more information about what's included in the\n Stackdriver plugin\n * changelog: add notes about closing #13575\n * cloudwatch: return early if execute query returns error\n * fix tab switching\n * add test for automatically unit set\n * fix crach bug\n * fix id validation\n * refactoring after review comments\n * changelog: adds note for #13559\n * added setting top hide plugins in alpha state\n * wip: fixed issues now things are starting to work as\n before for angular panels\n * pausing permissions list\n * Block graph queries from being queued until annotation\n datasource promises resolve\n * Redone with DataSourcePermissions\n * remove datasource permission admin for now\n * reverted AddPermissions\n * Explore: highlight typed text in suggestions\n * Update provisioning.md (#13572)\n * stackdriver: update docs, showing how to escape private\n key and use yaml multiline strings\n * modified AddPermissions component\n * set unit for CloudWatch GetMetricStatistics result\n * Remove duplicate labels in the datasource query\n * render drag handle only in edit mode\n * ux: minor update to look of stackdriver query help\n * changelog: adds note for #13495\n * add gopkg.in/square/go-jose.v2 to dependencies, update\n github.com/hashicorp/yamux\n * adding permissions component\n * reverted back and using angular for settings and\n dashboards\n * stackdriver: improve filter docs for wildcards and regular\n expressions\n * stackdriver: always use regex full match for =~ and\n !=~operator\n * stackdriver: add tests from regex matching\n * stackdriver: always use regex full match for =~ and\n !=~operator\n * stackdriver: test build filter string\n * stackdriver: test that no interpolation is done when there\n are no wildcards\n * stackdriver: remove debug logging\n * stackdriver: add more tests\n * stackdriver: fix broken substring. also adds tests\n * stackdriver: remove not necessary helper functions\n * stackdriver: interpolate stackdriver filter wildcards when\n asterix is used in filter\n * stackdriver metric name fix. Fixes #13562\n * Fixed nav model\n * fix for influxdb annotation issue that caused text to be\n shown twice, fixes #13553\n * wip: restoring old angular panel tabs / edit mode\n * ux: final fixes to new datasource page\n * Fix text overflow on playlist search #13464\n * docs: fix minor typos\n * ux: more minor ds setting tweaks\n * ux: more minor ds setting tweaks\n * ux: tweaks to add datasource page and datasource settings\n page\n * Fixed typo in query editor placeholder text.\n * Explore: do not show default suggestions after expressions\n * Explore: trigger a query field render to fix highlighting\n * Explore: compact state URLs\n * fix gofmt tests output\n * removed duplicate route\n * Use size-me to resize explore Graph, added types\n * algorithm to find new name if it exists\n * ux: misc react migration fixes and info box style\n improvement\n * docs: new variable type text box that allows free text\n input\n * docs: annotations tag filter with template variable\n support\n * docs: whats new in 5.3 - a few tweaks\n * mysql: note about connection max lifetime and wait_timeout\n * Explore: reset typeahead on cursor move\n * Explore: resize graph on window resize\n * Fix rate function hint for series with nulls\n * Extract query hints\n * Prevent Explore from updating when typing query\n * Avoid new metrics options being passed selector, made\n PromField pure\n * Perf on query field and typeahead\n * Dont rebuild datasource options on each render\n * contributing.md\n * changelog: add notes about closing #13326\n * react-2-angular: added generic angular directive loader\n util that can be used from react\n * search data source types\n * mini fix\n * css: minor fix to search\n * bump master version to 5.4.0-pre1\n * provisioning: adds more logging about failed to deletion\n of provisioned dashboards\n * various fixes and improvements\n * changelog: set date for 5.3.0-beta3 release\n * build: fix for invalid pathing for release publisher\n * changlog: adds note about closing #13551 and #13507\n * new grid layout add data source\n * test: updated react snapshot\n * ux: minor tweak to link\n * stackdriver: adds missing nginject attribute\n * docs: better wording and docs links.\n * Fix issue with updating role permissions #13507\n * fixed toggle buttons\n * dataproxy should forward a trailing slash to proxy\n * add datasource proxy test to verify trailing slashes are\n forwarded\n * centered dashboard icon in search with flexbox\n * mssql: fix tests\n * build: automatically publish releases to grafana.com.\n * updated after pr feedback\n * pkg/tsdb/postgres/postgres_test.go: pass\n context.Background() instead of nil\n * pkg/tsdb/mysql/mysql_test.go: pass context.Background()\n instead of nil\n * pkg/tsdb/mssql/mssql_test.go: pass context.Background()\n instead of nil\n * adjust mssql tests\n * pkg/tsdb/elasticsearch/client/client_test.go: pass\n context.Background() instead of nil\n * added data source type type\n * pkg/services/alerting/notifiers/telegram_test.go: pass\n context.Background() instead of nil\n * remove generic macros from macros_test and add integration\n test for generic macros\n * Revert 'Revert 'Org users to react''\n * Revert 'Org users to react'\n * add postgres test for global macros\n * add test\n * stackdriver heatmap support\n * added slow queries scenario to test data source, added new\n panel test dashboard with slow queries\n * Fix 'appropriate'-typo\n * Update configuration doc to include socket@server\n * move timeFrom, timeTo, unixEpochFrom and unixEpochTo\n macros to sql_engine\n * wip: began work on support for testdata tables &\n annotations support\n * docs: connection limits for sql datasources\n * ux: put connection limits under own section\n * fiddling with validation\n * changelog: adds note about closing #13492\n * view and route\n * wip: made sqlstore dialect accessable from outside\n * better comment about state changes\n * get or create alert notification should use transaction\n * use notification state id instead of notifier id\n * merges defaultShouldNotify and ShouldNotify\n * move version conflict logging for mark as complete to\n sqlstore package\n * removed duplicate route\n * improve local variable name\n * avoid exporting notificationState and\n notificationStateSlice\n * avoid sending full notification state to pending/complete\n * deleting obsolete things\n * Make max open, max idle connections and connection max\n life time configurable\n * snap\n * fix after merge from master\n * rename GetNotificationStateQuery to\n GetOrCreateNotificationStateQuery\n * reminder: uses UpdatedAt to track state changes.\n * snaps\n * invitees\n * changed from RFC to PureComponent\n * devenv: add postgres ha test config example\n * wip: going in circles\n * typo in sample.ini\n * pkg/tsdb/cloudwatch/credentials.go: Remove unnecessary\n variable assignment\n * pkg/cmd/grafana-server/main.go: '_ = <-ch' simplified to\n '<-ch'\n * pkg/tsdb/stackdriver/stackdriver_test.go: return\n simplified\n * Fix megacheck issue unused code.\n * invites table\n * Update ldap.md\n * use alert state changes counter as secondary version\n * wip: data source permissions hooks\n * docs: stackdriver version notice.\n * tests\n * added default prop instead of specifying prop\n * filter users in selector based on search\n * Moved explore helpers to utils/explore\n * Explore: jump to explore from panels with mixed\n datasources\n * functions and tests\n * cleanup alert_notification_state when deleting alert rules\n and channels\n * don't notify if notification state pending\n * remove unused code\n * stackdriver: set default view parameter to FULL\n * stackdriver: no tags for annotations (yet)\n * stackdriver: add help section for annotations\n * devenv: enable some debug logging for ha test setup\n * alert -> ok with reminders enabled should send\n * stackdriver: revert an accidental commit for text template\n variable\n * Added test for url state in Explore\n * Make Explore a pure component\n * first crude display\n * stackdriver: remove metric.category alias pattern\n * stackdriver: remove commented code\n * stackdriver: unit test group by and aggregation dropdown\n changes\n * stackdriver: make it impossible to select no aggregation\n when a group by is selected\n * Explore: Store UI state in URL\n * stackdriver: add relevant error message for when a user\n tries to create a template variable\n * stackdriver: make sure labels are loaded when service is\n changed in dropdown\n * stackdriver: change info logging to debug logging\n * stackdriver: change pattern for annotation to metric.value\n * stackdriver: add support for bool values\n * stackdriver: add support for int64 values\n * stackdriver: use correct default value for alignment\n period\n * stackdriver: fix reducer names\n * fix set sent_at on complete\n * snaps\n * noop services poc\n * implemented general actionbar\n * handle pending and completed state for alert notifications\n * stackdriver: fix froamt annotation text for value\n * stackdriver: make it possible to use point values of type\n string\n * No need to get alert notification state in ShouldNotify\n * using constant\n * added no datasources added\n * stackdriver: broadcasting through $scope doesnt work\n anymore since query_filter_ctrl is now a sibling directive\n to query_aggregation_ctrl, so broadcasting is now done\n using $rootScope\n * wip: test get alert notification state\n * wip: send and mark as complete\n * components, test, removed old not used files\n * wip: impl so that get alertstate also creates it if it\n does not exist\n * fix: preloader element issue\n * Adding AWS Isolated Regions\n * wip\n * stackdriver: pattern formatting for annotations\n * stackdriver: fix alignment period bug\n * stackdriver: set first metric as selected if no metric\n could be retrieved from the target\n * stackdriver: wip annotation support\n * Compile TS of the whole project to detect type errors\n * stackdriver: update tests\n * stackdriver: es6 style directive, avoid using scope\n * deletez\n * refactoring: slight changes to PR #13247\n * revert rename\n * stackdriver: fix typescript error\n * stackdriver: remove not needed alignment option\n * using constant\n * stackdriver: extract out filter, metric type directive\n * stackdriver: add unit tests to resolve unit function\n * rename to pluginlistitem\n * fixing types\n * stackdriver: convert most common stackdriver units to\n grafana units if possible\n * sqlstore: add support for checking if error is constraint\n validation error\n * rewrote to use react.sfc\n * explore: fixes to dark theme, fixes #13349\n * Remove angular code related to API Keys and point the\n route to the React component #13411\n * Open modal with API key information after key is added\n #13411\n * Add tests for the reducers & selectors for API keys #13411\n * Update test-snapshot, remove dead code #13411\n * Add tests for ApiKeysPage #13411\n * Add 'search box' and a 'add new' box to the new API Keys\n page #13411\n * Pick up the type from app/types\n * Pick up the type from app/types\n * Move User type out of UserPicker and into app/types\n * wip: Reactify the api keys page #13411\n * add support for mysql and postgres unique index error\n codes\n * implement sql queries for transactional alert reminders\n * stackdriver: fix typescript errors\n * stackdriver: pass interval from panel to backend\n * stackdriver: remove debug logging\n * stackdriver: update docs so that they align with alignment\n period rules in stackdriver gui\n * stackdriver: update alignment period rules according to\n stackdriver\n * stackdriver: set target to be raw query\n * stackdriver: publish docs to v5.3 (not root)\n * initial rename refactoring\n * changelog: adds note about closing #12534\n * devenv: grafana high availability (ha) test setup\n * stackdriver: use more appropriate test data\n * Add goconst to CircleCI\n * fix: also set dashboard refresh to false\n * simplified fix for 12030\n * prevent refresh on fixed time window\n * using more variables\n * stackdriver: fix broken test\n * stackdriver: workaround for the fact the jest definitions\n does not include not\n * stackdriver: docs update\n * stackdriver: WIP - implement stackdriver style auto\n alignment period. also return the used alignment period\n and display it in the query editor\n * stackdriver: distinct grafana auto from stackdriver auto\n in alignment period\n * stackdriver: use correct name for variable\n * stackdriver: remove montly from alignment periods\n * Added constant\n * tests\n * stackdriver: add alignemnt period\n * stackdriver: make sure service and metric display name is\n used instead of value when loading a saved query editor\n * alerting: move all notification conditions to\n defaultShouldNotify\n * stackdriver: use correct event name\n * stackdriver: fix broken tests\n * stackdriver: update aggregation and alignment before\n refreshing when changing metric\n * stackdriver: use correct naming convention\n * stackdriver: get value type and metric kind from metric\n descriptor instead of from latest metric result\n * filter NULL values for column value suggestions\n * changed to first and last child\n * imguploader: Add support for ECS credential provider for\n S3\n * stackdriver: adds on-change with debounce for alias by\n field\n * cli: fix init of bus\n * Remove .dropdown-menu-open on body click fixes #13409\n * stackdriver: improve aggregation logic\n * stackdriver: fix failing test\n * stackdriver: wip: split metric dropdown into two parts -\n resource and metric\n * first test\n * stackdriver: remove console.log\n * filter plugins and layout mode\n * stackdriver: typescriptifying controller\n * render list\n * stackdriver: break out aggretation logic into its own\n directive and controller. also adds tests for new dropdown\n population logic\n * Remove option r from ln command since its not working\n everywhere\n * fix: updated tests\n * using variable\n * Fix spelling of your and you're\n * Changed setting to be an alerting setting\n * created test for graph disclaimer\n * Remove non-existing css prop\n * fix: Legend to the right, as table, should follow the\n width prop. Removing css conflicting with baron's width\n calculation. #13312\n * stackdriver: populate alignment and aggregation dropdowns\n based on metric type and value type\n * docs: postgres gif.\n * limit number of time series show in explore graph\n * docs: whats new for 5.3\n * rendering: Added concurrent rendering limits\n * stackdriver: fix test after parameter added to constructor\n * stackdriver: skeleton for more query types on the backend\n * stackdriver: better error handling for getLabels\n * stackdriver: move getLabels from query_ctrl to datasource\n * Run all sql data source queries for one panel concurrently\n * removed border, cleaned up css and fixed class naming\n * devenv: fix uid for bulk alert dashboards\n * Explore: moved code to app/features/explore\n * target gfdev-prometheus datasource\n * stackdriver: fix bug when multiple projects connected to\n service account\n * devenv: adds script for creating many dashboards with\n alerts\n * stackdriver: refactoring - extract out filtersegments\n component\n * stackdriver: alias patterns WIP\n * Fix goconst issues\n * When stacking graphs, always include the y-offset so that\n tooltips can render proper values for individual points\n * provisioning: changed provisioning default update interval\n from 3 to 10 seconds\n * Update render.js\n * Update render.js\n * Fix https://github.com/grafana/grafana/issues/13387 metric\n segment options displays after blur\n * docs: improve oauth generic azure ad instructions\n * invalidate access token cache after datasource is updated\n * Fix datbase > database\n * Fix changed want md5 hash\n * Revert Fahrenheit to Farenheit\n * Fix some typos found by codespell\n * Fix misspell issues\n * fix: use same User-Agent header as in other places in\n grafana when making external requests\n * docs: changed Json Web Token wording to be just JSON key\n file\n * added beta notice\n * created switch button for org users that can toggle\n between users and invites\n * pkg/tracing/tracing.go: replace deprecated cfg.New\n function\n * stackdriver: remove WIP tests\n * pkg/services/sqlstore/user.go: empty branch\n * pkg/tsdb/elasticsearch/response_parser.go: simplify\n redundant code\n * pkg/tsdb/elasticsearch/client/search_request.go: simplify\n loop with append.\n * Explore: remove closing brace with opening brace\n * Explore: show series title in tooltip of legend item\n * Explore: dont rate-hint on rate queries\n * Explore: Fix metric suggestions when first letters have\n been typed\n * Fix misspelled authentication in Auth overview doc\n * fix reader linux test\n * resolve symlink on each run\n * stackdriver: add templating support for metric, filter and\n group by\n * wip: panel options idea2\n * stackdriver: use group by fields to create default alias\n * make sure we don't add the slash twice\n * Update render.js\n * devenv: fix docker blocks paths\n * Updated phantomjs render script to take full height\n screenshots\n * devenv: re-add missing docker-compose files\n * Explore: Fix label suggestions for recording rules\n * Explore: Fix click to filter for recording rule\n expressions\n * Don't use unnest in queries for redshift compatibility\n * pkg/tsdb/elasticsearch/client/client.go: use time.Since\n instead of time.Now().Sub\n * pkg/plugins/dashboards_updater.go: Simplify err check\n * pkg/services/sqlstore/alert_notification.go: Simplify err\n check\n * remove the test that does not do anything\n * add the trailing slash\n * stackdriver: add custom User-Agent header\n * stackdriver: remove hardcoding of test project name\n * updated\n * set maxworkers 2 for frontend tests\n * removes codedov refs\n * disable codecov\n * add a test\n * Fix setting test\n * stackdriver: improve query look\n * moves /tests to /pkg/plugins\n * stackdriver: add alignment period to query controller\n * stackdriver: making sure we dont pass too big\n alignmentPeriods to the stackdriver api\n * stackdriver: fix broken tests\n * stackdriver: adds default value for alignment period\n * stackdriver: use alignment period that is passed from\n frontend. if set to auto, use value provided from the\n panel. also added tests for alignment period\n * stackdriver: use alignment that is passed from frontend in\n the query\n * stackdriver: adds advanced options collapse to query\n editor with the possibility to select secondary\n aggregation and alignment\n * removes testdata from getting started\n * stackdriver: fix init labels bug\n * moves benchmark script to devenv\n * moves docker/ to devenv/docker\n * changelog: adds note about closing #9735\n * docs: add version disclaimer for postgres query editor\n * moves files from /tests to more appropriate folders\n * docs: template variable support for annotations\n * Update getting_started.md\n * pkg/services/sqlstore: Fix sess.Id is deprecated: use ID\n instead. (megacheck)\n * pkg/services/sqlstore: Fix x.Sql is deprecated: use SQL\n instead. (megacheck)\n * fix: increased team picker limit to 50, closes #13294\n * rename folder\n * Add documentation for PostgreSQL query builder\n * stackdriver: improve query editor to handle no data better\n * stackdriver: fixes in query editor\n * stackdriver: type rename\n * display team member labels\n * new column for team_member table\n * fix hipchat color code used 'no data' notifications\n * stackdriver: makes sure filter dropdown doesnt crash if\n clicked before values are loaded\n * fixes strange gofmt formatting\n * stackdriver: adds null check to query\n * gdev: added test dashboard for polystat panel\n * Explore: Add multiline syntax highlighting to query field\n * stackdriver: add support for filtering to backend\n * Hotfix for Explore (empty page after running query)\n * stackdriver: add filters to query editor\n * ldap: made minor change to group search, and to docs\n * stackdriver: fixes remove option in filter\n * dsproxy: add mutex protection to the token caches\n * metrics: starts some counters at zero\n * tech: remove all mobx stuff\n * stackdriver: wip - filters for query editor\n * stackdriver: adds remove group by option\n * stackdriver: improve segments for group bys in query\n editor\n * stackdriver: load time series meta data for group by\n dropdown\n * stackdriver: make sure distinct labels are returned. also\n added test\n * stackdriver: fix failing test\n * stackdriver: test get metric types\n * stackdriver: wip - group bys\n * stackdriver: update logo\n * stackdriver: ux for config page, docs updated\n * upload: make the button text configurable\n * stackdriver: add simple readme\n * stackdriver: reverse points array to be in ascending order\n * stackdriver: adds support for primary aggregations\n * stackdriver: better error handling and show query metadata\n * stackdriver: tests for parsing api response\n * stackdriver: add first test for parsing frontend queries\n * Stackdriver: Fix weird assignment\n * Stackdriver: Use metric type from query controller state\n * Stackdriver: Set target correctly\n * Stackdriver: Break out parse response to its own func\n * Stackdriver: Use ds_auth_provider in stackdriver. This\n will make sure the token is renewed when it has exporired\n * Stackdriver: Restructured ds proxy tests\n * stackdriver: fix test\n * Stackdriver: Add new file\n * Stackdriver: Start breaking out apply route to its own\n file\n * Stackdriver: Parsed url params\n * Stackdriver: Parse datapoints correctly\n * Stackdriver: Add backed query using\n * Stackdriver: Prettify json\n * Stackdriver: Move data to target\n * Stackdriver: Load example metric and start parsing\n response\n * Stackdriver: Exposing stackdriver backend api\n * Stackdriver: Use new access token API\n * Stackdriver: Temporary exporting token lookup\n * Stackdriver: Loads project name and metrics descriptions\n into the query controller\n * Stackdriver: Corrected field title and removed debug\n logging\n * Stackdriver: Removed debug logging\n * Stackdriver: Improved feedback for when a JWT is already\n uploaded in the ds config page\n * docs: first draft for stackdriver datasource\n * dsproxy: implements support for plugin routes with jwt\n file\n * Stackdriver: Added test for getProjects\n * Stackdriver: Refactored api call to google resource\n manager\n * Stackdriver: Add scope for google resource manager\n * Stackdriver: Fixed error message from google resource\n manager\n * Removes comment\n * Adds skeleton for loading projects from google resource\n manager\n * Adds unit tests to test datasource\n * Implemented datasource test\n * Fixed broken if statement\n * Adds jwt token signing google auth\n * Improved user experience\n * Upload: Fixing link function in directive\n * Adds poc code for retrieving google auth accesstoken\n * Build new stackdriver frontend script\n * Add stackdriver backend skeleton\n * Adds stackdriver frontend skeleton\n * Use datasource cache for backend tsdb/query endpoint\n (#13266)\n * added underline to links in table\n * fix: add permission fixes\n * test: added simple dashboard reducer test\n * feat: dashboard permissions are working\n * Fix gauge display accuracy for 'percent (0.0-1.0)'\n * use pluginName consistently when upgrading plugins\n * removes old unused examples (#13260)\n * fix: added loading screen error scenario (#13256)\n * changelog: add notes about closing #11555\n * Interpolate $__interval in backend for alerting with sql\n datasources (#13156)\n * anonymous usage stats for authentication types\n * disabling internal metrics disables /metric endpoint\n * wip: dashboard permissions to redux\n * renames PartialMatch to MatchAny\n * fix: add folder permission fix\n * fix: fixed tslint issue introduced in recent prometheus PR\n merge\n * Folder pages to redux (#13235)\n * folder permissions in redux\n * minor fix\n * fix test\n * add annotation option to treat series value as timestamp\n * wip: first couple of things starting to work\n * fix: added reducer test\n * Adhoc-filtering for prometheus dashboards (#13212)\n * docs: include active directory ldap example and\n restructure\n * First pass at a text based template var, getting feedback\n from devs\n * fix: url update loop fix (#13243)\n * wip: working on reducer test\n * fix: gofmt issues\n * fix: added loading nav states\n * redux: moved folders to it's own features folder\n * fix theme parameter not working problem while prefer theme\n set to light (#13232)\n * fix: added type export to fix failing test\n * fix: fixed typescript test error\n * mobx -> redux: major progress on folder migration\n * another circleci fix\n * Another circleci fix\n * changed gometalinter to use github master\n * commented out metalinter as gopkg is having issues\n * wip: folder settings page to redux progress\n * Fix prometheus label filtering for comparison queries\n (#13213)\n * Upgrade react and enzyme (#13224)\n * enable partial tag matches for annotations\n * put folder name under dashboard name, tweaked aliginments\n in search results\n * support template variables with multiple values\n * Teams page replace mobx (#13219)\n * renames jest files to match new convention\n * upgrade of typescript and tslint and jest (#13223)\n * fix nil pointer dereference (#13221)\n * removes protoc from makefile\n * wip: folder to redux\n * changelog: note about closing #11681\n * Adding Centrify configuration for Oauth\n * wip: progress on redux folder store\n * wip: moving option tabs into viz tab\n * fix: changing edit / view fullscreen modes now work\n * actions for group sync\n * initial render/refresh timing issues\n * team settings\n * wip: began folder to redux migration\n * test for team member selector\n * flattened team state, tests for TeamMembers\n * refactor: moved stuff into new features dir\n manage-dashboards\n * move: moved styleguide to admin\n * fix: fixed singlestat test broken due to file move\n * moved folders from features into the main feature folder\n they belong to\n * Add jsonnet with grafonnet-lib to provisioning docs\n * fix: Dashboard permissions now shows correctly, fixes\n #13201\n * redux: do not use redux logger middleware in production\n builds\n * Allow oauth email attribute name to be configurable\n (#13006)\n * Document required order for time series queries (#13204)\n * refactor: changed AlertRuleItem pause action to callback\n * Fix query builder queries for interval start\n * team members, bug in fetching team\n * renaming things in admin\n * graph legend: use refactored version of scrollbar, #13175\n * Teampages page\n * refactoring: custom scrollbars PR updated, #13175\n * scrollbar: use enzyme for tests instead of\n react-test-renderer\n * changelog: add notes about closing #13121\n * fix code formatting\n * Fix quoting to handle non-string values\n * scrollbar refactor: replace HOC by component with children\n * graph legend: scroll component refactor\n * scrollbar refactor: replace HOC by component with children\n * adds usage stats for alert notifiers (#13173)\n * changelog: typo\n * docs: what's new in v5.3 placeholder\n * tests for withScrollBar() wrapper\n * tests for withScrollBar() wrapper\n * changelog: restructure and add 5.3.0-beta1 header\n * changelog: add notes about closing #13157\n * wrapper for react-custom-scrollbars component\n * graph legend: use 'react-custom-scrollbars' for legend\n scroll\n * wrapper for react-custom-scrollbars component\n * docs: sql datasources min time interval\n * changelog: note about closing #10424\n * docs: minor fixes\n * docs: Updated auth docs\n * docs: updated\n * spelling errors\n * make default values for alerting configurable\n * Adding Action to view the graph by its public URL.\n * changelog: order changes by group (ocd)\n * changelog: add notes about closing #13030\n * added radix rule and changed files to follow rule (#13153)\n * set search query action and tests\n * docs: default paths in the docker container.\n * delete team\n * added only-arrow-functions rule and changed files to\n follow new rule (#13154)\n * load teams and store in redux\n * build: uses 1.1.0 of the build container.\n * creating types, actions, reducer\n * Only authenticate logins when password is set (#13147)\n * refatoring: minor changes to PR #13149\n * Add min time interval to mysql and mssql\n * build: updated build-container with go1.11.\n * added no-conditional-assignment rule and changed files to\n follow new rule\n * fix test failures for timeInterval\n * document postgres min time interval\n * Add min time interval to postgres datasource\n * Changed functions to arrow functions for\n only-arrow-functions rule. (#13131)\n * mobx: removed unused SearchStore\n * fix: Updated test\n * redux: minor changes to redux thunk actions and use of\n typings\n * Reactify sidebar (#13091)\n * Changed functions to arrow functions for\n only-arrow-functions rule.\n * removed unused mobx state\n * changed functions to arrowfunctions for\n only-arrow-functions rule (#13127)\n * fix: fixed home dashboard redirect issue when behind\n reverse proxy, fixes #12429 (#13135)\n * tests\n * Changed functions to arrow functions for\n only-arrow-functions rule.\n * improve remote image rendering (#13102)\n * handle new variables created not yet added\n * changelog: add notes about closing #10095\n * graph legend: implement series toggling and sorting\n * docs: postgres provisioning\n * changelog: adds note about closing #13125\n * fixed title prefix, fixes #13123 (#13128)\n * Reopen log files after receiving a SIGHUP signal (#13112)\n * Fixed a bug in the test and added test for filter alert\n rules\n * graph legend: react component refactor\n * added Bitcoin as a currency option\n * added new-parens rule (#13119)\n * cli: avoid rely on response.ContentLength (#13120)\n * some basic selector tests\n * fixed testcase\n * pausing alert\n * docs: v5.2 upgrade notice, ref #13084\n * changelog: add notes about closing #7330\n * extend from purecomponent\n * remove log\n * actions and reducers for search filter\n * added rule use-isnan and and updated file to follow new\n rule (#13117)\n * added no-namespace and no-reference rules (#13116)\n * added no-angle-bracket-type-assertion rule and updatet\n files to follow rule (#13115)\n * Updated rules for variable name (#13106)\n * update wording and punctuation (#13113)\n * redux: improved state handling\n * redux: progress\n * wip: load alert rules via redux\n * refactor: changed nav store to use nav index and selector\n instead of initNav action\n * moving things around\n * Fix array display from url\n * wip: solid progress on redux -> angular location bridge\n update\n * wip: moving things around\n * wip: moveing things around\n * wip: redux refactor\n * pass timerange in meta data queries\n * ignore information_schema tables\n * added jsdoc-format rule and fixed files that didn't follow\n new rule (#13107)\n * set member-access and no-var-keyword to true, removed\n public in two files (#13104)\n * fix: for text flickering in animation on chrome on windows\n * graph legend: minor refactor\n * use quoting functions from MysqlQuery in datasource\n * render query from query builder\n * graph: make table markup corresponding to standards\n * graph: legend as React component\n * wip: redux\n * redux: wip progress for using redux\n * fixed so preloader is removed when app is loaded\n * removed console.log\n * separated fade-ins for logo and text, tweaked delays and\n timing for fade-in animations\n * docs: minor updates, more work to do\n * ux: minor fixes to loading screen\n * start implementing mysql query editor as a copy of\n postgres query editor\n * reset metric column when changing table\n * fix timeFilter resetting when changing table\n * when changing table, refresh panel once after columns have\n been changed\n * added pro-tip text, removed pro-tip link\n * fixed styling for background and text, added intro\n animation, added fade in to text\n * fix timecolumn handling when table changes\n * set default for timeGroup in query builder to $__interval\n * when changing table reset columns\n * fix metric column suggestions\n * fix suggestions for metric column\n * Return correct path for OpenBSD in cli's returnOsDefault\n (#13089)\n * updated changelog\n * New TV Mode, dashboard toolbar update (layout change & new\n cycle view mode button) (#13025)\n * added this:any to functions and changed functions to\n arrowfunctions\n * feat: loading css async & inline svg\n * Explore: keep query when changing datasources (#13042)\n * changed var to let in 50 files (#13075)\n * changed var to let in last files (#13087)\n * tsconfig: started on setting noImplicitThis to true\n * tsconfig: format file\n * document postgres version and TimescaleDB option\n * tslint: added 1 more rule, #12918\n * tslint: added 2 more rules and removed unused component,\n #12918\n * tslint: added a new tslint rule\n * added rule prefer const to tslint (#13071)\n * dep ensure (#13074)\n * hide Query Builder button for table panels\n * check for correct quoting of multiple singlequotes\n * changed var to const 2 (#13068)\n * changed var to const (#13061)\n * update latest.json to latest stable version\n * docs: corrected docs description for setting\n * remove min time interval from datasource config\n * remove unneeded queryOptions\n * changelog: add notes about 4.6.4 and 5.2.3 releases\n * fix quoting\n * strip quotes when auto adding alias\n * handle quoting properly for table suggestion\n * link to github instead\n * recheck timecolumn when changing table\n * update filter macro on time column change\n * string formating fixes\n * go fmt fixes\n * Moved tooltip icon from input to label #12945 (#13059)\n * added empty cta to playlist page + hid playlist table when\n empty (#12841)\n * changed from rotating to bouncing, maybe to much squash\n and stretch\n * Update provisioning.md\n * make default mode for table panels raw editor\n * improve description for timescaledb option\n * Review feedback.\n * use series matchers to get label name/value\n * changelog: add notes about closing #12865\n * fixed so validation of empty fields works again\n * added a loading view with a spining grafana logo\n * fix handling of variable interpolation for IN expresions\n * tslint: tslint to const fixes part3 (#13036)\n * tslint: more const fixes (#13035)\n * tslint: changing vars -> const (#13034)\n * tslint: autofix of let -> const (#13033)\n * fix: minor fix to changing type\n * upgrades to golang 1.11\n * wip: angular panels now have similar edit mode and panel\n type selection enabling quick changing between panel react\n and angular panel types\n * add min interval to postgres datasource\n * wip: major change for refresh and render events flow\n * fix: going from fullscreen fix\n * wip: minor fixes\n * copy and docs update for alert notification reminders\n * change/add tests for alerting notification reminders\n * wip: trying to align react & angular edit modes\n * WIP Update tslint (#12922)\n * changelog: add notes about closing #12952 #12965\n * build: fixes rpm build when using defaults.\n * docs: reminder notifications update\n * changelog: add notes about closing #12486\n * docs: changes\n * created a section under administration for authentication,\n moved ldap guide here, created pages for auth-proxy,\n oauth, anonymous auth, ldap sync with grafana ee, and\n overview, moved authentication guides from configuration\n to, added linksin configuration page to guides\n * fixed so animation starts as soon as one pushes the button\n and animation stops if login failed\n * added link to getting started to all, changed wording\n * tests: fix missing tests (with .jest suffix)\n * docs: alerting notification reminders\n * update copy/ux for configuring alerting notification\n reminders\n * heatmap: fix tooltip bug in firefox\n * fix tableSegment and timeColumnSegment after table\n suggestion\n * Update notifications.md\n * sql: added code migration type\n * changelog: add notes about closing #11890\n * Explore: Apply tab completion suggestion on Enter (#12904)\n * Show min-width option only for horizontal repeat (#12981)\n * Fix bulk-dashboards path (#12978)\n * add suggestions for reminder frequency and change copy\n * don't write to notification journal when testing\n notifier/rule\n * remove unnecessary conversion (metalinter)\n * fix after merge with master\n * Refresh query variable when another variable is used in\n regex field (#12961)\n * Webpack tapable plugin deprecation (#12960)\n * unify quoting\n * dsproxy: interpolate route url\n * prefill editor with first metric table\n * only allow 1 filter macro in where clause\n * fix timeColumnType assignment\n * make suggested filter macro depend on type\n * use unixEpochGroup macro for unix timestamp\n * alerting: inline docs for the slack channel.\n * Replacing variable interpolation in 'All value' value\n * changelog: add notes about closing #12229\n * cleaning up test data\n * changelog: add notes about closing #12892\n * docs: es versions supported\n * devenv: update sql dashboards\n * when value in variable changes, identify which variable(s)\n to update\n * removed inverse btn styling and added bgColor to generic\n oauth and grafana.com login buttons, added styling so log\n in button uses dark theme inverse btn styling both for\n dark and light theme\n * suggest operators depending on datatype\n * Doc - fix title level\n * Update doc about repeating panels\n * Doc - fix broken link\n * build: beta versions no longer tagged as latest.\n * docs: cleanup.\n * docs: docker and restarts.\n * update persisted parts on param change\n * persist datatype information\n * Don't do value suggestions for numeric and timestamp\n * created a class for loading buttons, added a button for\n when login slow on login page\n * rename postgres_query.jest.ts to .test.ts\n * fix variable escaping\n * autodetect timescaledb when version >= 9.6\n * build: duplicate docker run-script removed.\n * detect postgres version for saved datasources\n * Set User-Agent header in all proxied datasource requests\n * use pointer cursor for buttons in query editor\n * docs: cloudwatch dimensions reference link.\n * require postgres 9.4+ for ordered set aggregate functions\n * add postgres version to datasource config\n * only show first/last aggregate when timescaledb is enabled\n * keep jsonData in PostgresDatasource\n * docs: remove message property in response from get alerts\n http api\n * changelog: add notes about closing #5623\n * build: cleanup\n * should allow one default datasource per organisation using\n provisioning\n * build: fixes rpm verification.\n * docs: add grafana version note for gitlab oauth\n * docs: gitlab: add note about more restrictive API scope\n * social: gitlab_oauth: set user ID in case email changes\n * docs: document GitLab authentication backend\n * social: add GitLab authentication backend\n * build: verifies the rpm packages signatures.\n * changelog: add notes about closing #12224\n * added guide for logging in to grafana for the first and\n how to add a datasource\n * docs: update\n * feat: add auto fit panels to shortcut modal, closes #12768\n * changelog: add notes about closing #12680\n * docs: update postgres provisioning\n * Remove dependencies\n * Rename test files\n * changelog: add notes about closing #12598\n * add version disclaimer for TimescaleDB\n * document TimescaleDB datasource option\n * Use variable in newPostgresMacroEngine\n * Remove Karma scripts and docs\n * changelog: add notes about closing #10705\n * fix: ds_proxy test not initiating header\n * Don't pass datasource to newPostgresMacroEngine\n * Remove tests and logs\n * Fix for Graphite function parameter quoting (#12907)\n * don't render hidden columns in table panel (#12911)\n * fix: added missing ini default keys, fixes #12800 (#12912)\n * refactor timescaledb handling in MacroEngine\n * change: Set User-Agent to Grafana/%Version%\n Proxied-DS-Request %DS-Type% in all proxied ds requests\n * Remove comment\n * Cleanup\n * All tests passing\n * Class to function. Half tests passing\n * Karma to Jest: graph (refactor) (#12860)\n * tech: removed js related stuff now that 99% is typescript\n (#12905)\n * Add React container\n * changelog: add notes about closing #12805\n * fix redirect to panel when using an outdated dashboard\n slug (#12901)\n * Add commit to external stylesheet url (#12902)\n * build: increase frontend tests timeout without no output\n * fix: Alerting rendering timeout was 30 seconds, same as\n alert rule eval timeout, this should be much lower so the\n rendering timeout does not timeout the rule context, fixes\n #12151 (#12903)\n * changelog: add notes about closing #12476\n * now hides team header when no teams + fix for list hidden\n when only one team\n * Rename to HeatmapRenderer\n * Mock things\n * Explore: Fix label filtering for rate queries\n * add $__unixEpochGroup to mssql datasource\n * add $__unixEpochGroup to mysql datasource\n * Add $__unixEpochGroup macro to postgres datasource\n * changed const members to filteredMembers to trigger get\n filtered members, changed input value to team.search\n (#12885)\n * get timecolumn datatype on timecolumn change\n * changelog: add notes about closing #12882\n * Removes link to deprecated docker image build\n * Add mocks\n * fix datatype query\n * Changelog update\n * docker: makes it possible to set a specific plugin url.\n * Add support for $__range_s (#12883)\n * Refactor setting fillmode\n * Update dashboard.md\n * Fix typo\n * Explore: label selector for logging\n * Replace element\n * Rewrite heatmap to class\n * Explore: still show rate hint if query is complex\n * Explore: Filter out existing labels in label suggestions\n * Add note for #12843\n * Fix initial state in split explore\n * replaced with EmptyListCta\n * Begin conversion\n * changed messaging\n * mention time_bucket in timescaledb tooltip\n * keep legend scroll position when series are toggled\n (#12845)\n * replaced confirm delete modal with deleteButton component\n in teams members list\n * [wip]added empty list cta to team list, if statement\n toggles view for when the list is empty or not\n * Update NOTICE.md\n * Fix padding for metrics chooser in explore\n * fix rebase error\n * revert passing ctrl to testDatasource\n * change timescaledb to checkbox instead of select\n * add timescaledb option to postgres datasource\n * build: fixes png rendering in the docker based\n docker-image build.\n * remove duplicated /tmp entry in .dockerignore\n * move run script, update README\n * produce an image compatible with grafana-docker\n * More efficient builds and some fixes to the Go binaries\n * Simple Docker-based build option\n * Add example OR search_filter to docs\n * Explore: expand recording rules for queries\n * Explore: Query hints for prometheus (#12833)\n * Convert URL-like text to links in plugins readme\n * skip target _self to remove full page reload\n * use uid when linking to dashboards internally in a\n dashboard\n * add previous fill mode to query builder\n * added more info about the teams\n * removed mock-teams, now gets teams from backend\n * changelog: add notes about closing #12756\n * add api route for retrieving teams of signed in user\n * devenv: update sql dashboards\n * team list for profile page + mock teams\n * changelog: add notes about closing #11270\n * Fixing bug in url query reader and added test cases\n * fix missing *\n * rename last fillmode to previous\n * change fillmode from last to previous\n * return proper payload from api when updating datasource\n * Review feedback\n * changelog: update #12768\n * Remove window\n * Fix url param errors\n * Explore: Metrics chooser for prometheus\n * Add clear row button\n * Add clear button to Explore\n * Explore: show message if queries did not return data\n * Fix closing parens completion for prometheus queries in\n Explore (#12810)\n * Update ROADMAP.md\n * Update ROADMAP.md\n * Update ROADMAP.md\n * switched to lowercase\n * replaced escape() call, renamed formatter to be more\n expressive\n * Smaller docker image (#12824)\n * build: failing to push to docker hub fails the build.\n * Reversed history direction for explore\n * Explore: Add history to query fields\n * unix socket docs\n * Explore: facetting for label completion (#12786)\n * docs: how to build a docker image.\n * Remove Karma test\n * All tests passing\n * Add mock constructor\n * Begin conversion\n * Convert query control\n * Convert datasource\n * refactor: take submenu into account PR #12796\n * refactor: renaming variables, refactoring PR #12796\n * refactor: moving code around a bit, refactoring PR #12796\n * Remove weird import\n * Disable submenu when autopanels is enabled\n * Extract to own method\n * Use and add keybard shortcut\n * Add temporary url parameter\n * Replace floor with round\n * Go with just single margin compensation\n * Add margin and padding compensation\n * Remove weird import\n * Fit panels to screen height\n * dont break default parameters for functions\n * fix suggestion query\n * renamed slate unit tests to .jest.ts\n * Remove simple tests\n * Support client certificates for LDAP servers\n * Begin conversion\n * Add click on explore table cell to add filter to query\n (#12729)\n * dont order for aggregate\n * build: makes it easier to build a local docker container.\n * add moving average to query builder\n * adjust frontend test\n * use $__timeGroupAlias macro\n * specify grafana version for last fill mode\n * add fillmode 'last' to sql datasource\n * build: disables external docker build for master and\n release.\n * build: complete docker build for master and releases.\n * build: removes unused args to docker build.\n * build: imported latest changes from grafana-docker.\n * build: attach built resources.\n * build: builds docker image from local grafna tgz.\n * build: new workflow for PR:s and branches.\n * docker: inital copy of the grafana-docker files.\n * changelog: add notes about closing #1823 #12801\n * Add auto_assign_org_id to defaults.ini\n * changelog: add notes about closing #12749\n * changelog: add notes about closing #12766\n * adjust test dashboards\n * remove info logging\n * added two new classes for color, fixed so link has value\n color\n * changelog: add notes about closing #12063\n * Add new Redshift metrics and dimensions for Cloudwatch\n datasource\n * changelog: add notes about closing #12752\n * changelog: update\n * Improve iOS and Windows 10 experience (#12769)\n * add series override option to hide tooltip (#12378)\n * changelog: add notes about closing #12785\n * removed table-panel-link class\n * removed table-panel-link class and add a class white to\n modify table-panel-cell-link class\n * add warning when switching from raw sql mode\n * add more prominent button for switching edit mode\n * document $__timeGroupAlias\n * add $__timeGroupAlias to mysql and mssql\n * fix custom variable quoting in sql* query interpolations\n * add compatibility code to handle pre 5.3 usage\n * Change to arrow functions\n * Add all tests to one file\n * changelog: add notes about closing #12561\n * Remove angularMocks\n * All tests passing\n * replaced style with class for links\n * Add $__timeGroupAlias to postgres macros\n * adjust test dashboards\n * remove alias from postgres $__timeGroup macro\n * changelog: add notes about closing #12762\n * fix: team email tooltip was not showing\n * fix: test data api route used old name for test data\n datasource, fixes #12773\n * removed a blank space in div\n * fixed color for links in colored cells by adding a new\n variable that sets color: white when cell or row has\n background-color\n * changelog: add notes about closing #12300\n * Weird execution order for the tests...\n * fixed test result\n * added urlescape formatting option\n * changelog: add notes about closing #12744\n * changelog: add notes about closing #12727\n * add aws_dx to cloudwatch datasource\n * also fixed 'Watt per square metre'\n * fixed that missing one\n * add version note to metric prefix and fix typo\n * devenv: update sql dashboards\n * mssql: update tests\n * fix usage of metric column types so that you don't need to\n specify metric alias\n * Begin conversion\n * changelog: update\n * changelog: add notes about closing #12747\n * Add missing tls_skip_verify_insecure (#12748)\n * rename special to windows\n * add first and last support\n * refactor function handling in query builder\n * refactor column function handling\n * consistent nameing fro group and select\n * mssql: add logo\n * add tests for metric column prefix to mssql\n * add metric column prefix test for mysql\n * document metric column prefix in query editor\n * document metric column prefix for mysql and mssql\n * Remove extra mock\n * Karm to Jest\n * correct volume unit\n * Remove lo\n * Test passing. Remove Karma\n * adjust metric prefix code to sql engine refactor\n * add testcase for metric column as prefix\n * Use metric column as prefix\n * Fix emit errors\n * Fix test\n * Add async/await\n * refactor schema query generation\n * removed unused class from the deletebutton pr\n * frontend part with mock-team-list\n * Update test for local time\n * update devenv datasources and dashboards for sql\n datasources\n * Begin conversion\n * use const for rowlimit in sql engine\n * Cleanup\n * Remove Karma file\n * All tests passing\n * All except one passing\n * remove tableschema from query builder ui\n * changelog: add notes about closing #12731\n * elasticsearch: support reversed index patterns\n * update devenv datasources and dashboards for sql\n datasources\n * mssql: use new sql engine\n * mysql: use new sql engine\n * postgres: use new sql engine\n * refactor sql engine to make it hold all common code for\n sql datasources\n * Pass more tests\n * Refactor Explore query field (#12643)\n * Begin conversion\n * All tests passing. Remove Karma test.\n * Almost all tests passing\n * Add tslib to TS compiler\n * docs: using interval and range variables in prometheus\n * Two passing tests\n * Update Configuration.md\n * Start conversion\n * changelog: add notes about closing #12533\n * changelog: add notes about closing #12668\n * changelog: update\n * changelog: add notes about closing #12668\n * fix for typeahead background, increased lighten\n * added position absolute and some flexbox so I could remov\n changes in display and setTimeout, added tests and types,\n did some renaming\n * fix invalid reference\n * minor fixes\n * fix failing test due to time diff issues\n * Remove comments\n * remove unneeded comment\n * Remove old influx stuff\n * changelog: add notes about closing #12489\n * changelog: add notes about closing #12551\n * changelog: add notes about closing #12533\n * Karma to Jest\n * Begin conversion\n * changelog: add notes about closing #12589\n * changelog: add notes about closing #12636 #9827\n * Remove influx qeury_ctrl jest, as it is already completed\n * Test fail depending on test order\n * Karma to Jest: begin influx query_ctrl\n * Make beautiful\n * Karma to Jest: completer\n * Remove comments and Karm test\n * Karma to Jest\n * Pass more tests\n * changelog: add notes about closing #12644\n * fix code style\n * docs: mentation that config changes requires restart.\n * return 400 if user input error\n * changing callback fn into arrow functions for correct\n usage of this (#12673)\n * Fix requested changes\n * Add templating docs for\n * Add docs about global variables in query template\n variables\n * Figuring out why it doesn't initialize\n * Add support for interval in query variable\n * Add jest file\n * Change to arrow functions\n * Add graph_ctrl jest\n * changelog: add notes about closing #12691\n * Update kbn.ts\n * Add jest test file\n * Id validation of CloudWatch GetMetricData\n * Fix timezone issues in test\n * fix window function query without group by\n * changelog: adds note for #11487\n * add order by to metadata queries\n * set explicit order for rate and increase\n * escaping ssl mode on postgres param\n * fix pre gui queries shortcircuit\n * Add unit test for InfluxDB datasource\n * Support timeFilter in templating for InfluxDB\n * Datasource for Grafana logging platform\n * removed blue-dark variable with blue-light in light-theme,\n blue variable now has same value as blue-dark had before,\n should fix issue with any low contrast issues with blue in\n light-theme, this made query-blue variable unnecessery\n removed it, added variable for variable dropdown highlight\n background\n * removed import appEvents\n * built a component for delete button in tables, instead of\n using a modal to confirm it now does it in the row of the\n table, created a sass file for the component, the\n component uses css transitions for animation\n * fix: postgres/mysql engine cache was not being used, fixes\n #12636 (#12642)\n * added: replaces added to grafana\n * fix: datasource search was not working properly\n * add groupby when adding first aggregate\n * docs: minor docs fix\n * Fix label suggestions in Explore query field\n * pluginloader: expose flot gauge plugin\n * alert: add missing test after refactor\n * Handle query string in storage public_url (#9351) (#12555)\n * HTTP API documentation +fix when updating a playlist\n (#12612)\n * Explore: calculate query interval based on available width\n * Use url params for explore state\n * Dont parse empty explore state from url\n * Fix default browser th font-weight\n * Adding eval_data to alerts query results\n * ldap: Make it possible to define Grafana admins via ldap\n setup, closes #2469\n * nginx: update to docker block\n * minor fix for legacy panels\n * Remove string casting for template variables in prometheus\n * ldap: docker block readme update\n * Make prometheus value formatting more robust\n * Update README.md\n * Devenv testdata dashboards (#12615)\n * fix test for query generation\n * dont run queries if target has no table set\n * add query to find metric table\n * add popover for metric column\n * rename PostgresQueryBuilder to PostgresMetaQuery\n * dont expand variables in rawSql\n * filter datatype for groupby suggestions\n * fix rate special function when using group by\n * remove unused import\n * refactor adding sqlPart\n * remove render code from sql_part\n * fix bug in query generation with metricColumn\n * refactor PostgresQuery\n * refactor PostgresQueryCtrl\n * refactor PostgresQueryCtrl and PostgresQuery\n * refactor addGroupBy and removeGroupByPart\n * use let for variable declaration\n * Add templateSrv to PostgresQuery tests\n * add tests for query generation\n * Reverted $q to Promise migration in datasource_srv\n * Allow settting of default org id to auto-assign to\n (#12401)\n * Remove unused SASS variables (#12603)\n * fix: panel embedd scrolbar fix, fixes #12589 (#12595)\n * fix tests for postgres datasource\n * Set datasource in deep links to Explore\n * send timerange with metricFindQuery\n * Explore Datasource selector\n * changed you to your (#12590)\n * indent generated SQL\n * Add comments\n * Fix freezing browser when loading plugin\n * handle counter overflow and resets in rate\n * partition by metricColumn when using increase\n * add rate and increase special functions\n * wip: another baby step, another million to go\n * skip backend request if extended statistics is invalid.\n (#12495)\n * Refactor team pages to react & design change (#12574)\n * (prometheus) prevent error to use $__interval_ms in query\n (#12533)\n * fix: folder picker did not notify parent that the initial\n folder had been changed, fixes #12543 (#12554)\n * Add support for skipping variable value in URL, fixes\n #12174 (#12541)\n * Update mac.md\n * Update windows.md\n * Update rpm.md\n * Update debian.md\n * Don't build-all for PRs\n * Refactor value column SQL generation\n * Refactor metric column sql generation\n * fix: requests/sec instead of requets (#12557)\n * Add folder name to dashboard title (#12545)\n * Fix css loading in plugins (#12573)\n * Refactor group by query generation\n * Refactor where clause generation\n * refactor SQL generation for value columns\n * Refactor time column sql generation\n * Refactor render function on PostgresQuery\n * prepare sql part for special functions\n * set query gui as default handle old panels gracefully\n * Added BurstBalance metric to list of AWS RDS metrics.\n * dont throw exception for unknown types\n * Prevent scroll on focus for iframe\n * add alias when adding group by\n * Add new sequential color scales\n * add aggregates when adding group by\n * add column alias when add aggregate function\n * move go vet out of scripts and fixing warning (#12552)\n * fix enter in sql_part_editor\n * fix editing expression parts\n * wip: you can now change panel type in edit mode\n * rename inputBlur to switchToLink\n * react panels: working on changing type\n * Cleanup and remove some jest.fn()\n * fix spelling\n * add current value to dropdown if its not in resultset\n * Revert 'show current value in dropdown when its not part\n of list'\n * Remove irrelevant tests and templateSrv stub\n * show current value in dropdown when its not part of list\n * redid redux poc, old branch was to old and caused to many\n conflicts\n * wip: redux poc\n * fix diff and percent_diff (#12515)\n * improve error message\n * generate unique id when variable is multi\n * support GetMetricData\n * dep ensure\n * update aws-sdk-go\n * Update lodash/moment version (#12532)\n * fix: minor css change\n * wip: minopr progress on react panel edit infra\n * Tabs to spaces in tslint (#12529)\n * wip: minor progres on react panels edit mode\n * add None to metric column suggestions\n * handle pre query gui queries gracefully\n * dont break on panels that dont have rawQuery set\n * refactor transformToSegments\n * devenv: updated devenv provision scripts\n * wip: viz editor started\n * ux: minor fix/tweak to inactive view mode, think logo\n should be visible & fixes dashboard title alignment\n * changelog: add notes about closing #12379\n * Fix datasource sorting with template variables\n * another baby step\n * changelog: add notes about closing #12484\n * changelog: add notes about closing #12506\n * rename quoteLiteral to quoteIdentAsLiteral\n * changelog: add notes about closing #12506\n * fix links not updating after changing variables\n * remove unused function removeSelect\n * put updateParam back in\n * fix where clause generation\n * remove hardcoded $__timeFilter, make macros functional in\n where clause\n * remove dead code, make label more flexible\n * fix constraint removal\n * react-panels: minor progress on data flow\n * dont autoquote, suggest quoted values if requried\n * prometheus heatmap: fix unhandled error when some points\n are missing\n * fix caret for help button is ds http settings\n * do not autoquote identifiers\n * fix group by ui\n * changelog: add notes about closing #11618 #11619\n * fix where constraint handling\n * remove dead code from sql_part fix where clause query\n generation\n * Add mock to test files\n * Create new instance in beforeEach\n * Remove comments\n * Karma to Jest: Cloudwatch datasource\n * Karma to Jest: MySQL datasource\n * Karma to Jest: postgres datasource\n * Basic cleanup\n * Add mocks in test file\n * Remove q and stub\n * Add Jest stubs\n * Remove async\n * Remove logs and comments\n * Start elastic ds test conversion\n * run enterprise build only on master for now\n * refix the settings indentation\n * update stats admin doc\n * fix json indentation\n * include where constraints in query generation\n * remove unnecessary conversions\n * rearrange elements of query builder\n * mv query_part to sql_part\n * changelog: update\n * changelog: add notes about closing #11818\n * changelog: add notes about closing #12460\n * changelog: add notes about closing #8186\n * changelog: add notes about closing #12379\n * changelog: add notes about closing #12362\n * devenv: open ldap docker block now prepopulating data with\n correct member groups\n * ci: Only publish grafana enterprise packages tagged with\n enterprise.\n * Make table sorting stable when null values exist (#12362)\n * Fix bar width issue in aligned prometheus queries (#12483)\n * correct example (#12481)\n * ldap: improved ldap test env with more structured users\n and groups\n * test: fixed usage of wrap in tests.\n * ci: typo\n * ci: publishes grafana enterprise to s3.\n * refactoring: making api wrap public\n * refactoring: enterprise build/hooks refactorings (#12478)\n * Karma to Jest: datasource_srv (#12456)\n * fix: #12461 introduced issues with route registration\n ordering, adding plugin static routes before plugins\n package had been initiated (#12474)\n * omit extra template refresh (#12454)\n * wip: minor progress on DataPanel\n * Improve extensions build. (#12461)\n * [mysql] fix $__timeGroup rounding (#12469)\n * [mssql] fix $__timeGroup rounding (#12470)\n * [postgres] fix timeGroup macro rounding (#12468)\n * pkg/social/github: Allow changing of userinfo data\n (#12471)\n * notifications: dont return error if one notifer failed\n * use sqlPart for ui parts\n * avoid calling os.Exit outside main.go (#12459)\n * update mysql/mssql query/annotation help sections\n * docs: update folders api\n * Changed documentation for MSSQL and MySQL to reflect macro\n changes\n * docs: update scripted dashboard for v5\n * docs: update scripted dashboard for v5\n * docs: update organisation http api\n * docs: upd windows installation\n * notifications: send notifications synchronous\n * notifications: read without tran, write with tran\n * registry: adds more comments\n * registry: adds comments to interfaces\n * changelog: update\n * changelog: update\n * changelog: add notes about closing #12438\n * alerting: only log when screenshot been uploaded\n * fixes typos\n * Reverted yarn.lock to master\n * Used PostgreSQL TSDB as a model the set up the\n __timeFilter, __timeFrom, and __timeTo macros for\n Microsoft SQL and MySQL\n * changelog: add notes about closing #12444\n * Revert 'auth proxy: use real ip when validating white\n listed ip's'\n * changelog: adds note for #11892\n * changelog: add notes about closing #12430\n * fix footer css issue\n * Karma to Jest: 3 test files (#12414)\n * fix: log close/flush was done too early, before server\n shutdown log message was called, fixes #12438\n * react panels wip\n * Karma to Jest: value_select_dropdown (#12435)\n * support passing api token in Basic auth password (#12416)\n * Add disabled styles for checked checkbox (#12422)\n * changelog: add notes about closing #11920\n * changelog: add notes about closing #11920\n * changelog: update\n * docs: upd what's new in v5.2\n * docs: update index with link to what's new in 5.2 instead\n of 5.0\n * wip: react panels editor mode, tabs working\n * changelog: add notes about closing #12385\n * react panels wip\n * feat: panels v2, metrics-tab loading\n * docs: upd what's new in v5.2\n * docs: upd what's new in v5.2\n * login: fix layout issues\n * build: yarn should be included out of the box on circle ci\n * notifier: handle known error first\n * ensure that if the dasboardID is negative, it will not\n bypass the checking of the right (#12398)\n * changelog: add notes about closing #11968\n * Webpack 4 (WIP) (#12098)\n * Make pre/postfix coloring checkboxes inactive when gauge\n is active\n * removes unused return object\n * handle 'dn' ldap attribute more gracefully (#12385)\n * Update ROADMAP.md\n * Fix typo\n * Switched MySQL and MSSQL macros for timeFilter and related\n to use BETWEEN and calculate UNIX time server side instead\n of database side. Fixes #11618 #11619\n * docs: update installation instructions\n * routing: raise panic if duplicate routes are added\n * routing: allows routes to be added to existing groups\n * changelog: add notes about closing #11868\n * enhance error message if phantomjs executable is not found\n * fix: annnotation api & sql issue\n * changelog: add notes about closing #12248\n * set correct text in drop down when variable is present in\n url using key/values\n * Light improve of massive delete annotation api (#12390)\n * Fix 12248\n * Fixing wrong /public path, relative to the webpack.dev\n script, that would avoid webpack from cleaning previous\n builds. (#12351)\n * changelog: add notes about closing #12383\n * changelog: adds note about closing #12313\n * Return a 404 when deleting a datasource through the API if\n it doesn't exist and add a test for it to confirm #12313\n * Set $rootScope in DatasourceSrv\n * Add options to colorize prefix and postfix in singlestat\n * devenv: adds dashboard with multiple rows\n * changelog: adds note about closing #10971\n * Pass configured/auth headers to a Datasource.\n * Karma to Jest: history_ctrl. .gitingore: .vs/\n * changelog: add notes about closing #12359\n * build: fix signing of multiple rpm packages\n * docs: what's new in v5.2 and docker installation updates\n * tech: adds comments about route register code\n * changelog: add notes about closing issue\n * Karma to Jest: history_ctrl. Update version: ts-jest\n * changelog: add notes about 5.2.0-beta2\n * changelog: add notes about closing #12240\n * changelog: add notes about closing #12256\n * changelog: add notes about closing #11792\n * changelog: add notes about closing #12315\n * dashboard: fix drop down links\n * wip: react panels, query editor loading from react\n PanelEditor view\n * fix regressions after save modal changes of not storing\n time and variables per default\n * wip: react panel minor progrss\n * updated\n * Karma to Jest: history_srv (#12341)\n * react panels minor progress\n * make sure to process panels in collapsed rows when\n exporting dashboard\n * changelog: add notes about closing #3132\n * docs: update installation instructions\n * react panel minor progress\n * ldap: add note about config in Grafana\n * ldap: add note to dockerfile\n * changelog: add notes about closing #12343\n * docs: Plugin review guidelines and datasource auth pages\n * remove unused argument in default scenario of guardian\n test\n * fix: fixed permission issue with api key with viewer role\n in dashboards with default permissions\n * wip: react panel makeover mini progress\n * Karma to Jest: time_srv (#12303)\n * Karma to Jest: team_details_ctrl (#12321)\n * Fix error in InfluxDB query\n * expose functions to use sessions\n * changelog: adds note about closing #11607\n * test commit for checking github permissions\n * changelog: add notes about closing #12278\n * changelog: add notes about closing #11076\n * snapshot: copy correct props when creating a snapshot\n * added comment to reason the id tag\n * set current org when adding/removing user to org\n * changelog: add notes about closing #10707\n * Include the vendor directory when copying source in to\n Docker (#12305)\n * changelog: adds note about closing #12199\n * adds tests for journaling sql operations\n * use epoch to compare timestamp\n * adds inTransactionCtx that calls inTransactionWithRetryCtx\n * merge create user handlers\n * transactions: start sessions and transactions at the same\n place\n * adds info about eval/reminder interval\n * tests for defaultShouldNotify\n * cloudwatch: handle invalid time range\n * notifications: make journaling ctx aware\n * make sure to use real ip when validating white listed ip's\n * Adding Cloudwatch AWS/AppSync metrics and dimensions\n * notifications: gather actions in one transaction\n * changelog: adds note about closing #12286\n * sql: adds tests for InTransaction\n * bus: noop should still execute fn\n * removes unused code\n * bus: Dispatch now passes empty ctx if handler require it\n * bus: dont start transaction when creating session\n * bus: dont mix ctx/classic handlers\n * bus: DispatchCtx can now invoke any handler\n * refactoring: renamed AddCtxHandler to AddHandlerCtx PR\n #12203\n * refactoring: transaction manager PR #12203\n * fixes typo in code\n * check if admin exists or create one in one transaction\n * replace begin/end with wrapper function\n * bus: support multiple dispatch in one transaction\n * docs: adds info about grafana-dev container\n * changelog: add notes about closing #12282\n * Added Litre/min and milliLitre/min in Flow (#12282)\n * remove papaparse dependency\n * list name is deleteDatasources, not delete_datasources\n * remove internal influx ifql datasource\n * Document the endpoint for deleting an org\n * tests: rewrite into table tests\n * influxdb: adds mode func to backend\n * Fix queryfield wrapper css\n * Fix Queryfield metrics field missing\n * batch DOM reads from query field typeahead\n * hint support for typeahead\n * Make suggestions an object\n * Trigger typeahead on Ctrl-Space\n * refactor Explore query field\n * changelog: add notes about closing #11484\n * changelog: add notes about closing #11233\n * Remove import\n * Fix PR feedback\n * Removed papaparse from external plugin exports\n * Karma to Jest: query_builder\n * dsproxy: move http client variable back\n * Karma to Jest: threshold_mapper\n * Expose react and slate to external plugins\n * Karma to Jest: threshold_manager\n * Karma to Jest: query_def, index_pattern\n * Remove import\n * Karma to Jest: elastic_response\n * changelog: notes about closing #12189\n * #11607 corrected file cleanup test\n * #11607 removed unnecessary conversion (from gometalinter)\n * Improve test readability\n * #11607 fixed formatting\n * #11607 Cleanup time of temporary files is now configurable\n * moved link icon in panel header\n * Karma to Jest: playlist_edit_ctrl\n * Karma to Jest: exporter\n * Update graphite.md\n * changelog: add notes about closing #10796\n * added id tag to Panels for html bookmarking on longer\n Dashboards\n * dashboard import to folder: minor fixes\n * Docs: output location from build script\n * Correct Provisioning documentation link\n * dsproxy: allow multiple access tokens per datasource\n * Mock core in jest-setup\n * Docs: Update Build from Source\n * Convert tests from Karma to Jest\n * changelog: add notes about closing #11963\n * save-modal save button (#12047)\n * Karma to Jest: graph-tooltip\n * removed QueryOptionsCtrl references\n * update latest.json to 5.1.3\n * use ng-if\n * hot-fix ifql testdatasource()\n * triggers grafana-docker master build\n * changed som variables to values so it's the same for dark\n and light theme, added special styling for login text,\n link and input (#12196)\n * mattn/go-sqlite3 v1.6.0 to v1.7.0\n * changelog: add notes about closing #11074\n * fixed so panel title doesn't wrap and (#12142)\n * graph: fix legend decimals precision calculation\n * Use Passive eventListener for 'wheel' (#12106)\n * removes more unused code\n * removes unused code\n * nicer collapsed row behaviour (#12186)\n * remove DashboardRowCtrl (#12187)\n * add panel on enter\n * autoFocus the search filter\n * adds missing return statement\n * Fix typo: eleasticsearch -> elasticsearch (#12184)\n * Annotations support for ifql datasource\n * dashboard: improve import UX for non-editor users\n * Template variable support for ifql datasource\n * Use cut to trim down the SHA1.\n * show import menu in sidenav, dashboard search and manage\n dashboards page\n * Fix metrics panel test by adding config mock\n * Respect explore settings in config ini\n * Add .html to webpack.hot resolve extensions\n * Version the tarball uploaded to s3 and tell the next step\n about it.\n * dashboard: import into current folder from manage folder\n page\n * dashboard: add Import button to manage page\n * dashboard: import to folder\n * Query helpers for IFQL datasource\n * alerting: fixes broken table rename\n * docs: docker secrets available in v5.2.0\n * Remove round-robin urls in ifql DS\n * IFQL range variable expansion\n * alerting: renames journal table to\n alert_notification_journal\n * alerting: move queries from evalcontext to notifier base\n * alerting: invert sendOnce to sendReminder\n * changelog: add notes about closing #11657\n * alerting: remove zero units from duration\n * alerting: only check frequency when not send once\n * always show server admin link in sidenav if grafana admin\n * update google auth config docs\n * changelog: add notes about closing #11525\n * fix: fixed problem with expanding access mode help in ds\n settings\n * dep: use master branch for plugin model\n * alerting: fixes invalid error handling\n * fixed so default is all and general only show dashboards\n * changelog: add notes about closing #11882\n * added s to folderId in params\n * renamed variable in tests\n * added comment, variableChange -> variableValueChange\n * added a test\n * added if to check if new variable has been added\n * Gravatar fallback does not respect 'AppSubUrl'-setting\n (#12149)\n * change admin password after first login\n * changelog: adds note about closing #11958\n * revert: reverted singlestat panel position change PR\n #12004\n * Revert 'provisioning: turn relative symlinked path into\n absolut paths'\n * provisioning: turn relative symlinked path into absolut\n paths\n * changelog: adds note about closing #11670\n * elasticsearch: sort bucket keys to fix issue wth response\n parser tests\n * docs: what's new in v5.2\n * made folder text smaller\n * Implement code review changes\n * Bug fix for repeated alerting even on OK state and add\n notification_journal cleanup when alert resolves\n * Fix tests\n * Fix multiple bugs\n * Revert changes post code review and move them to\n notification page\n * Feature for repeated alerting in grafana\n * InfluxDB IFQL datasource\n * changelog: add notes about closing #11167\n * docs: docker secrets support. (#12141)\n * alerting: show alerts for user with Viewer role\n * datasource: added option no-direct-access to\n ds-http-settings diretive, closes #12138\n * provisioning: adds fallback if evalsymlink/abs fails\n * tests: uses different paths depending on os\n * renames intervalSeconds to updateIntervalSeconds\n * changelog: add notes about closing #5893\n * removed italic\n * changelog: add notes about closing #11500, #8168, #6541\n * Alert panel filters (#11712)\n * docs: update alerting docs with alerting support for\n elasticsearch\n * added span with folder title that is shown for recently\n and starred, created a new class for folder title\n * provisioning: makes the interval for polling for changes\n configurable\n * provisioning: only update dashboard if hash of json\n changed\n * remove dead code\n * elasticsearch: minor refactor\n * changelog: update\n * changelog: add notes about closing #10748, #8805\n * save modal ux improvements (#11822)\n * changelog: add notes about closing #11515\n * provisioning: only provision if json file is newer then db\n * Guard /explore by editor role on the backend\n * make path absolute before following symlink\n * provisioning: follow symlinked folders\n * test: fixes broken test on windows\n * changelog: add notes about closing #11771\n * changelog: add notes about closing #11971\n * Fix singlestat threshold tooltip (#12109)\n * build: only runs db related tests on db.\n * build: integration testing postegres on ci.\n * build: mysql integration testing on ci.\n * Fix karma tests that rely on MetricsPanelCtrl\n * changelog: Second epochs are now correctly converted to\n ms.\n * Fix panel menu test\n * Restrict Explore UI to Editor and Admin roles\n * Fix CSS to hide grid controls in fullscreen/low-activity\n views\n * changelog: add notes about closing #11645\n * Support InfluxDB count distinct aggregation (#11658)\n * provisioning: enable relative path's\n * changelog: note about closing #11858\n * devenv: improve readme\n * provisioning: place testfiles within testdata folder\n * changelog: add notes about closing #11494\n * Add new regions to handleGetRegions function (#12082)\n * PR: minor change to PR #12004 before merge\n * fix: refactoring PR #11996 and fixing issue #11551\n 16706hashkey in json editors\n * devenv: script for setting up default datasources\n * tech: updated react-grid-layout to latest official\n release, closes #12100\n * Fix cache busting for systemjs imports for plugins\n * devenv: scripts for generating many unique dashboards\n * docker: new block for elasticsearch6\n * changelog: add notes about closing #12087\n * sql: seconds epochs are now correctly converted to ms.\n * add validation of uid when importing dashboards\n * fix: add track by name in annotation list to avoid\n $$hashKey in json\n * changelog: adds note about closing #9703\n * go fmt fixes\n * configure proxy environments for Transport property\n * Show create dashboard link if at least editor in one\n folder\n * graphite: avoid dtracing headers in direct mode\n * Fix sourcemaps for webpack hot config\n * return better error message when err is ErrSmtpNotEnabled\n * elasticsearch: handle if alert query contains template\n variable\n * changelog: adds note about closing #9847\n * Sparklines should scale to the data range (#12010)\n * Split webpack dev config into dev and hot\n * Upgrade webpack loaders (#12081)\n * pin versions of xorm to resolve sql tests\n * build: fixes broken path for bra run\n * use sql builder for the get system stats sql query\n * fix directly specified variable rendering\n * remove unused function renderAdhocFilters\n * send param in callback for get-param-options\n * Fix #9847 Add a generic signout_redirect_url to enable\n oauth logout\n * make separator configurable\n * fix error message\n * Changed Prometheus interval-alignment to cover whole panel\n range\n * alerting: refactor tests\n * add usage stats for datasource access mode\n * Review feedback (heading, typos)\n * add additional usage stats metrics\n * add tests for sending usage stats\n * Integrated dark theme for explore UI\n * elasticsearch: adds some more/better debug logging to\n client\n * changelog: fix broken link to contributor\n * changelog: adds note about closing #11788\n * The old code for centering removed\n * Backend image rendering as plugin (#11966)\n * Fix typo in README.md\n * build: updates publisher to support arm archs for deb and\n rpm.\n * Explore split view\n * Fixed custom dates for react timepicker\n * Explore: Design integration\n * Explore: time selector\n * Fix dashboard snapshot deletion (#12025)\n * fix names of foreign arch packages\n * elasticsearch: handle NaN values\n * elasticsearch: metric and pipeline agg setting json\n encoding fix\n * elasticsearch: query interval override fix\n * elasticsearch: default interval fix\n * Document table row merge for multiple queries\n * elasticsearch: pipeline aggregation fix for json encoding\n * build: always build for all platforms.\n * fix: remove deadcode to make gometalinter happy\n * elasticsearch: refactor query handling and use new es\n simple client\n * elasticsearch: new simple client for communicating with\n elasticsearch\n * elasticsearch: refactor and cleanup\n * build: removes deploy from nightly while testing it.\n * update provisioning.md\n * Fix ResponseParser for InfluxDB to return only string\n values\n * Conditionally select a field to return in ResponseParser\n for InfluxDB\n * build: clean up the workflow filters.\n * Revert 'Conditionally select a field to return in\n ResponseParser for InfluxDB'\n * Revert 'Fix ResponseParser for InfluxDB to return only\n string values'\n * Revert 'move queryTimeout option to common setting'\n * move queryTimeout option to common setting\n * add query timeout option for Prometheus\n * build: crosscompilation for nightlies and releases.\n * set style for registered query components\n * make param wrapper configurable\n * fix metric column when using group by\n * separate label in template from type\n * use sql part component\n * use sql part component\n * add sql_part component\n * Singlestat value: vertical alignment fix\n * Added Swiss franc currency\n * quote column name in buildValueQuery\n * return values quotes for suggestions in where expression\n * test: moves test files to testdata folder\n * build: downloads and bundles phantomjs for darwin and\n windows.\n * build: publisher updated to support more architectures and\n OSs.\n * build: saves artifacts with the build\n * build: crossplatform build with packages.\n * build: script for tagging and pushing a release\n * codespell: fixes\n * fix: fixed some minor startup logging issues\n * Sqlstore refactor (#11908)\n * Adds constant description for units\n * test: increase expire time to avoid tz issues in tests\n * explore: fixes #11953\n * migrated files to ts, removed unused functions from\n lodash_extended\n * docs: installation pages for 5.1.3\n * changelog: add note for #11830\n * legend: fixes Firefox/baron scroll bug\n * wrote classes\n * migrated jquery.flot.events to ts\n * use canMakeEditable\n * allow to add annotation for non editable dashboard\n * scroll: temporary fix for double scrollbar issue\n * backend plugins: log an error if parsing meta field failed\n * backend plugins: expose meta field\n * fixes following first code review\n * add useful note to alerting api docs\n * improve alerting api docs sample responses\n * Prometheus step alignment: shift interval only on jitter\n * Use babel and hot loader only in yarn start\n * docs: removes notes about beeing introduced in 5.0\n * lock caniuse-db version to resolve phantomjs rendering\n issue\n * Update dashboard_permissions.md\n * move database-specific code into dialects (#11884)\n * refactor: tracing service refactoring (#11907)\n * fix typo in getLdapAttrN (#11898)\n * docs: update installation instructions targeting v5.1.2\n stable\n * changelog: add notes about closing #11862, #11656\n * Fix dependencies on Node v10\n * Update dashboard.md\n * changelog: add notes about closing #10338\n * Phantom render.js is incorrectly retrieving number of\n active panels (#11100)\n * singlestat: render time of last point based on dashboard\n timezone (#11425)\n * Fix for #10078: symbol '&' is not escaped (#10137)\n * Add alpha color channel support for graph bars (#10956)\n * interpolate 'field' again in Elasticsearch terms queries\n (#10026)\n * Templating : return __empty__ value when all value return\n nothing to prevent elasticsearch syntaxe error (#9701)\n * http_server: All files in public/build have now a huge\n max-age (#11536)\n * fix: ldap unit test\n * only error log when err is not nil\n * rename alerting engine to service\n * case-insensitive LDAP group comparison (#9926)\n * changelog: add notes about closing #11813\n * docs: updated changelog\n * fix XSS vulnerabilities in dashboard links (#11813)\n * PR: ux changes to #11528\n * renames alerting engine to match other services\n * allow analytics.js to be cached, enable anonymizeIP\n setting (#11656)\n * Revert 'Add baron scrollbar to a node managed by gafana\n (#11850)'\n * decrease length of auth_id column in user_auth table\n * fixed svg background (#11848)\n * Add baron scrollbar to a node managed by gafana (#11850)\n * Fix CSS asset loading for yarn start (HMR) (#11855)\n * fix: fixed gometalinter issues with Discord PR\n * docs: update installation instructions targeting v5.1.1\n stable\n * fix root_url in docs & comments (#11819)\n * changelog: 5.1.1 update\n * fix: loading of css url (images/fonts)\n * Support for local Docker builds\n * Update ROADMAP.md\n * support additional fields in authproxy (#11661)\n * better handling for special chars in db config (#11662)\n * Fix/improved csv output (#11740)\n * Update ROADMAP.md\n * Update ROADMAP.md\n * Update ROADMAP.md\n * Remove preceding `/` from public JS path (#11804)\n * Add panel scrolling docs (#11826)\n * escape pipe symbol same way as in templating docs\n * changelog: add notes about closing #11616\n * added left:unset to counter left:0 in recent react-select\n release\n * fixed text color in light theme\n * changelog: add notes about closing #11800\n * test if default variable interpolation is effective when\n no specific format is specified\n * changelog: notes about closing #11690\n * changelog: add notes for ##11754, #11758, #11710\n * scroll: remove firefox scrollbars\n * Add missing items to Gopkg.lock\n * pipe escape try #3\n * use ascii code for pipe symbol to not mess up markdown\n table\n * try to fix table\n * dont shadow format passed in as function parameter\n * fix: removed manully added http server from inject graph\n as it is now a self registered service\n * fix: removed unused channel\n * fix: comment spell fix\n * fix: fixed race condition between http.Server\n ListenAndServe & Shutdown, now service crash during\n startup correctly closes http server every time\n * refactoring: lots of refactoring around server shutdown\n flows, making sure process is terminated when background\n service has crashed\n * refactor: provisioning service refactoring\n * Metrics package now follows new service interface &\n registration (#11787)\n * Revert 'Opportunities to unindent code (unindent)'\n * scroll: fix scrolling on mobile Chrome (#11710)\n * changelog: add notes about closing #11625\n * remove jest it.only to not skip important tests\n * fixed so all buttons are styled not just small ones, fixes\n #11616\n * --amend\n * fix: improved handling of http server shutdown\n * add test for prometheus table column title\n * Fix url encoding, expand template vars, fix TS hacks\n * Explore: Add entry to panel menu to jump to Explore\n * changelog: notes about closing #11498\n * Initial Baby Step to refactoring settings from global vars\n to instance (#11777)\n * table: fix for padding\n * graph histogram: fix invisible highest value bucket\n * dashboard: show save as button if can edit and has edit\n permission to folders\n * new property for current user indicating if edit\n permissions in folders\n * increase length of auth_id column in user_auth table\n * fix dropdown typeahead issue\n * Use opportunities to unindent code (unindent)\n * Outdent code after if block that ends with return (golint)\n * Remove redundancy in variable declarations (golint)\n * fix: minor fix to plugin service shut down flow\n * appveyor: uppercase the C drive in go path\n * docs: further documents changes to the docker image.\n (#11763)\n * disable ent build to avoid slowing down build speed\n * Explore: add support for multiple queries\n * Fixed settings default and explore path\n * Refactoring PluginManager to be a self registering service\n (#11755)\n * fix: removed log calls used while troubleshooting\n * refactor: refactoring notification service to use new\n service registry hooks\n * Enable Grafana extensions at build time. (#11752)\n * revert renaming of unit key ppm\n * fix to match table column name and order\n * Import and typescript fixups\n * Settings to enable Explore UI\n * tech: removes unused code\n * Explore WIP\n * add deadcode linter to circleci\n * pkg: fix deadcode issues\n * build.go: fix deadcode issues\n * docs: update current version to 5.1\n * docs: update installation instructions targeting v5.1.0\n stable\n * changelog: update for v5.1.0\n * fix so that google analytics script are cached\n * prometheus: convert metric find query tests to jest\n * prometheus: fix variable query to fallback correctly to\n series query\n * removed height 100% from panel-container to fix ie11 panel\n edit mode\n * replaced border hack carot with fontawesome carot fixes\n #11677\n * dev: Mac compatible prometheus block. (#11718)\n * mssql: fix value columns conversion to float when using\n timeseries query\n * postgres: fix value columns conversion to float when using\n timeseries query\n * mysql: fix value columns conversion to float when using\n timeseries query\n * sql datasource: extract common logic for converting value\n column to float\n * added pointer to show more, reset values on new query\n * docs: add known issues section for mssql documentation\n * force GET for metadataRequests, w/ test\n * Renamed helperRequest and removed positional args\n * Move function calls w/ side-effects to componentDidMount\n * changed test name and dashboardMock code\n * fixed test\n * add ineffassign to circleci gometalinter check\n * pkg/components: fix ineffassign issues\n * pkg/cmd: fix ineffassign issues\n * pkg/log: fix ineffassign issues\n * pkg/services: fix ineffassign issues\n * removed import config\n * fixed so user who can edit dashboard can edit row, fixes\n #11466\n * Fixes signing of packages.\n * db: fix failing user auth tests for postgres\n * changed rps to reqps\n * bump version\n * added button to show more preview values for variables,\n button runs a function that increases options limit, fixes\n #11508\n * Added requests/sec(throughput)\n * use inherited property from api when rendering permissions\n * return inherited property for permissions\n * pkg/tsdb: fix ineffassign isues\n * fix circleci gometalinter test\n * Sort results from GetDashboardTags\n * Add silent option to backend requests\n * docs: escape asterisk in Graphite docs\n * docs: disable quoting option for MSSQL\n * docs: fix example for graphite tag query\n * docs: spelling\n * docs: add missing backtick for mysql/postgres\n * docs: fixes for table in variable docs\n * build: fixes release deploy\n * changelog: adds releaste date for 5.1.0-beta1\n * graphite: convert ds test to jest\n * build: removes gometalinter\n * cli: adds os and arch headers\n * slightly better example\n * adjust timeFilter, timeFrom and timeTo macro examples\n * docs: what's new improvements\n * docs: what's new improvements\n * docs: what's new\n * docs: fix typos\n * docs: what's new\n * docs: whats new\n * docs: more info prometheus heapmap to whats new\n * docs: improve what's new in v5.1\n * docs: what's new in v5.1 draft\n * Add weback-dev-server with hot/hmr support\n * build: only lint the pkg folder\n * changelog: adds note about closing #11476\n * dev: only build server with bra run\n * add gometalinter to circleci\n * comment unused struct fields\n * remove unused variables detected by varcheck\n * fix typo\n * docs: describes variable formatting options\n * docs: graphite template variables for tag queries\n * docs: describes new variable formatting syntax\n * changelog: notes about closing #10427\n * move jest test file to specs\n * make add panel panel scrollbar adjust when panel/dashboard\n grid are resized\n * style: code simplifications\n * build: introduce -dev flag optimal for building in\n development mode\n * changed copied message and added forced render for width\n change\n * removed padding and moved carrot\n * changelog: adds note about closing #11613 and #11602\n * cleanup, make sure users are always synced with ldap\n * Specify expected encoding for access/secret key\n * make sure user's default org is kept up to date\n * fix: sign in link should have target self to trigger full\n page reload, fixes #11626\n * codespell: exclude by words instead of files\n * remove old comment\n * org role sync tests\n * refactor authproxy & ldap integration, address comments\n * pass DN in ldap test\n * tests for user auth module\n * fix ldap test\n * restructure GetUserByAuthInfo\n * error handling\n * use Result in GetAuthInfoQuery\n * switch to passing ReqContext as a property\n * cleanup\n * switch to Result\n * update auth proxy\n * fixes\n * fix tests\n * shared library for managing external user accounts\n * fix: Label font weight should be semi bold, fixes #11629\n * docs: typos\n * graphite: adds tests for tags and tag_values functions\n * docs: update provisioning documentation\n * changelog: notes about closing #10883\n * changelog: adds note for #11553\n * dev: only build server with bra run\n * changelog: adds note for #11173\n * added forceupdate to grid item so addpanel items rezie\n instantly, renamed function to copyPanel, fixed panel\n items height issue\n * revert changes of add panel button to require save\n permission\n * changelog: fix typo\n * changelog: notes about closing #11572\n * Fix issues with metric reporting (#11518)\n * changelog: notes about closing #10747\n * fix: Row state is now ignored when looking for dashboard\n changes (#11608)\n * disable codecov comments\n * add some more sort order asserts for permissions store\n tests\n * Revert 'build: remove code cov'\n * Revert 'removes codecov from frontend tests'\n * docs: update postgres macro functions documentation\n * tsdb: update query and annotation editor help texts for\n postgres\n * changelog: notes about closing #11578\n * calculate datetime for timeFrom and timeTo macro in go\n * set default for sslmode to verify-full in postgres\n datasource editor (#11615)\n * add some more sort order asserts for permissions store\n tests\n * Use sort.Strings() (gosimple)\n * Remove unused return value assignment (gosimple)\n * Remove unnecessary fmt.Sprintf() calls (gosimple)\n * Merge variable declaration with assignment (gosimple)\n * Use fmt.Errorf() (gosimple)\n * Simplify make() (gosimple)\n * Use raw strings to avoid double escapes (gosimple)\n * Simplify if expression (gosimple)\n * Simplify comparison to bool constant (gosimple)\n * Simplify error returns (gosimple)\n * Remove redundant break statements (gosimple)\n * fix unconvert issues\n * variable: fix binding bug after ts conversion\n * add GetFromAsTimeUTC and GetToAsTimeUTC and use them in\n timeFilter macro\n * fix merge conflict\n * remove changes to module.ts from this branch\n * migrated dropdown-typeahead to ts (#11499)\n * changelog: adds note for #11556\n * changelog: adds note for #11133\n * dashboard: better size and alignment of settings icons\n * bra should use the proper build script\n * moved version in help menu to top\n * docs: elasticsearch and influxdb docs for group by time\n interval option (#11609)\n * changelog: improved docker image\n * docs: new docker image in Grafana 5.1.0.\n * added fix for test\n * addeds test for sort order\n * Show Grafana version and build in Help menu\n * changlelog: notes about closing issues/pr's\n * sqlds: fix text in comments for tests\n * add codespell to circleci\n * removes codecov from front-end tests\n * wip: writing tests for permission sorting\n * changelog: adds note about closing #11228\n * remove postgresversion and convert unix timestamp in go\n * Support deleting empty playlist\n * Grafana-CLI: mention the plugins directory is not writable\n on failure\n * make timefilter macro aware of pg version\n * add postgresVersion to postgres settings\n * changelog: adds note for #11530\n * Documentation spelling fix\n * docs: fix codespell issues\n * public: fix codespell issues\n * conf: fix codespell issues\n * blocks: fix codespell issues\n * CHANGELOG.md: fix codespell issues\n * scripts: fix codespell issues\n * pkg: fix codespell issues\n * provisioned dashboard validation should be made when\n importing a dashboard\n * provisioned dashboard validation should not be made from\n provisioning service\n * remove comment/unused variable\n * docs: improves provisoning example for postgres\n * docs: add mssql provisioning example\n * docs: improves provisoning example for each datasource\n * ordered user orgs alphabeticaly fixes #11556\n * permissions sorting fixed + icon same size as avatrs\n * docs: update mssql with azure sql database support\n * changelog: adds note for #11569\n * docs: update default annotation limit when querying api\n * Mention the ?inactive parameter in the docs\n * Add another URL param «inactive» which works like «kiosk»\n but with title\n * tsdb: remove unnecessary type casts in sql data sources\n macro engines\n * tsdb: sql data sources should handle time ranges before\n epoch start correctly\n * change annotation limit from 10 to 100\n * remove mistakenly added styles\n * fix right side legend rendering in phantomjs\n * scrollbar: fix so no overflow for legend under graph\n * build: remove code cov\n * scrollbar: fixes continuation scrolling for iOS\n * added styling to fontawesome icons so they have same size\n as the other icons\n * Improve wording\n * Add minimal IAM policy example for CloudWatch data source\n * PR comments\n * docs: fix typo of default port for mssql\n * minor scrollbar fixes\n * scrollbar: remove unused div\n * dashboard: show baron scrollbar in dashboard panel when\n mouse is over\n * fix so that page scrollbars can be scrolled by keyboard on\n page load\n * fix so that dash list panel are rendered correctly\n * panel: add baron scroller to correct element\n * Windows build updated to go1.10.\n * scrollbar: use native scroll for page\n * converted functions to arrow functions\n * folders: fix permissions in folder picker component\n * permission: fix user with org viewer save/move permissions\n * alerting: handle invalid json format\n * docker: change mysql container so that it uses utc\n * mysql: use a datetime column with microsecond precision in\n test\n * tsdb: improved floating point support when converting sql\n time column to epoch (ms)\n * added @ngInject\n * provisioning: dont override permissions\n * provisioning: simplify db query\n * mssql: fix precision for time columns in time series query\n mode\n * postgres: support running multiple postgres integration\n tests\n * postgres: fix precision for time columns in time series\n query mode\n * mysql: fix precision for time columns in time series query\n mode\n * mysql: mysql tests should use a db server with UTC\n * provisioning: fixes broken tests\n * tsdb: add support for more data types when converting sql\n time column to epoch (ms)\n * provisioning: check provisiong before saveCmd\n * provisioning: fixes typo\n * provisioning: adds error handling\n * added @ngInject\n * playlist: add missing nginject attribute\n * Update annotations.md to contain correct annotations api\n path\n * removed console.log\n * docs: update after #11531\n * docs: improves provisoning example text\n * fix test\n * convert graphite epoch to ms\n * skip mssql fix\n * add mssql and mysql\n * don't convert to uint64\n * scrollbar: fix phantomjs rendering error\n * prevent angular from evaluating {{hostname}} in tooltip\n (#11514)\n * using millis for annotations too\n * data source: rename direct/proxy access mode in data\n source settings\n * Fix ResponseParser for InfluxDB to return only string\n values\n * Conditionally select a field to return in ResponseParser\n for InfluxDB\n * docs: fixes typo\n * docs: updated debian distro in install docs to stretch,\n closes #11527\n * Revert files\n * Fix after merge\n * Make dashboard JSON editable\n * guardian: when updating permissions should verify existing\n permissions\n * api: allow authenticated users to search current org users\n and teams\n * css: quick fix after IE11 changes\n * scrollbar: fix add panel height bug\n * scrollbar: styles cleanup\n * migrating to ts\n * fixed sidemenu icon issue created by earlier pr\n * added icons for viewer and editor, fixed add permission\n team avatar\n * singlestat: Fix optimization in\n setTableColumnToSensibleDefault\n * influxdb: Check before assuming first column to be 'time'\n * provisioning: fix tests for save provisioned dashboard\n modal\n * provisioning: ux fixes when saving provisioned dashboards\n * graphite: use a query when testing data source\n * migrated metric_segment to ts\n * scrollbar: fix search scroller in mobile view\n * scrollbar: fix graph legend height\n * changelog: adds note for #11165\n * migrated dash_class to ts\n * migrated segment_srv to ts\n * removed indent for manage dashboards\n * scrollbar: fix potential memory leaks in event handlers\n * skip migration if it is a big number\n * Use curly brackets around hyperlink help text #11478\n (#11479)\n * scrollbar: fix dashboard width updating for different\n modes\n * scrollbar: remove perfect-scrollbar and add baron to\n package list\n * scrollbar: fix dashboard width bug\n * scrollbar: fix 'legendScrollbar.destroy is not a function'\n error\n * Alerting: Fixing mobile notifications in Microsoft Teams\n * created closeDropdown function, renamed appevent, added\n second appevent for open timepicker\n * permissions: return user and team avatar in folder\n permissions api\n * permission: generate team avatar url with default\n * migrated playlist-routes to ts\n * migrated last all.js to ts\n * scrollbar: fix Firefox scroll position restore\n * Notes for closing #7119\n * changelog: adds note for #11128\n * variables: adds test for variable sorting\n * Add case-insensitive sort for variables.\n * graphite: fixes #11434\n * settings: fixes test\n * changed from margin to padding\n * fixes for avatar on adding permission and size for gicon\n * scrollbar: fix side menu on mobile devices\n * changed variable for tabbed close btn hover, and changed\n text-strong variable for lighttheme, removed commented out\n variable\n * mssql: typos in help sections\n * docs: spelling\n * added if to onAppevent, renamed appevent, add appevent to\n applyCustom and setRelativeFilter\n * Webpack Grafana plugin template project to links (#11457)\n * scrollbar: fix Firefox issue (white stripe on the right of\n scrollbar)\n * scrollbar: fix legend rendering issues\n * Initially move to baron scrollbar\n * rm panel.type constrain from threshold_mapper.ts (#11448)\n * No need for node_modules/bin in npm run-script (#11449)\n * changelog: adds note about closing #11555\n * add article\n * fix some typos\n * docker: add users and groups to ldap block\n * timepicker now closes without exiting edit/view mode,\n close order: modal, timepicker, view\n * migrated graph_tooltip to ts\n * started migration to ts\n * Fix #10555 #6888 Better escape for Prometheus variables\n * bounnd the esc key to exit timepicker\n * print to stderr since logger might not exist\n * settings: return error instead of ignoring it\n * docs: adds provisioning examples for all datasources\n * Fixed typo in upgrading.md\n * docs: rpm install page - update to centos 7\n * docs: install pages for v5.0.4\n * removed padding for icons and added margin\n * changelog: another update for v5.0.4\n * changelog: update for v5.0.4\n * changelog: adds note about closing issues\n * fixed graphpanel editmode and custom width for right side\n legend for IE11\n * alerting: bad default state for notifiers\n * Clarified formatting multiple values doc\n * Add Google Hangouts Chat notifier.\n * dashboard: allow alerts to be saved for new/provisioned\n dashboards\n * add response_parser test\n * add fallback for gravatar in org/admin view\n * tech: migrates to none deprecated mail lib\n * docs: not about email notifications and local img store\n * alert: fixes broken link back to grafana\n * docs: update table plugin documentation with value/range\n to text mapping\n * cleanup and add more test\n * table panel: additional fixes for value to text mapping\n * add value to text mapping\n * provisioning: better description for provisioned save\n modal\n * dashboards: reject updates of provisioned dashboards\n * notes about closing #9210\n * fixed alignment in search + fixed issue ie popup\n * changelog: adds note about closing #11102\n * sidemenu fix for internet explorer 11, changed icon\n width/height to pixels and added height to logo\n * docs: prometheus ds, remove 'new in v4.3' note\n * remove categories from queryPart\n * fix a terms bug and add test\n * remove unused import\n * handle aggregate functions more generic\n * Add new currency - Czech koruna\n * docs: update heatmap and prometheus docs, #10009\n * provisioning: improve UX when saving provisioned\n dashboards\n * styled login page for ie11\n * - pipeline aggs support - add some test\n * support non-nested menu entries\n * provisioning: removes id from dashboard.json\n * Handle Interval Date Format similar to the JS variant\n https://github.com/grafana/grafana/pull/10343/commits/7e14e272fa37df5b4d412c16845d1e525711f726\n * Use net.SplitHostPort to support IPv6\n * add missing word to graphite docs\n * set right series name\n * Missed the 'p d' hint in the popup-menu\n * Add hints for the 'pd' Duplicate Panel command from PR\n #11264\n * remove README changes\n * finished CODING PHASE 1\n * wip\n * notes about closing #11306\n * cleanup\n * changelog: unix socket permissions\n * Adjust permissions of unix socket\n * docs: fix typos\n * docs: update postgres, mysql and mssql documentation\n * docs: update graph panel documentation\n * docs: tweaks\n * changelog: adds note about closing #5855\n * remove dashboardId check... i can't figure out how the\n tests work\n * get circle to run tests again\n * add dashboardId to test\n * remove api tests\n * fix operator\n * remove constraint from sqlstore\n * move dashboard error to API (not sql)\n * legend: small refactoring\n * changelog: adds note about closing #11278\n * docs: spelling\n * docs: add intro paragraph to provisioning page\n * Cleanup CircleCI V2 Conversion\n * Make golint happier\n * dooh\n * update the updated column!\n * using circle as my tester\n * using circle as my tester\n * adding tests, but they arent running locally\n * changelog: notes for #1271 and #2740\n * graph: minor fixes to y-axes alignment feature\n * added save icon to save buttons\n * removed trash can icon from save buttons\n * mysql: skip tests by default\n * Return actual user ID in UserProfileDTO\n * convert epoch to milliseconds\n * adding updated column\n * mssql: update query editor help\n * mysql: fix precision for the time column in\n table/annotation query mode\n * postgres: fix precision for the time column in\n table/annotation query mode\n * mssql: fix precision for the time column in\n table/annotation query mode\n * mssql: remove UTC conversion in macro functions\n * mssql: fix timeGroup macro so that it properly creates\n correct groups\n * small screen legend right also work like legend under in\n render + set scrollbar to undefined in destroyScrollbar so\n it doesnt become disabled when toggeling between right and\n under\n * dashboard version cleanup: more tests and refactor\n * Make golint happier\n * fixed so legend right works like legend under on small\n screens\n * adding created column\n * Alerting: move getNewState to EvalContext\n * minor refactor of dashboard version cleanup\n * refactor: dashboard version cleanup\n * limit number of rows deleted by dashboard version cleanup\n * fix dashboard version cleanup on large datasets\n * docs: add variable regex examples (#11327)\n * graphite: adds more traces for alerting\n * sql datasource: extract common logic for converting time\n column to epoch time in ms\n * docs: details about provisioning elastic\n * update email default year and name\n * dataproxy: adds dashboardid and panelid as tags\n * Alerting: Add retry mechanism and its unitests\n * docs: spelling\n * snapshot: fix legend rendering bug\n * session: update defaults for ConnMaxLifetime\n * snapshots: removes errors for empty values in ViewStore\n * Allocated to a separate alignment block. Replaced the\n attribute of the second axis by the attribute of the axes.\n * Expose option to disable snippets\n * changed var to const, changed to string interpolation\n * mssql: adds test for time should be ms in table mode\n * Remove unused kibana images\n * changed var to const\n * changelog: adds note about closing #11114 & #11086\n * mssql: convert tests to jest\n * mssql: fix precision for time column in table mode\n * converted file to ts\n * changelog: notes about #10093 and #11298\n * dashboard: fix phantomjs panel rendering in collapsed row\n * Fixed unit test.\n * Changed the way this feature was activated. And changed\n tolltip.\n * Added validation of input parameters.\n * converted file to ts\n * docs: update using mssql in grafana\n * fix: only run gofmt on pkg directory omitting vendor\n directory\n * fix: dep ensure. now without gofmt on ventor directory\n * mssql: add integration test to verify stored procedure\n usage\n * mssql: encrypt password in database\n * mssql: remove dynamic construction of metric column and\n other columns\n * docker: pin microsoft/mssql-server-linux to 2017-CU4 tag\n * docs: improve guide for high availability\n * fix: only run gofmt on pkg directory omitting vendor\n directory\n * test\n * mssql: cleanup and minor refactor\n * mssql: allow host without port and fallback to default\n port 1433\n * docker: update test dashboard for mssql tests\n * mssql: cleanup and minor changes\n * Missed thanks in changelog\n * Adds pagerduty api update to changelog.\n * mssql: update readme\n * mssql: update test dashboard\n * docs: Using Microsoft SQL Server in Grafana\n * mssql: remove logos for now\n * docs: mssql documentation will go into another branch\n targeting next minor version\n * Updated roadmap for 5.1\n * Minor format changes\n * Changed Swedish and Icelandic currency\n * fix failed tests for dashboard view state\n * dashboard: fix rendering link to panel in collapsed row\n * docs: update install docs for 5.0.3\n * changelog: 5.0.3\n * mssql: add alternative logo without text\n * mssql: strip inkscape from logo\n * mssql: minor improvements of query editor help\n * mssql: skip rendering of mssql logos until we have a valid\n logo\n * docker: add test dashboard for mssql tests based on test\n data generated by integration test\n * mssql: additional integration tests\n * mssql: support money, smallmoney and decimal data types\n * mssql: update plugin.json, added description and name\n MSSQL -> Microsft SQL Server\n * added indent to dashboards inside folder in search\n dropdown, and added indent to dashboard icon in search\n item\n * session: fork Macaron mysql session middleware\n * database: expose SetConnMaxLifetime as config setting\n * database: fixes after xorm update\n * database: update xorm to v0.6.4 and xorm core to v0.5.7\n * prometheus editor: variable autocomplete support (PR\n #9988)\n * made a keyboard shortcut to duplicate panel\n * docs: update mssql documentation\n * mssql: disable mssql integration tests per default\n * mssql: timeGroup fill support added.\n * mssql: add timeGroup integration test\n * alertmanager: /Creating/Sending/\n * mssql: adds fill to timeGroup macro.\n * allow any database for influx proxy\n * remove\n * alertmanager: handle resolved alerts, nodata, and\n execution errors\n * add regex search of username and password in urls, which\n are replaced by strings.Replace\n * notitfiers: avoid ShouldNotify duplication\n * fix merge error\n * alertmanager: if there are no alerts to send, do nothing\n * docker: change port for prom random data scrape target\n * mssql datasource: wip\n * docker: mssql and mssql tests blocks with common build\n context\n * fix lint problems\n * fix lint problems\n * fix lint problems\n * read aggregate functions from database\n * add buildAggregateQuery\n * Update README.md\n * docker: fake-data-gen:latest updates\n * Resolved conflict\n * docs: more details about slack notifier\n * properly handle IN queries\n * docs: updates latest release for docs\n * changelog: improve description of closed issues\n * renderer: avoid redirect render requests\n * changelog: adds notes about 5.0.2\n * dashboard: fix import dashboard with alert rule\n * middleware: recover and retry on session start\n * alerting: supports extracting alerts from collapsed panels\n * join multivalue variables with ,\n * revert special handling for IN\n * put values for IN in parens\n * dont quote where constraints\n * docker: add test dashboard for mssql for visualizing data\n generated by fake-data-gen\n * add regex operators\n * mssql datasource: support for timeGroup macro function\n * Added Kilopascals(kPa) under pressure\n * Added W/m2(energy) and l/h(flow)\n * folders: should be possible to browse folder using only\n uid\n * remove unused setting\n * dashboards: should be possible to browse dashboard using\n only uid\n * mssql datasource: additional data type tests\n * docker: add mssql block\n * Added icon for iOS web app\n * changelog: add note about closing #8151\n * alerting: adds back the link to grafana.\n * Fix CI\n * Modify Grafana Pagerduty notifier to use Pagerduty API V2\n * graph: minor refactor of histogram mode PR #8613\n * changelog: adds note about closing #11220\n * style: dont expose func outside package\n * teams: removes quota on route\n * changelog: adds note about closing #11143\n * changelog: adds note about closing #11107\n * Second to HH:mm:ss formatter (#11105)\n * changelog: adds note about closing #10009\n * docs: fix an outdated link to Prometheus's doc\n * Added concentration units and 'Normal cubic metre'\n * Corrected work for graphs created before this feature.\n * Replaced array values to variables yLeft and yRight for\n easy reading code.\n * Rename test file according module name.\n * prometheus: fix bug introduced by #9859 (httpMethod is\n undefined)\n * prometheus: add tests for heatmap mode\n * prometheus: datasource refactor\n * Fix urls in plugin update_checker logs\n * changelog: adds note about closing #10029\n * docs: add team api link from http api reference page\n * added test for sorting and filtering\n * changelog: adds note about closing #9859\n * Refactoring\n * set default value of httpMethod\n * support POST for query and query_range\n * cleanup where segment handling\n * remove limit\n * handle variables in where constraints\n * Adding Timeticks unit\n * properly quote where constraint parts\n * quote schema and table\n * docs: minor fix for dashboard http api documentation\n * build: cleanup\n * build: removes custom work dir in deploy.\n * build: upgrades build pipeline from CircleCI 1.0 -> 2.0\n (#11162)\n * github: test new issue tempalte\n * dev: update dev prometheus2 to 2.2.0\n * changelog: adds note about closing #10925\n * docs: update latest to 5.0.1\n * push 5.0.1 to package cloud\n * changelog: adds release date for 5.0.1\n * bump master build to 5.1.0-pre1\n * move quota to dedicated service\n * Fix indent\n * docker: add prometheus/example-golang-random to\n docker-compose blocks\n * Fix the code to match the documentation.\n * rename Context to ReqContext\n * fix, set default highResolution setting\n * changelog: note about closing #11145 and #11127\n * docs: adds note about closing #10632\n * removes commented code\n * removes unused variables\n * upgrade to go 1.10\n * alerting: fixes validation error when saving alerts in\n dash\n * add csv templating format\n * docs: note about closing #11046\n * docs: adds note about #10942\n * heatmap: add explanation of Time series buckets mode\n * Add color to prefix and postfix in singlestat\n * replaced if with classNames\n * heatmap: able to set upper/lower bucket bound manually\n * heatmap: refactor\n * added media breakpoint to legend-right\n * Documentation: path '~/go' to '$GOPATH'\n * Update ROADMAP.md\n * add panel to list now copy, started on jest\n * docs: improves docs for alert rules\n * heatmap: fix Y axis and tooltip decimals and units issues\n * Append test to check not zero level.\n * Add bs-tooltip to Y-Align element.\n * move Context and session out of middleware\n * only use jwt token if it contains an email address\n * scrolling: faster wheelspeed\n * docs: improves provisioning description\n * changelog: adds note about closing #10975.\n * changelog: adds note about closing #7107\n * changelog: adds note about closing #11103\n * changed background for mobile menu background on light\n theme, increased font size in and added border-right in\n menu\n * heatmap: fix tooltip count and bucket bound format\n * alerting: Limits telegram captions to 200 chars.\n * changelog: note about closing #11097\n * hide row actions for viewers\n * fixes invalid link to profile pic when gravatar is\n disabled\n * changelog: adds note about closing #11016\n * fix: restores white resize handle for panels, fixes #11103\n * changelog: adds note about closing #11063\n * fix typo in heatmap rendering.ts (#11101)\n * docs: add v5.1 to versions\n * docs: fill for mysql/postgres\n * ignore iteration property when checking for unsaved\n changes\n * changelog: notes for #11055 and #9487\n * use net/url to generate postgres connection url\n * made drop-menu into link\n * heatmap: sort series before converting to heatmap.\n * use metricColumn in query builder\n * set rawSQL when rendering query builder query\n * fix group by column\n * clean up aggregation functions\n * fix variable interpolation\n * rename field to column\n * Fix Prometheus 2.0 stats (#11048)\n * docs: removed beta notice in whats new article\n * remove spaces around arguments of macros\n * remove spaces around arguments before calling macro\n expansion\n * docs: update current version to 5.0\n * docs: update install pages for v5.0.0\n * update version to 5.0.1-pre1\n * changelog update for 5.0.0 stable\n * Add metrics that triggered alert to description\n * build: updated version\n * heatmap: hide unused Y axis controls for tsbuckets mode\n * heatmap: format numeric tick labels in tsbuckets mode\n * heatmap: add rendering tests for tsbuckets mode\n * Fix Github OAuth not working with private Organizations\n (#11028)\n * login: hide sign up if configured so. Fixes #11041\n * permissions: fix validation of permissions before update\n * dashboard: add permission check for diff api route\n * permissions: remove client validation and handle server\n validation\n * dashboards: change dashboard/folder permission error\n messages\n * dashboards: handle new guardian error responses and update\n tests\n * folders: handle new guardian error responses and add tests\n * dashboards: don't allow override of permissions with a\n lower precedence\n * Alerting: Fix OK state doesn't show up in Microsoft Teams\n (#11032)\n * grammar fix, add dir, and remove redundant info\n * heatmap: use series names as top or bottom bounds, depends\n of datasource\n * heatmap: refactor\n * heatmap: add few tests for histogram converter\n * fix: changed react-grid-layout to use grafana fork to a\n commit before\n https://github.com/STRML/react-grid-layout/commit/15503084fb7b0af826427c8c0706901e5745a39f,\n this fixes all the panel movement bugs, fixes #10831\n * heatmap: fix Y bucket size calculation for 'tsbuckets'\n mode\n * gave scroll-canvas-dashboard 100% height in kiosk-mode,\n fixes #11010 (#11017)\n * docs: update to install pages for beta5\n * changelog: update for v5.0.0-beta5\n * added admin icon and permission member\n definitions(role,team,user)\n * build: update to version 5.0.0-beta5\n * [doc] Fix extra alerting options in\n installation->configuration\n * yarn: update lock file with tarball change\n * build: use tarball instead of git commit for tether drop\n * improve maintainability\n * docs: fix type in datasource http api\n * docs: adds accesskey and secret to securejsonfields\n * support [[variable:type]] syntax\n * offer template variables for tags\n * feature for issue #9911\n * Added radiation units\n * docs: update shortcut docs\n * dashboards: remove non-supported keyboard shortcuts for\n delete/collapse row\n * dashboards: fix keyboard shortcut for expand/collapse rows\n * dashboards: fix keyboard shortcut for remove panel\n * snapshots: fixes cleanup of old snapshots\n * docs: minor folder http api changes\n * Update ROADMAP.md\n * Update ROADMAP.md\n * heatmap: fix bucket labels shift\n * heatmap tooltip: fix bucket bounds for 'tsbuckets' mode\n * heatmap tooltip: fix count decimals\n * heatmap: fix tooltip histogram for 'tsbuckets' mode\n * heatmap: use buckets from histogram with 'tsbuckets' mode\n * dashboards: created/updated and createdby/updatedby should\n be set before save\n * Add unit tests.\n * Refactoring code\n * Fix save as dashboard from folder to General folder\n (#10988)\n * changed name of copy tab to paste\n * added no copies div\n * prometheus: tests for heatmap format\n * dashboards: cleanup\n * folders: use folder api for retrieving folder\n * dashboards: fix batch dashboard/folder delete response\n * fix: elasticsearch terms size now allows custom values\n again, fixes #10124\n * added highlighter, fixed setState and changed back flex to\n spacea around\n * folders: fix create folder in folder picker\n * added tabs and searchfilter to addpanel, fixes#10427\n * snapshots: change to snapshot list query\n * prometheus: initial heatmap support\n * docs: update http api index\n * docs: dashboard and folder permissions http api\n * docs: folder http api\n * permissions: use updated api endpoint for dashboard\n permissions\n * fix typos in api, acl to permissions\n * folders: rename folder_acl in api to folder_permission\n * dashboards: change api route for dashboard permissions\n * folders: fix typo\n * folders: extend folder service tests\n * dev: docker-compose setup for prom2.\n * folders: folder api tests\n * fix: scrollbar position now to max right pos, fixes #10982\n * Fixes for heatmap panel in Grafana 5 (#10973)\n * docs: updated cloudwatch docs add dimension filter as a\n option for dimension_values query.\n * folders: folder permissions api tests\n * dashboards: make fake dashboard guardian available to\n other packages\n * fix: added new known data source plugins, and minor\n migration fix for v1 dashboards\n * folders: folder permission api routes\n * folders: fix api error mapping\n * folders: basic integration tests for folders\n * folders: use new folder service in folder api routes\n * folders: new folder service for managing folders\n * dashboards: created date should be set when creating a\n folder/dashboard\n * fix: fixes to signup flow, fixes #9816\n * Refactoring code. Change Y-Zero to Y-Level.\n * fix: fixed github oauth login with allowed orgs filter,\n fixes #10964, reverts #10851\n * fix: plugin dashboard did not get plugin id after import\n * feat(ldap): Allow use of DN in user attribute filter\n (#3132)\n * added scroll to org list modal (#10960)\n * added an if to check for null to sort null as 0 (#10961)\n * fix: alert history list now shows on graphs with manually\n added annotation events, fixes #10968\n * provisioning: dont ignore sample yaml files\n * docs: updated for changelog and docs with beta4\n * Correct typo in DashboardInputMissingError\n * build: updated build version to v5.0-beta4\n * graph: added 0.5 point radius option\n * Shouldn't be able to overwrite a dashboard if you don't\n have permissions (#10900)\n * influxdb: escape backslashes in tag values (for alerting)\n * [elasticsearch] Allow nested fields for annotation source\n (#10936)\n * changed m3 and dm3 to fixedUnit, fixes #10920 (#10944)\n * migrate panels in collapsed rows (#10948)\n * Share zero between Y axis.\n * Add hook processRange to flot plugin.\n * login: migration fix.\n * login: uses epochs for login throtting.\n * fix: fixed redirect after save, fixes #10946\n * fix: esc key now closes panel edit/view mode as usual,\n fixes #10945\n * docs: updated to beta3\n * alerts: refactoring tests\n * alerting: pausing alerts modifies updated.\n * test: added integration test for #10941\n * refactoring: alert rule query refactoring (#10941)\n * updated version to v5-beta3\n * db: reduce name column size in dashboard_provisoning\n * teams: adds some validation to the API\n * docs: status code changes for Team API\n * docker: add test dashboards for mysql and postgres for\n visualizing data generated by fake-data-gen\n * cli: download latest dependency by default\n * Revert 'removes dependencies install for plugins'\n * migrate minSpan (#10924)\n * Close modal with esc (#10929)\n * repeat row: fix panels placement bug (#10932)\n * docs: team API. Closes #10832\n * Update sample.ini\n * Update ldap.toml\n * Update ldap.md\n * Minor typo fix\n * plugins: update meta data for all core plugins\n * alert notifiers: better error messages.\n * support cloudwatch high resolution query\n * chore: adds comment for exported function\n * updated download links\n * docs: Updated changelog\n * updated package.json version\n * fix: more phantomjs fixes\n * fix: refactoring #10922\n * Fix phantomjs legend rendering issue, #10526\n * mark redirect_to cookie as http only\n * dashboard: whitelist allowed chars for uid\n * updates readmes for mysql and postgres (#10913)\n * Set default threshold axis to 'left' for panels created\n before this feature.\n * provisioning: adds setting to disable dashboard deletes\n * tech: dont print error message on 500 page\n * removes dependencies install for plugins\n * tests: makes sure we all migrations are working\n * provisioning: uses unix epoch timestamps. (#10907)\n * improve error message for invalid/unknown datatypes\n (#10834)\n * add AWS/States Rekognition (#10890)\n * Dashboard acl query fixes (#10909)\n * wip: dashboard acl ux2, #10747\n * permissions: refactoring of acl api and query\n * bug: return correct err message\n * initial fixes for dashboard permission acl list query,\n fixes #10864\n * provisioing: always skip sample.yaml files\n * provisioning: handle nil configs\n * sql: removes locale from test to mirror prod.\n * adds tests that validate that updated is correct\n * provisioning: code formating\n * provisioning: adds logs about deprecated config format\n * provisioning: support camelcase for dashboards configs\n * provisioning: support camcelCase provisioning files\n * API Integration Tests via jest (#10899)\n * ux: refactoring #10884\n * Invalid url in docs\n * Duplicate typo fixed\n * add 13-24 for min width (#10891)\n * sass/base: import from current dir in _fonts.scss (#10894)\n * fix: removed logging\n * fix: sql search permissions filter fix\n * provisioning: Warns the user when uid or title is re-used.\n (#10892)\n * Minor typo fix\n * new dashboard is now hidden from viewer, fixes #10815\n (#10854)\n * fixed bg gradient, fixes #10869 (#10875)\n * login: fix broken reset password form (#10881)\n * moved div in code\n * added buttons and text to empty dashboard list\n * docs: spelling.\n * docs: update dashboard permissions http api docs\n * Cloudwatch dimension_values add dimension filter.\n * dashboard: always make sure dashboard exist in dashboard\n acl http api (#10856)\n * Fix #10823 (#10851)\n * provisioning: better variable naming\n * ux: minor tweak to grid resize handle color\n * teams: use orgId in all team and team member operations\n (#10862)\n * permissions: might have a solution for search\n * Fixes for graphite tags editor (#10861)\n * fix: clear items list before fetching permissions list\n * provisioning: dont return error unless you want to cancel\n all operations\n * provisioning: createWalkFn doesnt have to be attached to\n the filereader anymore\n * provisioning: update sample config to use path\n * provisioning: avoid caching and use updated field from db\n * update README.md regarding running tests\n * update README.md regarding running tests\n * docs: minor docs update\n * docs: updated docs landing page\n * provisioning: delete dashboards before insert/update\n * user picker should only include users from current org\n (#10845)\n * Correct code style.\n * db test: allow use of env variable for database engine to\n run tests for\n * dashboard and folder search with permissions\n * provisioning: fixed bug in saving dashboards.\n * dashboard: fix delete of folder from folder settings tab.\n * append test to thresholds on right axis\n * Update logic for create/update dashboard, validation and\n plugin dashboard links (#10809)\n * added width class to add member choose (#10835)\n * add where constraint handling\n * add query_builder\n * docs: adds uid to dashboard.json reference docs\n * Fix #7107\n * fix: initial fix for #10822\n * fix: folder redirect after creation\n * dashfolders: fixes #10820\n * fix: fixed bug with redirect after new dashboard saved,\n related to buggy angularjs location path/url and base\n href, fixes #10817\n * docs: describe uid for dashboard provisioning\n * fix: removed old shortcut that does not exist, fixes\n #10802\n * build: fixed recovery test\n * fix: css fix, found a better way to fix #10772\n * fix: minor build fix\n * fix: error handling now displays page correctly, fixes\n #10777\n * heatmap tooltip: minor refactor\n * fix: changed dashboard title length to match slug length,\n will fix mysql index size issue, fixes #10779\n * docs: added graphite section\n * docs: minor update\n * graph panel: fix csv export (series as col) (#10769)\n * org-switcher: should redirect to home page (#10782)\n * embedded panel: hide side menu during init (#10788)\n * docs: update http api for api index, dashboard, folder and\n dashboard search\n * scroll: css for #10722\n * dashlist: scroll fix when no header\n * docs: video fix\n * Update changelog with deprecation notes of http api\n * redirect 'permission denied' requests to '/' (#10773)\n * docs: fix\n * scroll: use wheelpropagation. Ref #10772\n * docs: update dashboard model, persistent urls and api\n changes in what's new in v5\n * docs: fix download link\n * docs: minor update\n * docs: adds http api dashboard permissions\n * docs: updated whats new\n * docs: update dashboard model, new url structure and api\n changes in what's new in v5\n * build: updated publish script\n * docs: update docs with download links\n * build: increased version to beta1\n * fix: fixed permission list caching issue, fixes #10750\n * Stale permissions (#10768)\n * adds unique index for org_id+folder_id+title on dashboards\n (#10766)\n * docs: fix links in HTTP API Reference page\n * dashboards: render correct link for folder when searching\n for dashboards (#10763)\n * fix panel menu caret placement (#10759)\n * permissions: fix link to folder from permissions list\n * dashboard: fix loading of snapshot and scripted dashboard\n (#10755)\n * changes to new urlformat for home dashboard (#10738)\n * fix: alert list links did not work, changed dashboardUri\n to Url, this is breaking api change in alert api (#10756)\n * docs: typos and wording.\n * ux: hide sidemenu in kiosk mode, and while playlist is\n playing, fixes #107402\n * dashboard: fix redirect of legacy dashboard url's\n * make metricColumn functional\n * add metric column selector\n * docs: add spaces to timeseries example\n * fix: restored tags to search\n * fix frontend validation for creating new folder and import\n dashboard (#10737)\n * #10724 Fix whitespace\n * poc: merge sync\n * #10724 Fix finding the x bucket\n * docs: dashboard provisioning\n * handle new error message\n * removes uid when using 'save as'\n * dashfolders: rename Root folder to General. Closes #10692\n * Light theme icon color (#10730)\n * folders: use new folder api in frontend\n * folders: changes and updated tests after merging\n permissions and new url structure\n * folders: rename api files\n * dashboards: revert logic of returning 404 in dashboard api\n if it's a folder for now\n * db: fix failing integration tests for mysql and postgresql\n * docs: add examples for dashboard permissions\n * Update search datasource by name API path\n * fix for dashboard/folder url's when having a sub path in\n root_url config\n * ux: added max width to dashboard settings views\n * add gofmt as precommit hook\n * dashfolders: adds test for permission store\n * dashfolders: adds permission modal to dashboard settings\n * register handler for get dashboards by slug\n * make it easier for dashboards to generate ur;\n * changes dashboard url in alertlist\n * alert: use new url format\n * Improve logging in the phantomjs renderer (#10697)\n * route params from angular to view store should be updated\n on routeChangeSuccess\n * repeat panel: process repeats when row is expanding\n (#10712)\n * folders: changes needed due to merge\n * docs: removed section with session table sql, that is not\n needed anymore\n * ux: fix for responsive breakpoints and solo mode showing\n sidemenu\n * support multiple histogram series\n * docs: moved whats new article to master\n * ux: fixed issue with zoom on graph caused scroll, fixes\n #10696\n * dashboard: refactor logic for retrieving url for\n folder/dashboard\n * update text, fix a few typos\n * dashboards: update dashboard/folder url if browser url is\n not the same as from backend\n * dashboards: when restoring a dashboard to an older\n version, set current uid\n * dashboards: fix updating folder so that correct url is\n returned\n * dashboards: remove slug property in dashboard search\n responses\n * folders: change the front end route for browsing folders\n * dashboards: add validation to delete dashboard by slug\n * dashboards: new route for deleting dashboards by uid\n * plugins: return table with empty rows array insteaf of nil\n * retry uid generation\n * fix: use replace when redirecting to new url\n * ux: Change input width of UserPicker and TeamPicker in\n AddPermissions component #10676\n * viewstore: fix test after merge\n * tests: Add TeamPicker test and update\n TeamPicker/UserPicker snapshots so they match the latest\n classNames update #10676\n * dashfolders: fix for folder picker\n * ux: Add an optional className to the UserPicker and\n TeamPicker #10676\n * dashfolders: fixes #10671. Allow Editors default access to\n Root.\n * docs: added redirect from old provision page, #10691\n * tests: Move tests from Permissions to AddPermissions\n #10676\n * tests: Update tests in PermissionsStore and rem out the\n Permissions-tests for now #10676\n * docs: added permissions page and updated folder docs\n * dashfolders: text change\n * dashfolders: special case for folders in root\n * add groupby to querybuilder remove unused aggregations\n * gofmt...\n * spelling\n * Verifies requirement of id in dashboards.\n * ux: POC - Update 'Add permissions' design and add a fancy\n animation #10676\n * ensure dashboard title is unique in folder\n * docs: Remove obsolete Ansible rule (#10689)\n * docs: Fix outdated provisioning link (#10690)\n * Renamed 'Period' to 'Min period' in CloudWatch query\n editor (#10665)\n * created cta-bg variable and changed bg color on light\n theme (#10693)\n * Repeat panels when row is expanding (#10679)\n * dashboards: make scripted dashboards work using the old\n legacy urls\n * dashboards: redirect from old url used to load dashboard\n to new url\n * docs: updated whats new\n * playlist: fixes #10254\n * dashboards: add new default frontend route for rendering a\n dashboard panel\n * alerting: small refactoring\n * dashfolders: POC - Use separate component for 'Add\n permission' #10676\n * removes uniqnes check on slug when saving dashboards\n * Drops unique index orgid_slug from dashboards.\n * plugins: return empty tables array insteaf of nil\n * url: fix for boolean querystring parameters\n * moved icon (#10681)\n * docs: updated whatsnew\n * docs: progress on whats new article\n * docs: updated version\n * docs: fixed order of sidemenu\n * test: fixes failing test in go1.10\n * dashboards: fix links to recently viewed and starred\n dashboards\n * dashboards: use new *url* prop from dashboard search for\n linking to dashboards\n * dashboards: when saving dashboard redirect if url changes\n * dashboards: add new default frontend route for loading a\n dashboard\n * dashboards: return url in response to save dashboard.\n #7883\n * dashboards: ensure that uid is returned from\n getSaveModelClone\n * alertlist: disable pause button when user does not have\n permission\n * dashboards: revert adding api for retrieving uid by slug\n * util: remove retry logic in shortid_generator\n * dashboards: add url property to dashboard meta and search\n api responses\n * dashboards: api for retrieving uid by slug. #7883\n * dashboards: add support for retrieving a dashboard by uid\n * dashboard: change unique index for uid to include org_id\n * dashboards: return uid in response to creating/updating a\n dashboard. #7883\n * dashboards: extract short uid generator to util package.\n #7883\n * dashboard: fix failing test. #7883\n * dashboard: generate and include uid in dashboard model.\n #7883\n * db: add migrations for creating a unique index for uid.\n #7883\n * db: add migrations for generating uid for existing\n dashboards. #7883\n * db: add new column uid to the dashboard table. #7883\n * enhance render function\n * add postgres_query.ts\n * moved icon (#10681)\n * dashfolders: remove inline styles\n * fixed width of images and removed gifs and fixed text a\n bit in search\n * docs: fixed order of sidemenu\n * test: fixes failing test in go1.10\n * new gifs for search\n * docs: adds more info about whats new in v5\n * docs: updated versions.json\n * alerting: add permission check in api for pausing alerts\n * query builder changes\n * dashfolders: adds comment for dashboard api tests\n * more query builder components\n * docs: added versions file\n * dashfolders: adds comment for dashboard acl test\n * api: extract api test code to common_test.go\n * repeat panel: minor refactor\n * WIP: folder api. #10630\n * changed img for shortcuts\n * replaced img in export_import and sharing\n * Fix horizontal panel repeat. Fix #10672.\n * dashfolders: Add min-width to align icons in permissions\n list and some margin between icon and text #10275\n * ui: Fix Firefox align issue in dropdowns #10527 (#10662)\n * fix: InfluxDB Query Editor and selecting template variable\n in where clause caused issue, fixes #10402, fixes #10663\n * dashfolders: link to folder for inherited permissions\n * test: Update Tooltip test to check for className support\n * changed img-link for timerange imgs and some text\n * fix: remove repeated rows when repeat was disabled.\n (#10653)\n * test: Update Popover test to check for className support\n * dashfolders: Get rid of unused import #10275\n * dashfolders: Use grafana's question mark instead of FA's\n and use the react tooltip instead of angular's #10275\n * dashfolders: Add className to Tooltip component\n * fix: don't show manually hidden sidemenu after view mode\n toggle (#10659)\n * dashfolders: css class as parameter for Picker\n * dashfolders: select with description for permissions\n * fix: show sidebar after mouse wheel scrolling (#10657)\n * fix: tweak of PR #10635\n * ux: minor tweak of #10634\n * plugins: only set error if errorstring is not empty\n * Revert 'Fix typeahead to avoid generating new backend\n request on each keypress. (#10596)'\n * call render in query\n * dashfolders: add help popover. Add folder title for\n inherited permissions\n * dashfolders: use react component for dashboard permissions\n * added hash rate units for monitoring mining processes\n * replaced input with gf-form-dropdown\n * reverted media queries\n * graphite: fix nested alerting queries (#10633)\n * fix for sm\n * added media break for md and sm\n * dashfolders: add disabled Admin permission to list\n * tech: upgrade to golang 1.9.3\n * Locks down prometheus1 to v1.8.2 in live-test.\n * fix typo in parameter. (#10613)\n * dashfolders: autosave permissions on change (remove update\n button)\n * changelog: move all 4.7 changes into 5.0\n * changed some img-links, updated text for annotated img,\n more work on whats new in v5.0\n * changelog: be more explicit about backwards compatibility\n * WIP: Protect against brute force (frequent) login attempts\n (#10031)\n * dashfolders: fix tests for ViewStore after merge\n * Fix typeahead to avoid generating new backend request on\n each keypress. (#10596)\n * fix vertical panel repeat (#10619)\n * graph: fix series sorting issue (#10617)\n * dashfolders: New snapshot since we changed from\n defaultValue to value per latest React documentation\n #10275\n * refactor: Replace _.find with Array.prototype.find()\n * dashfolders: Convert mobx observable to js objects and\n remove the observer() since we want to use the component\n outside the react/mobx world #10275\n * dashfolders: Clean up more variables and move newType,\n aclTypes and permissionOptions to the store #10275\n * dashfolders: Remove variables not used and pass in the\n real dashboardId #10275\n * dashfolders: Remove those 2-line-components from\n PageHeader to make it easier to read and make sure\n components listening to the mobx state are wrapped with\n observer() #10275\n * dashfolders: Add support for breadcrumbs in NavStore\n #10275\n * dashfolders: Rename UserPicker folder => Picker. Inject\n the permission-store in the FolderPermissions-container\n instead of the Permissions component, add the\n PermissionsStore to the RootStore and and the\n error-message to the Permissions-store #10275\n * dashfolders: Add Permissions information box #10275\n * dashfolders: Fix page max width #10275\n * dashfolders: Update jest tests with backendSrv #10275\n * dashfolders: Add a Team Picker component and use it on the\n dashboard permissions page #10275\n * dashfolders: Working user picker on the dashboard\n permissions page #10275\n * dashfolders: Send down backendSrv to the react components\n #10275\n * dashfolders: Re-use the API of the angular user picker\n instead, which is reusable #10275\n * provisioning: delete dashboards from db when file is\n missing\n * dashfolders: Remove the PermissionsInner-strategy since we\n have a container for this route now #10275\n * dashfolders: Permissions are injected via MST so it needs\n to be defined as optional #10275\n * dashfolders: Add FolderPermissions container and make sure\n isFolder is passed to PermissionsStore #10275\n * dashfolders: Always get dashboardid and backendsrv from\n props #10275\n * dashfolders: Rem code to avoid tests to fail #10275\n * wip: More on the permissions. Left are team picker and\n user picker, tests and error messages #10275\n * fix: mobx-react-devtools is a dev dependancy #10275\n * dashfolder: wip: More wip on acl.html2permissions.tsx\n #10275\n * dashfolders: wip - Move Permissions into React #10275\n * variables: lint fix\n * variables: fix when datasource returns error\n * fixes broken phantomjs rendering\n * added varibale to table hover, lightend colors for table\n light theme, fixes #10609 (#10611)\n * added whats new v5, changed link in notifications, removed\n row from getting started\n * fixes minor typo\n * provsioning: dont stop grafana due to missing\n * Disable prefix and postfix font size when gauge mode is\n enabled (#10573)\n * docs: improve docs for image uploaders\n * cfg: remove local as default image uploader\n * docs: Add haproxy example for running behind reverse-proxy\n * provisioning: enables title changes for dashboards\n * Cloudwatch: add support for multi instances (#10570)\n * ux: minor change, added import dashboard link to dashboard\n search side view\n * tech: adds/removes in vendor folder according to dep\n 0.4.0.\n * docker: sync local time and timezone to mysql_tests block\n * dashfolder: fix for sqlite test\n * dashfolder: fix for mysql test\n * mysql: pin the mysql dependency\n * tech: ignore /public and /node_modules\n * tech: ignore /data folder for dep\n * docs: first draft of dashboard folders docs\n * plugins: map error property on query result\n * stats: send amount of stars as stats\n * tech: avoid using deprecated functions\n * style: minor code style changes\n * dashboards: save provisioning meta data\n * provisioing: add lookup table provisioned dashboards\n * refactor: minor css class naming change of #10505\n * refactor: minor refactoring of PR #10560\n * cloudwatch: fix ebs_volume_ids by create a client-session\n before call ec2:DescribeInstances. (#10566)\n * docker: use mysql and postgres from latest fake-data-gen\n * Update OpsGenie Notifier to support different api domains.\n * 10583 panel resize icon fix (#10585)\n * dashboards: Fix issue with first click when expanding\n folder in search\n * cfg: adds info about local img uploader to docs\n * docs: adds info about local img uploader\n * changelog: adds note about closing #6922\n * changelog: note about closing #9664\n * changelog: adds note about closing #9770\n * start query builder ui\n * Disable instead of hide mode options when line/points is\n unchecked\n * dashfolders: show folders use can save to in picker\n * dashfolders: fix bug in save as modal\n * Add lumens unit\n * add docs for configuring OAuth with Auth0 and Azure AD\n * install dep instead of govendor on setup\n * remove unused code from vendor\n * migrate from govendor to dep\n * fix: cloudwatch corrected error handling so original error\n is not thrown away\n * go fmt\n * support for decoding JWT id tokens\n * ds: updated ds nav\n * feat: ds edit fix\n * feat: ds edit nav\n * Generic Oauth Support for ADFS (#9242)\n * Recommend a limit on database query\n * Adjusted the border color on the buttons in dashboard nav,\n fixed alert email text area width, fixed padding-top issue\n on dashboard settings aside\n * dashfolders: stop user locking themselves out of a folder\n * dashfolders: add breadcrumbs to NavStore\n * codestyle: extract code into methods\n * mysql: convert numbers to text for annotation tooltip\n * mysql: update to use ColumnTypes interface in new version\n * mysql: update mysql driver to latest master\n * gofmt my dear friend\n * ux: updated react-layout-grid\n * plugins: send secureJsonData unencrypted\n * Make file_reader follow symlinks\n * dashboards as cfg: property path replaces folder\n * moves datasource plugin model to\n grafana/grafana_plugin_model\n * Update package.json\n * fix: fixed build issue\n * fix: multi valued query variables did not work correctly,\n fixes #10539\n * move graphite /functions parsing into gfunc.ts\n * remove duplicate sass rules\n * fix tests & some display issues\n * fix: graphite func editor fixes, this component is messy\n and ugly as hell\n * fix: minor fixes\n * fix: restored previous behavior of form_dropdown, this\n fixes all my observerd bugs with the dropdown behavior\n * fix: query editor needs to wait for function definitions\n to load\n * fix issue with metric find & functions being loaded\n multiple times\n * interpolate variables in tags & values during autocomplete\n * fix typo\n * update rst2html\n * fix line length, run jscs & jshint in precommit\n * function description formatting\n * tooltips for function definitions\n * support specifying tag_values('<tag>') as graphite\n template query\n * use typeahead value in graphite find requests\n * send prefix when auto-completing tags\n * add button to trigger evaluation of tag queries\n * sync function categories with graphite-web\n * work on tag dropdown behavior\n * support for loading function definitions from graphite\n * Update building_from_source.md\n * Update README.md\n * Update default_task.js\n * Clearer naming for dashboard provisioning config.\n * ux: dashboard nav and settings tweaks\n * Tag filters in search (#10521)\n * fix: save as enter key now works and folder selection also\n works, fixes #10464\n * use context over golang.org/x/net/context\n * docs: small update to IIS proxy docs\n * added a variable for grid color and if statment to switch\n colors, fixes #10509 (#10517)\n * dashboards as cfg: logs error when trying to import\n dashboard with id\n * code style fixes\n * dashfolders: bugfix after rename\n * dashfolders: bugfix after rename\n * Adds Table in backend datasource contract.\n * fix: share snapshot controller was missing ngInject\n comment, fixes #10511\n * Use URLEncoding instead of StdEncoding to be sure state\n value will be corectly decoded (#10512)\n * Optimize metrics and notifications docs\n * Optimize cli and provisioning docs\n * imguploader: Add support for new internal image store\n (#6922)\n * docs: Guide for IIS reverse proxy\n * changelog: adds note about closing #9645\n * telegram: Send notifications with an inline image\n * telegram: Switch to using multipart form rather than JSON\n as a body\n * telegram: Fix a typo in variable name\n * dashfolder: refactor breadcrumbs in PageHeader\n * dashfolders: convert folder settings to React\n * Adds Tables types to protobuf\n * fix: alert list pause/start toggle was not working\n properly\n * fix template variable selector overlap by the panel\n (#10493)\n * Review tsdb protobuf contract\n * dashboard: Close/hide 'Add Panel' before saving a\n dashboard (#10482)\n * supports windows compatible plugin binaries\n * fix: removed unused param\n * Fix variables values passing when both repeat rows and\n panels is used (#10488)\n * moved angular-mocks out of dependencies\n * ux: minor change to alert list page\n * ux: minor word change to alert list\n * fix: updated snapshot test\n * moves plugin proxy to plugin package\n * Add eu-west-3 in cloudwatch datasource default's region\n (#10477)\n * fix: Make sure orig files are not added to git again\n #10289\n * improves name for plugin logger\n * fix: Remove conflict file #10289\n * text panel: fix $apply already in progress error (#10486)\n * uses pluginmanagers log instead of global\n * 10389 react tooltip components (#10473)\n * test: Updated snapshot for UserPicker jest test #10289\n * ux: When adding a new panel we should scroll to top until\n we figure o… (#10417)\n * removes commented code\n * naming fixes and added test file\n * makes datasource handshake more explicit\n * backend plugins: improves logging\n * dashfolders: show/hide create folder or dashboard buttons\n * dashfolders: fix mergeconflict error\n * dashfolders: prettify\n * dashfolders: check permissions for new dashboard\n * dashfolders: allow any signed in user to get list of teams\n * fix gofmt warning\n * dashfolders: permissions for saving annotations\n * dashfolders: disable save button after save of acl\n * dashfolders: on folder page, hide tabs if not has admin\n permission\n * dashfolders: remove role requirements on dashboard routes\n * dashfolders: must have admin permission to save/see dash\n acl\n * dashfolders: prettify on tests file\n * dashfolders: permissions tab in dashboard settings\n * dashfolders: permissions tab for dashboard folders\n * fix for unsaved changes popup on tab close/refresh\n * fix: Clean up logging and remove unused css #10289\n * fix: Rename directive user-pickerr (yes two r's) to\n select-user-picker\n * fix: Accidently added the conflict files (#10289)\n * test: Add snapshot tests for UserPicker and\n UserPickerOption (#10289)\n * fix: Add interface for props to UserPickerOption (#10289)\n * ux: POC on new select box for the user picker (#10289)\n * dashboard: fix opening links in new tab (#10465)\n * alert list: fix rendering timeout when share panel\n (#10467)\n * fix missing profile icon (#10469)\n * More fixes for relative urls when running Grafana under a\n different sub path (#10470)\n * put this.props.search in the Highlighter\n * moved state handling for search to store\n * Delete CopyQuery.png\n * Delete tgr288gear_line6.pdf\n * fix: added back colors to rootScope, fixes #10462\n * fixed the subUrl bugs from\n https://community.grafana.com/t/suburl-not-work-at-some-links-and-buttons/4701\n with folder/settings/teams etc.\n * added /** @nginject */\n * Fix typo in error message\n * updated snapshot\n * styling fix\n * added highlight to search\n * Updates go-stack to v1.7.0.\n * docs: adds note about tlsSkipVerify to docs\n * fixed regex issue\n * made a view of filtered list\n * updated jest file and snapshot\n * Remove silly noise\n * Update tests to match new reality, and rejig the\n implementation a bit to truly work as desired\n * Align queries to prometheus with the step to ensure 'rate'\n type expressions get consistent results\n * plugin: fix path for app plugins on windows\n * added search function\n * new styling and markup\n * cleanup: removed unused typescript typings import\n * new add alert notification channel icon\n * mobx: poc in using each store as individual prop on the\n react containers (#10414)\n * fix: Change max size of panel JSON editor so button is\n shown on smaller screens, #10346 (#10415)\n * poc: began react panel experiments, step2\n * poc: began react panel experiments, step2\n * Add AWS/AmazonMQ namespace metrics to CloudWatch tsdb\n (#10407)\n * add docs for using oauth login with OneLogin (#10385)\n * Update built_in_plugins.ts\n * poc: began react panel experiments\n * added empty list cta to notification channels, fixes 10393\n (#10400)\n * mobx: fixed issue with view store, and added missing\n snapshot\n * tech: enzyme container test working\n * tech: enzyme container test working\n * react: trying to get enzyme and mobx tests working\n * tech: url and query mobx store so now react components and\n containers can read and modify url path and query via mobx\n store\n * tech: alert list react migration progress\n * fix info popover, #10302 (#10377)\n * fix move dashboard variables, #10347 (#10375)\n * dashfolders: relative links should work when root_path is\n specified (#10363)\n * fix mixed datasource add query button, #10316 (#10361)\n * tech: react mobx progress\n * Doc version and schemaVersion properties of dashboards\n * tech: began reworking alerting list to mobx\n * tech: progress on react pages\n * prom: fixes broken test\n * prom: make $__$interval the first suggested range vector\n * fixes log typo\n * imguploader: log if the configuration is invalid\n * changelog: adds note about closing #8955\n * renderer: avoid calling Handle twice\n * migrated file to ts\n * dashboards as cfg: moves dashcash into its own file\n * dashboards as cfg: create dashboard folders if missing\n * fixed error\n * migrated files to ts\n * tests: for skipping with hidden folders\n * Implement Azure Blob external image uploader\n * migrated datasource to ts\n * tech: minor progress on mobx state tree & react\n containers, working on unit testing\n * Fix tooltip unit when legend isn't shown (#10348)\n * refactor: minor refactoring of PR #10236\n * don't save dashboard on make editable, #10236\n * fix scripted dashboard loader, #10350 (#10351)\n * new aws region cn-northwest-1 (#10353)\n * Dashboard: View JSON improvements (#10327)\n * refactor: tried to simplify and also minimize scope a bit\n for #10323\n * ignore trailing whitespace (#10344)\n * (prometheus) show label name in paren after\n by/without/on/ignoring/group_left/group_right\n * dont spawn new subprocess while shutting down\n * Fix small singlestat value display\n * fix: fixed issue with optimized build, fixes #10333\n * migrated file to ts (#10328)\n * plugins: restart killed plugins\n * query result should be a map\n * prom: removes limitation of one query per tsdb call\n * changelog: adds note about closing #10222\n * pagerduty: fixes invalid default value\n * fix: remove unused code\n * dashboard: copy panel to clipboard\n * pagerduty: adds test for reading auto resolve setting\n * code formatting fix\n * migrated files to ts + fixed specfile\n * tech: cleaned up unused stuff\n * ux: removed unused stuff form style guide\n * prettier: ran on all files again, sorry. now settings are\n defined in package.json\n * tech: mobx tests\n * Add avatar to team and team members page (#10305)\n * Various dashboard folders improvements (#10309)\n * mobx: progress on poc\n * test for plugin path builder\n * merge backend datasources and datasources\n * use int64 for timestamps\n * fixes invalid valud/timestamp order\n * fix: unit test fixed\n * prettier: change to single quoting\n * ux: minor name change to search sections\n * db: fix postgres regression when comparing boolean\n columns/values (#10303)\n * dashboard: delete row improvements\n * poc: mobx test\n * fix missing comma in documentation output example\n * fix broken link (#10291)\n * minor fixes and formatting after review\n * dashfolders: use validation service for folder creation\n and dashboard import. #10197\n * dashfolders: support creating new folder when moving\n dashboards. #10197\n * dashfolders: support creating new folder when saving a\n dashboard. #10197\n * dashfolders: support creating new folder in dashboard\n settings. #10197\n * dashfolders: support creating new folder from the folder\n picker. #10197\n * poc: mobx poc\n * tech: ran prettier on all scss files\n * tech: ran pretttier on all typescript files\n * search: closes dash search when selecting current\n dashboard (#10285)\n * fix: Original dashboard link from snapshot should be an\n a-tag, not a button (#10269) (#10283)\n * dashboard: fixes #10262\n * added new to new dahsboard and folder\n * test: Update test with new component signature\n * pushover: update default message\n * delete unused icon files\n * fix: The /logout route should always full page reload\n (#10277)\n * tech: added prettier to precommit\n * ux: Add icon to selected option in PageHeader navigation\n on small screens, update select boxes for Firefox so the\n arrow to the right is aligned with the other select boxes\n (#10190)\n * ux: Fix color picker positioning when scrolled down to the\n bottom of a page (#10258) (#10271)\n * test: remove unused code\n * alerting: make alert extractor backwards compatible\n * alerting: move test json into files\n * Use strings.TrimPrefix to make sure relative url doesn't\n start with forward slash\n * Update README.md\n * fix: Navigation on small screens when Grafana is installed\n in a sub directory (#10252) (#10261)\n * cloudwatch: fixed optimized build issue, fixes #10174\n * fix text panel rows limit (#10246)\n * use ace editor in panel edit (#10245)\n * docs: mysql example with macro\n * docs: mysql macros update\n * fix: reduced team name column length, fixes #10244\n * ux: Add missing icon for login with grafana-com, fixes\n #10238 (#10249)\n * Kinesis Metric Capitalization\n * merge backend-datasource and datasource type\n * dashfolder: nginject fix\n * teams: missing nginject attribute\n * grid: disable resize and drag on non editable dashboards,\n closes #10235\n * logging: removed logging from panel loader\n * menu: fixed create default url\n * fix: dont show settings for viewers\n * prometheus: change default resolution to 1/1\n * fix: viewers can edit now works correctly\n * fix: fixed minor ux and firefox issues, fixes #10228\n * ux: minor fixes\n * profile: use name or fallback for profile page\n * fix: sidemenu profile main text is now username instead of\n name\n * build: update master version to 5.0.0-pre1\n * dashfolder: change to migration text\n * ux:s sidemenu icon rules\n * teams: add team count when searching for team\n * changed background color for infobox and new blues in\n light theme, light theme now uses blue-dark in panel query\n (#10211)\n * ux: fixed navbar issue when sidemenu closes\n * ux: minor position change for layout selector, fixes\n #10217\n * fix: view json from share modal now works, #10217\n * ux: used new add data sources icon\n * dashfolders: styling of selected filters\n * dashfolders: styling of selected filters\n * dashfolders: fix moving plugin dashboard to folder\n * changelog: adds note about closing #9170\n * dashfolders: fix folder selection dropdown in dashboard\n settings\n * fix for merge conflict\n * add links for large cta\n * resolve merge conflict\n * dashfolders: bulk move/delete improvements\n * snapshots: fixed snapshot issues, fixes #10214\n * docs: include all notifiers type\n * replaced old table with filter-table, removed edit button,\n made whole rows to links\n * playlist: fixed playlist buttons in dashboard header,\n fixes #10213\n * docs: update latest version to 4.6.3\n * ux: minor changes to search input\n * Magnifying glass on search fields #10188 (#10206)\n * templating: made templateSrv globally accessable as ES6\n module, DashboardRow can not interpolate row title\n * fix: ignore row clones in schema migration\n * proxyds: delete cookies except those listed in keepCookies\n * dshttpsettings: Move whitelisted cookies to end of config\n page\n * proxyds: failing test for keepCookies\n * dshttpsettings: add field for cookies that should be kept\n * dashfolders: /dashboards should render index page with a\n 200 OK\n * update version for packagecloud\n * dashfolders: bulk move/delete improvements\n * add release date for 4.6.3\n * fix: after removed file\n * dashfolder: fix after backendSrv change\n * dashboard: fix test after merge conflict\n * orgswitcher: update test\n * Avoid ID validation before provisioning dashboards\n * annotation icon fix\n * udpate dark json icon\n * dashboard settings icons\n * replace icon on dashboard list (fa-th-large - looked\n squished) with a smaller version of dashbord icon. This\n may not be the best way to do the css, so it's a separate\n commit\n * new icons created and added to nav\n * changelog: adds note about closing #7481\n * fixes broken unit test\n * alertmanager: endAt should only be used if we have the\n correct value\n * alertmanager: code style\n * alerting: reduce log level for notifiers\n * Alertmanager notifier: add 'metric' labels if no tags\n * Alertmanager notifier: make it match the new notifier\n interface\n * support alertmanager\n * Replace Read Only Editor role with ViewersCanEdit setting\n (#10166)\n * dashfolders: bulk move dashboards synchronously\n * dashfolders: remove error message when moving to the same\n folder. #10135\n * teams: Fixes to edit team page\n * ux: minor text change to #10177\n * made template link look like input (#10198)\n * minor tweaks\n * execute process directly instead of creating sub shell\n * Dashboard grid fixes (#10194)\n * refactor: minor change to #10199\n * fix broken 'd r' shortcut (refresh dashboard) (#10199)\n * ux: updated login page\n * fixes switching org when url contains orgId querystring\n param\n * build: fixed build issue\n * ux: refactoring login page change\n * navmodel: fix for signout link on pref page\n * change protip to go to manage dashboards\n * search: worked on search results\n * added select-wrapper to where it was missing for unified\n look\n * changelog: adds note about closing #10151\n * ux: wip - Login animation POC (#9879)\n * changelog: adds note about closing #9318\n * ux: Move 'Sign up' and 'Reset password' to its own pages -\n and remove all inline styling (#9879)\n * fixes broken alert eval when first condition is using OR\n * ux: org user management changes\n * removes unused property\n * fixed edit team header, fixes #10172\n * changed width to input fields (#10184)\n * ux: added search box to ds list page, closes #10106\n * ux: change members to users\n * plugins: fixed plugin edit page and plugin page\n * dashfolders: Minor css fixes for bulk edit\n * dashfolders: Minor css fixes for bulk edit\n * docs: SSL Mode config settings for Postgres\n * dashfolder: settings page for folder\n * removes verbose logging\n * fix: FolderId and IsFolder when saving dashboard\n * ux: fixed inactive view mode and removed animation\n * removed unused declaration\n * updated dashlink editor, now has list\n * fix: Handle state when no password is entered on\n registration page (#9879)\n * adding support for sgl native time datatypes\n * added missing cases for DATETIME datatype\n * ux: move add member into its own page (#10167)\n * Add a per-notifier ShouldNotify()\n * minor fix for #10136\n * Fix graph legend scroll (#10169)\n * fix colorpicker colors order (width issue) (#10170)\n * graphite: remove check so that query is sent even for\n possible non leaf nodes\n * fix: fixed build failure\n * ux: Use the previously renamed classes (#9879)\n * fix: fixed dashboard api tests\n * fix: don't detect graphite version before it's saved\n * updated new dashboard folder\n * ux: style tweaks\n * ux: Update ui of login buttons via third parties and add\n link to sign up page (#9879)\n * redesigning links editor\n * ux: search look update\n * tech: updated version for react-grid item\n * build: fixed unit test failure\n * Extracted row matching function and added comments\n * allow overriding dashboards from api\n * redesigning links editor\n * graphite: minor fix for PR #10142 the query was being sent\n for every segmen t you selected before you completed the\n metric path\n * build: fixed broken test\n * refactor: minor change to panel json fix PR #10156\n * Move panel JSON editor to modal dialog (#10156)\n * ux: minor updates to dashboard settings\n * ux: dashboard settings updated\n * new dashboard and folder in search (#10152)\n * avatar: avoid concurrent map writes\n * redesign dashlinks\n * fix: fixed issue with optimized build grid directive\n missing ngInject comment, fixes #10161\n * annotations: allows template variables to be used in tag\n filter\n * Add default message for Pushover notifications\n * refactor: format files by gofmt\n * ux: Adjust margins when external auth providers are\n enabled (#9879)\n * ux: dashboard settings progress\n * ux: dashboard settings work progress\n * dashfolders: new dashboard with folder selected\n * ux: wip - Push pixels for new login, remove inline\n styling, change so we use media queries using min-width\n instead of max-width and make sure it looks ok across all\n screen sizes (#9879)\n * ux: dashboard settings work progress\n * backend plugins: manage plugins lifecycle with context\n * ux: dashboard settings progress\n * ux: dashboard settings progress\n * ux: dashboard settings progress\n * backend plugins: dont swallow errors\n * fix: fixed failing test\n * backend plugins: cleanup protobuf files\n * ux: dashboard settings progress\n * backend plugins: add more datasource params\n * Type-agnostic row merge in table transform for multiple\n queries\n * ux: dashboard settings progress\n * ux: fixed navbar and sidemenu z-index issue and improved\n responsive rules\n * code style\n * implement upstream changes\n * fix: fixed build failure\n * changelog: adds note about closing #10131\n * Explicitly specify default region in CloudWatch datasource\n (#9440)\n * add encoding param\n * wait for all sub routines to finish\n * fix function re-ordering broken in #9436\n * add missing value fill code to mysql datasource\n * hyphenhyphen\n * support metric trees of varying depth, never send '.select\n metric' to graphite\n * simplify function parameter addition\n * ux: dashboard settings progress\n * fix typo\n * ux: minor changes\n * implement missing value fill functionality for postgres\n * allow optional 3rd argument to timeGroup to control\n filling missing values\n * ux: navbar progress\n * improve handling of query references\n * build: fix for tslint\n * ux: form styles polish, improvement but can be better\n * pass tsdbQuery to transformToTimeSeries and\n transformToTable to get access to selected frontend\n timerange\n * demonstrate parseTarget issue\n * fix: fixed panel size rerendering issues\n * pass Query to MacroEngine Interpolate\n * ux: work on dashboard settings views\n * dashfolders: Do not allow loading a folder as a dashboard\n * fix: Remove console.log\n * dashfolders: Folder picker should set correct default\n values. Fixes #10135\n * refactor: user groups to teams, replace rest mentions\n * refactor: user groups to teams, rename backend files\n * refactor: user groups to teams, rename frontend files\n * refactor: rename User Groups to Teams\n * changelog: adds ntoe about closing #10111\n * ux: forms style font size change\n * ux: dashboard settings progress\n * postgres: change $__timeGroup macro to include 'AS time'\n column alias (#10119)\n * new timepicker is working\n * dashfolders: Create nav model for folder page client side\n #10083\n * ux: minor change to new folder page\n * fix for search dropdown on small screen + icon overlapping\n fix (#10091)\n * ux: added react scrollbar component and added it to add\n panel panel\n * tech: updated ngreact and with custom PR applied\n * refactoring: #10130\n * Revert 'Don't animate panels on initial render (#10130)'\n * Don't animate panels on initial render (#10130)\n * refactoring: fixing bug when all values are null\n * fixes broken test\n * dashfolders: Hide search input area when showing CTA.\n #10083\n * ux: graph legend refactoring\n * improve error handling for datasources as cfg\n * improve sample datasource.yaml\n * make gitignore more generic\n * grid css transforms: minor refactor (#10128)\n * dashboard grid: enable CSS transforms (#10125)\n * fixes issue with datasource/dash as cfg and gitignore\n * refactoring: changing how graph height and legend height\n is calculated, using flex box seems to actually work,\n #10079\n * dashfolders: create folder page\n * refactor: removed graph height from legend decimal calc\n * dashfolders: css fix\n * fixes failing tests\n * dashfolders: New Dashboard Folder page\n * fix: move components tests to specs folder\n * Fix go fmt\n * kill plugin processes when grafana shuts down\n * fix: v5 sidemenu & link to shortcuts now works, fixes\n #10087\n * separate plugin impl and proto files\n * correct comments\n * add hclog wrapper for grafanas logger in plugins\n * add go-plugin deps to vendor\n * initial version of proto files\n * changelog: breaking regardless what your running\n * changelog: better styling\n * removes last pieces of dashboard.json\n * refactor: sidemenu toggle & hiding logic\n * changelog: note about closing #5269 and #9654\n * dashboards as cfg: update docs to use /provisioning\n * dashboards as cfg: move dash/ds config files to\n /provisioning/*\n * dashboards as cfg: copy dash/ds files if missing\n * dashboards as cfg: include cfg files in dist packages\n * dashboards as cfg: avoid walking fs in parallel\n * dashboards as cfg: type\n * dashboards as cfg: disable loading dashboards from disk by\n default\n * dashboards as cfg: wire up dashboard repo\n * dashboards as cfg: use gocache for caching\n * dashboards as cfg: expose dashboard service as interface\n * dashboards as cfg: move saving logic for dashboards into\n its own service\n * dashboards as cfg: revert minor changes\n * dashboards as cfg: move dashboard saving into its own\n service\n * dashboards as cfg: minor tweaks\n * dashboards as cfg: make dashboard none editable by default\n * dashboards as cfg: more tests\n * dashboards as cfg: code cleanup\n * dashboards as cfg: read first cfg version\n * removed row to center footer (#10115)\n * ux: minor cleanup\n * mysql: pass timerange for template variable queries\n (#10071)\n * dashboard: fix edge case with keyboard nav in dashboard\n search. #10100\n * Solves problem with Github authentication restriction by\n organization membership when the organization's access\n policy is set to 'Access restricted'. 'Access restricted'\n policy should not stop user to authenticate.\n * graph: fix legend height calculation\n * postgres: pass timerange for template variable queries\n (#10069)\n * graph: move auto decimals calc to ticks.ts and use it for\n legend values format.\n * Resolves grafana/grafana:#9309\n * dashboard: fix linting and formating - #10100\n * dashboard: keyboard nav in dashboard search - closes\n #10100\n * graph: refactor (don't render twice)\n * handle native postgres datetime types in annotation\n queries (#9986)\n * treat any text column in timeseries query as metric name\n unless column (#9985)\n * Fixing tabs for Grafana 5 - #10082 (#10103)\n * other panels now hidden, fixes 10088 (#10102)\n * fixed 404 for grafana5 + now responsive (#10101)\n * dashboard: fix search results tests #10083\n * dashboard: Show CTA for empty lists/folders #10083\n * dashboard: Dashboard folder page wip #10083\n * prom: enable min interval per panel\n * Fix merge issue on multi-query table transforms\n * graph: fix karma tests\n * graph: render legend before graph\n * added tooltip, fixes #10092 (#10097)\n * graph: refactor\n * graph: convert legend.js to typescript\n * fixing a few fromattings\n * adding mssql docs\n * docs: link from cfg page to provisioning\n * reduce app icon by 3px on home dashboard - wasn't lining\n up properly with starred/recently viewed dasboard list\n properly\n * ux: minor style tweaks to cards and sidemenu icons for\n white theme\n * ux: tweaked light theme and made page container more fluid\n * dashboard: dashboard search results component. closes\n #10080\n * docs: added utm_source for link from ds list page to docs\n page\n * updating the query editor's syntax highlighting mode to\n sqlserver\n * fixed grey colors in light-theme, added new variables,\n played a bit with blue\n * v5: removed permissions from dashboard cog dropdown,\n closes #10068\n * nav: updated nav item id for manage dashboards\n * refactoring PR #10068\n * dashboard: migrations for repeat rows (#10070)\n * Backwards-compat for multi-query table transform\n * graph: make legend scrollable\n * removes unused properties\n * Making the multi-query table transform the default table\n transform\n * ux: updated padding\n * ux: Add CTA for empty lists\n * move import menu item to the original place\n * move DashboardImportCtrl tests to jest\n * Move import dashboard from modal to the page\n * refactor: minor refactoring of #10027\n * new grays for light theme\n * sidemenu: responsive sidemenu view for smallest breakpoint\n * add _tests for mssql data source\n * ux: tabs update\n * Tests for multi-query table transform\n * ux: updated modal header design\n * ux: progress on time picker dropdown version\n * fix templating undefined error (#10004)\n * tweaks to add panel panels\n * ux: updated dashboard nav\n * MSSQL Data Source\n * add server only build target 'build-srv'\n * ux: dashboard setings progres\n * add Cloud Alchemy Ansible role\n * started on dashboard settings refactor\n * ux: add new panel and dash nav improvements\n * Added basic table transformer test\n * typo :boom:\n * influxdb: pass tags to alerting from influxdb client\n * ux: dashboard nav update\n * ux: new dashnav design\n * ignore /conf/**/custom.yaml files\n * repeat row: refactor\n * Fix dashboard menu overlapping (#10044)\n * Add multiquery_table table transform\n * typo :boom:\n * move systemd ready notification to server.go\n * changelog: adds note about closing #10024\n * page header now on 99% of pages\n * navigation: more progress on new page header\n * ux: new page-header design, most pages beside admin done\n * fixed sass warnings\n * ux: made plugins page work\n * Use systemd notification where applicable\n * progress on page header\n * tweaked color on heatmap. still not there, but more\n vibrant\n * ux: new page header progress\n * added bundled dashboards\n * ux: progress on new page header\n * dashboard: when changing route, scroll to top\n * grafana-10039: fix query time range ends in the past\n * ux: work on page header\n * Revert 'prometheus nested query support'\n * ux: updating header design for pages\n * fix: when navigating, scroll to top\n * repeat row: add more tests\n * ux: new page header design\n * tweak background size\n * new test svg background, minor form tweaks\n * ux: search filter box\n * ux: changed body default font size to 13px\n * test: fix failing postgres test\n * Added border radius and tightened up the folder boxes.\n Still needs to have the bottom margin expanded to 8px when\n in opened state (this needs @torkelo)\n * test: speedup mysql and postgres integration tests by\n 10-20x\n * repeat row: expose scopedVars to row panels\n * ux: search design update\n * repeat row: handle collapsed rows\n * notifier: Fixes path for uploaded image for Slack notifier\n * formatting in build file\n * dashboard: initial repeat row implementation\n * prometheus nested query support\n * fix render http[get] params error\n * test: close file before deleting\n * Restore Page Footer after migration to new scrollbar #9652\n * export view json now templatized, fixes #10001\n * dashfolders: Add a helper for creating a dashboard folder\n * dashfolders: revert automatic creation of folders for\n plugins\n * styling changes for light theme\n * grid: use single column layout for mobile devices (#9999)\n * fix panel solo mode (#10002)\n * dashlist: handle recent dashboards removed from backend\n * dashfolders: don't create app folder on dashboard import\n if already exists\n * dashfolders: create app folder on dashboard import\n * datasource: fix merge conflict - restore dashboards tab\n * search fix and update buttons on dashboard list page\n * fix: removed table background\n * build: fixed lint issue\n * fixed link i specs-file\n * Improve dashboard grid layout migration WIP (#9943)\n * test fix\n * updated libs and fixed new typescript errors\n * dashlist: Support for clear all filters\n * migrated viewstatesrv to ts\n * added yarn.lock file back\n * ux: table design work\n * panel: open panel menu by click on header\n * ux: search progress\n * worked on search\n * migrated four files from js to ts\n * migrated four files to ts, addd some code to config to\n make it work (#9980)\n * Update NOTICE.md\n * Update LICENSE.md\n * ux breadcrumb work\n * ux: sass fixes and polish\n * dashlist: Support for check/uncheck all\n * Migrate gfunc to ts (#9973)\n * migrated admin files to ts (#9975)\n * migration of org files from js to ts (#9974)\n * sass tweaks\n * dashlist: When searching should reset checked state to\n false\n * More js to ts (#9966)\n * dashlist: change scrollbar to new perfect scroll directive\n * docs: Improve delete snapshot documentation\n * ux: fixed sass issue\n * sass refactoring and updating styles for list item\n elements\n * dashlist: style list to be same as dash search\n * css tweaks and cleanup\n * removing gemini scrollbar and replacing with perfect\n scrollbar, muuuch better\n * dashlist: starred filter search\n * ux: tweaked panel color and dashboard background is same\n as page background\n * removed call to unused function in panel_ctrl\n * scrollable panels works better with perfect-scrollbar\n * Update latest.json\n * Optimized number of lines fetching in log file\n initialisation\n * work on scrollable panels\n * converted 3 .js files to .ts (#9958)\n * docs: adds docs for pausing all alerts\n * Removing file that got committed by accident\n * scrollable panels: fix initial content size (#9960)\n * Delete LICENSE.txt\n * dashlist: adds tag filter select (GitHub style)\n * [GCS] Support for gcs path\n * dashlist: toggle folders\n * dashboard: fix test for folderIds\n * allows head requests for /api/health endpoint\n * dashlist: fix tag filtering and some css\n * fix: fixed issue with metric segment introduced in\n graphite tags query editor PR\n * progress on scrollable panels work\n * mysql: add data source support for Azure MySql\n * fixed unit tests\n * fix: alert list panel now works correctly after adding\n manual annotation on dashboard, fixes #9951\n * Elasticsearch max_concurrent_shard_requests parameter for\n es 5.6+\n * prom: add prom2 dashboard as bundled dashboard\n * show top 5 max scrape durations by job, and fix legend\n format\n * fix scrape duration, add rule eval iteration stats, and\n reorg a bit\n * fix data source var and remove node_exporter dependency\n * First draft of a Prometheus 2.0 Stats dashboard\n * prom: initial docker block for prometheus 2\n * tweak tabs:\n * color fix\n * make grays cooler\n * dashlist: started fixing js/css after design changes\n * updated search\n * more work on search\n * minor update to dashboard search\n * converted test-files to jest\n * improved search srv\n * converted influx-series to TS, converted test to jest\n * dashboard search\n * working on dashboard search\n * Move the loading flag to PanelCtrl (#9929)\n * graph: disable zoom in non-timeseries modes (#9914)\n * changed padding to pixels, fixes #9916 (#9924)\n * Use correct moments format for Showing last us time\n instead of value test (#9923)\n * Don't import JSON dashboards from hidden directories.\n * new design for login\n * fix: build & tests\n * search: add expanded folders\n * influxdb: another minor refactor of #9474\n * refactor: refactoring InfluxDB query builder with policy\n PR #9473\n * refactor: refactoring InfluxDB query builder with policy\n PR #9473\n * docs: added versions_to_keep to config docs, #9671\n * refactoring: minor refactor of clean up dashboard history\n PR #9882\n * fix: fix for avatar images when gzip is turned on, fixes\n #5952\n * elasticsearch: default version to 5.x\n * Adding a user in a specified organisation uses the admin\n API\n * panels: add css tweaks for scrollable panels\n * dashboard history clean up: avoid potential SQL injections\n * search: refactor search sql into a builder class\n * changelog: note about closing #9798\n * removes invalid comment\n * api: fix so that datasources functions returns Response\n * changelog: note about closing #1789\n * fix: Use Response as return type\n * fix: return id from api when creating new\n annotation/graphite annotation, fixes #9798\n * datasources as cfg: adds docs for all jsondata and\n secure_json fields\n * graphite: minor changes\n * text panel: make scrollable\n * panels: general property which makes panel scrollable\n * datasources as cfg: convert yaml map into json for\n jsonData\n * fix: fix cloudwatch metricFindQuery error that stopped it\n working completely, fixes #9876\n * dashlist: css adjustments for scrollbar\n * dashlist: fix resizing after mode switching\n * dashlist: add scrollbar\n * dashlist: fix panel resizing\n * docs: update metrics api path\n * changelog: adds note about closing #1871\n * fixes: #1871 Dropdown starred (#9490)\n * dont loose subsecond precision when dealing with timestamp\n or (#9851)\n * graphite: progress on new query editor\n * datasource as cfg: fixes typos\n * docs: format cfg mgt tools as table\n * docs: adds more info about provisioning\n * datasource as cfg: update docs to include globbig\n * datasource as cfg: show deletes first in example\n * datasource as cfg: support globbing\n * datasource as cfg: enable editable ds's\n * datasource as cfg: add org_id to example config\n * tweak docs\n * datasource as cfg: adds readonly datasources\n * datasource as cfg: refactor to use bus\n * datasource as cfg: test for reading all properties\n * datasource as cfg: adds provisioning docs\n * datasource as cfg: rename feature to provisioning\n * datasource as cfg: improve name for this feature\n * datasource as cfg: refactor tests to use yaml files\n * datasource as cfg: ignore datasource all ready exist for\n inserts\n * datasource as cfg: add support for securedata field\n * datasource as cfg: setting for purging datasources not in\n cfg\n * datasources as cfg: tests for insert/updating datasources\n * datasource as cfg: basic implementation\n * More energy units (#9743)\n * Add feet to the length menu (#9889)\n * middleware: recovery handles panics in all handlers\n * sql: small fix to error handling\n * graphite: progress on new query editor\n * changelog: make prom fixes more explicit\n * dashboard history clean up: add tests\n * tech: ignore debug.test file created by VS Code\n * dashboard history: refactor after review\n * changelog: adds note about closing #9777\n * prom: add support for default step param (#9866)\n * properly escape components of connection string (#9850)\n * refactor: changed string slicing to strings.TrimPrefix,\n #9862\n * dashboard history: clean up dashboard version history\n * build: fixed jshint error\n * sync documentation, add remark about to_timestamp and\n redshift (#9841)\n * fix: Html escaping caused issue in InfluxDB query editor,\n could not pick greater than or less then operators, fixes\n #9871\n * changelog: adds note about closing #8523\n * teams: removes print statement\n * Add Microsoft Teams notifier\n * docs: update building from source doc with node-gyp\n * heatmap: fix tooltip in 'Time series bucket' mode, #9332\n (#9867)\n * fix: Table panel now renders annotations correctly. Fixes\n #9842 (#9868)\n * build: fixes build and jest tests on Windows\n * fix cloudwatch ec2_instance_attribute (#9718)\n * graph: the stack & legend sort sync was not working\n correctly, the z-index sorting that happened in after the\n legend sort order was applied and messed with the order\n even though the sort function returned zero for all\n entries, combined the sort function to one sort function,\n fixes #9789 (#9797)\n * not ok option to alert list, fixes: #9754\n * changelog: note about closing #9661\n * return empty array for no datapoints\n * fix query inspector for cloudwatch\n * Add AWS/NetworkELB to cloudwatch definitions\n * changelog: note about closing #9784\n * test: adds tests for password encodiing\n * use SHOW RETENTIONS to test influxdb connection (#9824)\n * Use hex.EncodeToString to encode to hex\n * Added missing documentation for auth.proxy (#9796)\n * fix date test (#9811)\n * docker: expose statsd endpoint for graphite block\n * update lib/pq (#9788)\n * Update the config key to database_log_queries so it is\n more descriptive, as suggested in #9785.\n * graph: don't change original series name in histogram\n mode, #8886 (#9782)\n * MySQL Performance when using GF_DATABASE_URL Set\n MaxIdleConn and MaxOpenConn when using the GF_DATABASE_URL\n configuration. Also added GF_DATABASE_DEBUG flag to print\n SQL statements and SQL execution times. See #9784 for the\n details.\n * Update postgres.md\n * colorpicker: fix color string change #9769 (#9780)\n * refactor: alert list panel fixes and no alerts message,\n rewrite of PR #9721\n * feat: refactoring hide time picker PR #9756\n * search: began writing test for new search\n * changed class name for no-alerts\n * chore(docs): update the search Query Example\n * ux: search progress\n * dashfolders: fix for dashlist nav\n * reduce docker-compose header version\n * ux: progress on new search\n * ux: minor changes\n * ignore docker-compose.yaml\n * docs: update latest release to 4.6.1\n * packages: update published package version\n * option to hide Time picker, fixes #2013\n * fix: panel view now wraps, no scrolling required, fixes\n #9746\n * changelog: set release date for 4.6.1\n * changelog: adds note about closing #9707\n * fix default alias\n * add period alias\n * plugins: fix for loading external plugins behind auth\n proxy, fixes #9509\n * testdata: added manual entry mode to test data\n * new design for no alerts in alert-list, fixes #9721\n * fix: fixed compiler error from #9676\n * converted ng_model_on_blur.js to ts,\n deletedkeyboard_manager.js (#9676)\n * docs: update testdata enable explanantion\n * MAINTAINER is deprecated, now using LABEL\n * Update ROADMAP.md\n * Adding energy, area, and acceleration units (#9336)\n * tests: migrated tests for link_srv to jest, #9666\n * Transitioning fig to docker-compose v3\n * tests: migrated tests for link_srv to jest, #9666\n * fix for dashboard tag link bug, fixes #9737 (#9739)\n * github: dont require bug/fr in title\n * changelog: adds note about closing #9713\n * converted confirm_click.js to .ts (#9674)\n * Update codecov.yml\n * change default sslmode for postgres to verify-full (#9736)\n * fix: color picker bug at series overrides page, #9715\n (#9738)\n * Update ROADMAP.md\n * tech: switch to golang 1.9.2\n * always quote template variables for mysql when multi-value\n is allowed (#9712)\n * always quote template variables for postgres when\n multi-value or include (#9714)\n * fix: dashboard links dropdown toggle did not update view,\n fixes #9732\n * docs: adds prom grafana dashboard\n * graphite: tag is required for values autocomplete\n * dashfolders: bulk edit tag filtering\n * Correct help message of\n api_dataproxy_request_all_milliseconds\n * changelog: adds note about closing #9645\n * changelog: adds note about closing #9698\n * ace editor for text panel\n * dashboards: bulk edit delete\n * tech: add missing include\n * dashboards: fix link to bulk edit\n * sql: remove title from annotation help\n * changelog: adds note about closing #9681\n * fix: undefined is not an object evaluating this., #9538\n * [Bug Fix] Opentsdb Alias issue (#9613)\n * fix: graphite annotation tooltip included undefined, fixes\n #9707\n * Alertlist: Inform when no alerts in current time range\n * save as should only delete threshold for panels with\n alerts\n * graphite: tags and values autocomplete based on @DanCech\n PR to graphite-web\n * changelog: note for #9596\n * add __timeGroup macro for mysql (#9596)\n * updated icons\n * docs: fix link\n * ux: testing 3px panel border radius\n * more link fixes\n * fixed link issues\n * renamed file\n * converted inspect_ctrl.js to ts (#9673)\n * converted dashboard_loaders.js to .ts (#9672)\n * declared any to info in declaration\n * converted analytics.js to ts, minor code formatting fix to\n timer.ts (#9663)\n * docs: updated download links\n * docs: update alerting with new data sources\n * changelog: spelling\n * plugins: added backward compatible path for rxjs\n * ux: updated singlestat default colors\n * prometheus: fixed unsaved changes warning when changing\n time range due to step option on query model was changed\n in datasource.query code, fixes #9675\n * docs: updated changelog\n * fix: firefox can now create region annotations, fixes\n #9638\n * changelog: adds note about closing #9639\n * set release date for 4.6.0\n * grid: work in progress on row repeats\n * dashfolders: rough draft of bulk edit\n * converted linkSrv.js to linkSrv.ts\n * docs: update docker installation docs\n * grid: minor changes\n * converted outline.js to outline.ts (#9658)\n * converted timer.js to timer.ts (#9656)\n * datasource as cfg: typo\n * Create codecov.yml\n * datasource as cfg: explain why cmd.version can be higher\n * #edit_grafana_organisation_apis_doc (#9651)\n * add a phantomjs execution status to log if errors happens,\n e.g. OOM killer kills it (#9644)\n * grid: worked on row options modal and row removal\n * dashboard: fix home dashboard getting started panel\n * Fix typo in template help tab\n * replace store.js with store.ts, test for store.ts (#9646)\n * tests: added test for DashboardRow\n * docs: update first page with data source guides\n * docs: document annotations for postgres/mysql\n * docs: update for template variables\n * changelog: spelling\n * Allow for multiple auto interval template variables\n (#9216)\n * changelog: adds note about closing #9645\n * tech: remove rabbitmq event publisher\n * changelog: note for #9030\n * dont quote variables for mysql and postgres datasource\n (#9611)\n * asscoiate comment with name\n * Update development.md\n * ux: row collapse / expand starting to work\n * changelog: adds note about closing #9640\n * alerting: only editors can pause rules\n * prom: adds pre built grafana dashboard\n * changelog: adds note about closing #9636\n * fix: another fix for playlist view state, #9639\n * ux: updated icons\n * shore: migrating config/settings.js to typescript\n * fix: fixed playlist controls and view state, fixes #9639\n * Fixed #9636\n * shore: removed unused old system conf file\n * Use d3 from node_modules (#9625)\n * update log15 (#9622)\n * docs: update whats-new-in\n * changelog: small text change\n * changelog: v4.6.0-beta3 released\n * tech: annotations refactor, add tests for regions\n processing (#9618)\n * Move #9527 to 4.6.0-beta3\n * build: disable jest on precommit hook -windows fix\n * build: fix all npm run commands for Windows\n * plugins: fixes path issue on Windows\n * build: tryingt of fix windows build issue\n * tests: removes commented tests\n * graph: invert order when sorting by legend\n * fix: escape series name in graph legend, added\n aliasEscaped to time series model to reuse escape, fixes\n #9615\n * build: fixed gofmt issue and addd mock response feature\n * prometheus: enable gzip for /metrics endpoint\n * build: split circle test shell scripts\n * datasources: change to optimisic concurrency\n * build: reduced webpack log output and remove race flag\n from go tests\n * build: set max workers to 2 for jest\n * build: log heap usage\n * build: another build fix\n * tests: migrated two more tests to jest\n * build: fixed build failure\n * build: reworking pre commit hook\n * build: added precommit\n * fix: fixed tslint validation error\n * test: added first react snapshot test\n * docs: another docs fix\n * docs: fix docs redirect for older datasources index page,\n fixes #9609\n * [Tech]: Start migrating to Jest for tests (#9610)\n * Fix typo in init.d script\n * graphite: auto detect version\n * graphite: improved version comparison\n * graphite: split tags and functions into 2 rows when\n seriesByTag used\n * graphite: add tags to dropdown and switch to tag editor if\n selected\n * plugins: expose dashboard impression store\n * ux: minor ux tweaks\n * Sort series in the same order as legend in graph panel\n (#9563)\n * fix: fixed save to file button in export modal, fixes\n #9586\n * mysql: add usage stats for mysql\n * run go fmt\n * Add a setting to allow DB queries\n * note for #9527\n * modify $__timeGroup macro so it can be used in select\n clause (#9527)\n * Fix heatmap Y axis rendering (#9580)\n * prometheus: add builtin template variable as range vectors\n * Note for #5457\n * fix: fixed prometheus step issue that caused browser\n crash, fixes #9575\n * changelog: adds note about closing #9551\n * fix: getting started panel and mark adding data source as\n done, fixes #9568\n * pluginloader: esModule true for systemjs config\n * Fixes for annotations API (#9577)\n * ux: new fixes\n * Grafana5 light (#9559)\n * When Messasge field is set for an alert, map it to the\n output field in a Sensu check result. If Message is empty,\n send 'Grafana Metric Condition Met'\n * ux: work on rows\n * fix vector range\n * allow ':' character for metric name\n * build: added imports of rxjs utility functions\n * grid: row work\n * fix template variable expanding\n * annotations: quote reserved fields (#9550)\n * fix: fixed color pickers that were broken in minified\n builds, fixes #9549\n * ux: align alert and btn colors\n * docs: doc updates\n * remove duplicative prometheus function\n * remove label match operator from keyword.operator\n * remove label match operator from keyword.operator\n * remove extra state push\n * fix typo\n * newgrid: row progress\n * styleguide: fix link in index\n * api: fix for dashboard version history\n * textpanel: fixes #9491\n * graphite: datasource refactor\n * csv: fix import for saveAs shim\n * grid: minor progress on new row concept\n * ux: add panel progress\n * alert_tab: clear test result when testing rules\n * ux: worked on add panel function\n * plugins: expose more util and flot dependencies\n * (cloudwatch) fix cloudwatch query error over 24h (#9536)\n * Add autofocus tag for username field on login.html (#9526)\n * show error message when cloudwatch datasource can't add\n * ux: minor button changes\n * CloudWatch: Add ALB RequestCountPerTarget metric\n * ux: color tweaks\n * ux: testing out new icons\n * set nightly version to v4.7.0-pre1\n * changelog: adds release date for v4.6.0-beta1\n * ux: minor fixes\n * grid: fixed grid width issues\n * grid: repeat refactoring and unit tests\n * Missing dot in aws credentials path\n * newgrid: added constants, changed grid to 24 cols, added\n tests for panel repeats\n * docs: doc updates\n * grid: minor progress on panel repeats\n * changed name back to use underscore instead of camelcase,\n need to think more about this\n * fixed dashboard sorting\n * newgrid: worked panel duplicate\n * fix: various fixes for new grid\n * dashgrid: fix or skip tests for repeat rows\n * dashboardgrid: disable dynamic_dashboard_srv for now\n * ux: style tweaks\n * newgrid: various fixes\n * If retention policy is set for influxDB, preprend that to\n the measurement name for exploration queries.\n * newgrid: fixed migration code to new grid\n * docker: updated our graphite docker container\n * grid: edit/view now works\n * dashboard: fixes for panels without rows\n * webpack: changed devtools setting to stop exceptions\n * fix: ignore upgrading dashboard grid when there are no\n rows\n * grid: fixed migration for rows without height\n * ux: minor fix sidemenu\n * newgrid: progress on fullscreen/edit view modes\n * search: fix search to limit dashboards better\n * grid: fixed geting started panel pos\n * grid: progress on react grid\n * grid: progress on new grid, resize & saving layouts works\n * grid: minor progress\n * tech: got angular component to load inside react grid\n * grid: need to find a way to add angular component inside\n react\n * ux: initial react grid poc\n * graphite-tags: refactor, improve performance - remove\n unnecessary parseTarget() calls\n * graphite-tags: add tests\n * graphite-tags: refactor, use <gf-form-dropdown> instead of\n <metric-segment>\n * graphite-tags: initial tag editor\n * Update kbn.js\n * Update kbn.js\n * fixes\n * Use B/s instead Bps for Bytes per second\n * fix merge issue\n * develop: fixed more broken tests, couple still failing\n * ux: alternative row design\n * newgrid: fixes to default home dashboard\n * ux: minor fixes\n * ux: new grid progress\n * grid: minor progres on new grid\n * grid: minor progres on new grid\n * ux: minor button changes\n * ux: minor updates\n * ux: changed cta button style\n * minor fix\n * ux: added scroll to two pages\n * minor fix for page-h1\n * grid work\n * progress on rows as panelsW\n * fixed unit tests\n * minor user avatar stuff\n * started on rows as panels in single grid\n * minor user list cahnge\n * users view update\n * ux: color tweaks\n * Moved around the columns a bit\n * ux: dashboard stuff\n * ux: minor changes\n * ux: sidemenu animation duration\n * ux: fixed sidenav issues\n * ux: sidemenu toggling\n * ux: sidenav fixes and dashboard search changes\n * ux: switching orgs now works through modal\n * ux: making org visibile in profile view\n * ux: more nav work\n * ux: nav fixes & polish\n * ux: more nav work\n * ux: more nav work\n * ux: navigation work\n * ux: sidenav fixes and dashboard search changes\n * ux: more work on sidemenu\n * Silly gradient added a placeholder. no more\n experimentation to be done here until Trent has a pass at\n it\n * ux: scrollbar stuff\n * Added drop shadown for sticky scrolling, moved colors into\n dark and light variables\n * Reduced size of breadcrumbs, additional form styling.\n Colors still need to be adjusted\n * Starting to play with new form styles\n * ux: minor scroll fix\n * ux: removed custom scrollbar look\n * ux: reduced size of sidemenu icons a bit\n * ux: testing fixed sidemenu and breadcrumbs\n * ux: minor navbar update\n * ux: new breadcrumb progress\n * ux: wip\n * ux: new page header look wip\n * ux: testing roboto font\n * ux: use flexbox for sidenav, put logo in sidenav\n * moving panels betwen rows are starting to work\n * grid: progress on row support\n * grid: new grid fixes\n * new-grid: fixed destory issues\n * grid: remove panel works\n * grid: updated gridstack to use grafana fork\n * feat: new grid fixes\n * minor fixes\n * updated\n * feat: new grid system progressW\n * ux: minor panel menu fix\n * ux: minor panel menu tweaks\n * ux: tweaks to new panel menu\n * updated\n * dashfolders: inherited permissions for dashboards\n * dashfolders: handle permission changes when saving/moving\n dashboards\n * added code from #8504, and #8021\n * dashboard folder search fix\n * dashfolders: fix user group picker + cleanup\n * dashfolders: rename refactor\n * dashfolders: validation for duplicates in acl modal\n * minor update\n * ux: style tweaks, trying out non italic headers\n * ux: nav changes\n * added sidemeu stuff\n * dashfolders: use canadmin permission in settings menu\n * dashfolders: tests for permission modal\n * dashboard acl fixes\n * acl fixes\n * dashfolders: new admin permission needed to view/change\n acl\n * acl: more acl work\n * dashfolders: filter search based on child dash permissions\n * dashfolders: allows phantomjs rendering for alerting\n * dashfolders: allow overflow-y for modals\n * dashfolders: security for png rendering\n * dashboard acl stuff\n * dashboard acl work\n * dashboard acl\n * working on dashbord acl stuff\n * WIP: first draft of permissionlist panel\n * dashboard acl\n * dashboard acl work\n * WIP: fix js tests for acl\n * WIP: fix folder-picker for dashlist\n * dashboard acl work\n * refactoring: dashboard folders\n * dashboard acl modal\n * WIP: adding roles - not finished\n * refactoring: moving dashboards acl migrations to its own\n folder\n * WIP: fix acl route\n * refactoring: renaming\n * folders: changed api urls for dashboard acls\n * refactoring more renaming\n * refactoring renaming dashboard folder operations\n * dashboard_folders refactoring\n * refactoring dashboard folder security checks\n * dashboard guardian refactoring starting to work\n * dashboard folders acl work\n * refactoring dashoard folder guardian\n * WIP: refactor user group modal\n * refactoring: Dashboard guardian\n * WIP: remove unused test file\n * WIP: refactor dash search and remove extra query\n * WIP: move guardian logic for search into the sql query\n * WIP: remove dashboard children on delete\n * dashboard_folders: refactoring picker and folder selection\n in dashboard settings & save as menu\n * WIP: adds API check to stop folders being included in\n folders\n * use gf-form-dropdown in user picker\n * WIP: add test for add user group permission\n * WIP: can edit dashboard permission\n * WIP: clean up after user and org user delete\n * WIP: remove permissions when deleting global user\n * dashboard_folders: updated\n * WIP: delete dependent permissions on user group delete\n * dashboard_folders: fixes to user picker & group picker\n * dashboard_folders: fixes to user & group picker\n * minor update\n * WIP: permission checking for dash version api methods\n * ux: gridstack poc\n * Gridstack: testing\n * WIP: check permissions for delete/post dashboard\n * WIP: fixes after version history merge\n * ux: nav experiments\n * WIP: add permission check for GetDashboard\n * ux: side nav experiments\n * WIP: fix test after merge conflict\n * WIP: fix go fmt error\n * WIP: user + user-group pickers for permissions\n * WIP: API - add dash permission\n * WIP: user-picker directive\n * WIP: Permission Type as string in permission query\n * WIP: fixes after navbar changes\n * WIP: dashlist in template for new folder\n * WIP: refactor folder-picker for dashlist\n * WIP: dashboard search by folder + toggle for list or tree\n mode\n * WIP: adds folder-picker to save as dialog\n * WIP: use metric-segment for folder picker\n * WIP: add dummy root folder to folder picker\n * WIP: Create new dashboard button in dash search\n * WIP: permissions moved to settings tab. Adds folder\n dropdown to general settings tab\n * WIP: add parentid to getdashboard query result\n * WIP: dashboard search by type (folder or dash)\n * WIP: fix after upstream sqlstore refactoring\n * WIP: rollback\n * WIP: delete permission in API\n * WIP: user group additions\n * WIP: remove browse mode for dashboard search\n * WIP: get Dashboard Permissions\n * WIP: add open/closed folders icons for dash search\n * WIP: Can remove dashboard permission - sql\n * WIP: limit GetAllowedDashboards sql query with a where in\n * WIP: Add or update Dashboard ACL\n * WIP: guardian service for search\n * dashboard: sort search with dash folder first\n * WIP: add some TS types\n * WIP: edit user group page\n * WIP: API methods for add/remove members to user group\n * WIP: add update user group command\n * WIP: add new group, needs to be redone\n * WIP: add user group search\n * WIP: add usergroup commands and queries\n * WIP: rough prototype of dashboard folders\n * ux: very early start to new sidemenu\n * ux: very early start to new sidemenu\n * ux: minor tweak to faintness of icons of panel menu caret\n * ux: minor progress on panel title menu makover\n * use the original options parameter\n * use targets[0] as the options\n * pass the options along with a _seriesQuery\n * pass database parameter in the options\n * allow setting the database\n * ux: more work on panel menu\n * ux: panel title ux improvements poc\n * Sending image\n * Discord integration\n\nChanges in grafana-natel-discrete-panel:\n- Add recompress source service\n- Add set_version source service\n- Enable changesgenerate for tar_scm source service\n- Update to version 0.0.9:\n * split commands\n * put back the history\n\nChanges in openstack-aodh:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-barbican:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-cinder:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-gnocchi:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-heat:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-ironic:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-magnum:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-manila:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-monasca-agent:\n- Add dependency:\n * fdupes\n * pwdutils and shadow-utils for useradd/groupadd\n- remove rpm-packaging integration\n\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-murano:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-neutron:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-neutron-vpnaas:\n- Add %_tmpfilesdir to %files\n\nChanges in openstack-nova:\n- Add 0014-Provide-VIR_MIGRATE_PARAM_PERSIST_XML-during-live-migration.patch\n - (bsc#1175484, CVE-2020-17376)\n\n- Add 0001-rbd_utils-increase-_destroy_volume-timeout.patch (bsc#1154434)\n - Fix for https://bugs.launchpad.net/nova/+bug/1856845\n\nChanges in openstack-sahara:\n- Add %_tmpfilesdir to %files\n\nChanges in python-google-api-python-client:\n\n- Add pr-201.patch . This enables also older oauth2client\n versions.\n\n- update to 1.5.0:\n - Release to support oauth2client >= 2.0.0.\n - Fix file stream recognition in Python 3 (#141)\n - Fix non-resumable binary uploads in Python 3 (#147)\n - Default to 'octet-stream' if mimetype detection fails (#157)\n - Handle SSL errors with retries (#160)\n - Fix incompatibility with oauth2client v2.0.0 (#182)\n - Add automatic caching for the discovery docs.\n - Add the googleapiclient.discovery.Resource.new_batch_http_request method.\n - Python 3 support.\n - Small bugfix release.\n - Fix an infinite loop for downloading small files.\n - Fix a unicode error in error encoding.\n - Better handling of `content-length` in media requests.\n - Add support for methodPath entries containing colon.\n - Quick release for a fix around aliasing in v1.3.\n - Add support for the Google Application Default Credentials.\n - Require python 2.6 as a minimum version.\n - Update several API samples.\n - Finish splitting out oauth2client repo and update tests.\n - Various doc cleanup and bugfixes.\n - We've added `googleapiclient` as the primary suggested import\n name, and kept `apiclient` as an alias, in order to have a more\n appropriate import name. At some point, we will remove `apiclient`\n as an alias.\n - Due to an issue around in-place upgrades for Python packages,\n it's not possible to do an upgrade from version 1.2 to 1.3. Instead,\n setup.py attempts to detect this and prevents it. Simply remove\n the previous version and reinstall to fix this.\n - The use of the gflags library is now deprecated, and is no longer a\n dependency. If you are still using the oauth2client.tools.run() function\n then include gflags as a dependency of your application or switch to\n oauth2client.tools.run_flow.\n - Samples have been updated to use the new apiclient.sample_tools, and no\n longer use gflags.\n - Added support for the experimental Object Change Notification, as found in\n the Cloud Storage API.\n - The oauth2client App Engine decorators are now threadsafe.\n - Use the following redirects feature of httplib2 where it returns the\n ultimate URL after a series of redirects to avoid multiple hops for every\n resumable media upload request.\n - Updated AdSense Management API samples to V1.3\n - Add option to automatically retry requests.\n - Ability to list registered keys in multistore_file.\n - User-agent must contain (gzip).\n - The 'method' parameter for httplib2 is not positional. This would cause\n spurious warnings in the logging.\n - Making OAuth2Decorator more extensible. Fixes Issue 256.\n - Update AdExchange Buyer API examples to version v1.2.\n - Add PEM support to SignedJWTAssertionCredentials (used to only support\n PKCS12 formatted keys). Note that if you use PEM formatted keys you can use\n PyCrypto 2.6 or later instead of OpenSSL.\n - Allow deserialized discovery docs to be passed to build_from_document().\n - Make ResumableUploadError derive from HttpError.\n - Many changes to move all the closures in apiclient.discovery into real\n classes and objects.\n - Make from_json behavior inheritable.\n - Expose the full token response in OAuth2Client and OAuth2Decorator.\n - Handle reasons that are None.\n - Added support for NDB based storing of oauth2client objects.\n - Update grant_type for AssertionCredentials.\n - Adding a .revoke() to Credentials. Closes issue 98.\n - Modify oauth2client.multistore_file to store and retrieve credentials\n using an arbitrary key.\n - Don't accept 403 challenges by default for auth challenges.\n - Set httplib2.RETRIES to 1.\n - Consolidate handling of scopes.\n - Upgrade to httplib2 version 0.8.\n - Allow setting the response_type in OAuth2WebServerFlow.\n - Ensure that dataWrapper feature is checked before using the 'data' value.\n - HMAC verification does not use a constant time algorithm.\n- Fix description\n- Update BuildRequires and Requires\n- Use Source from pypi\n\nChanges in python-Pillow:\n- Add 0019-FLI-overflow-error-fix-and-testcase.patch\n * From upstream, backported\n * Fixes CVE-2016-0775, bsc#965582\n- Add 0020-Fix-OOB-reads-in-FLI-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-10177, bsc#1173413\n- Add 0021-Fix-bounds-overflow-in-JPEG-2000-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-10994, bsc#1173418\n- Add 0022-Fix-bounds-overflow-in-PCX-decoding.patch\n * From upstream, backported\n * Fixes CVE-2020-10378, bsc#1173416\n\nChanges in rubygem-crowbar-client:\n- Update to 3.9.3\n - Enable restricted commands for Cloud 7 (bsc#1117080, CVE-2018-17954)\n\n ", title: "Description of the patch", }, { category: "details", text: "SUSE-2020-2911,SUSE-OpenStack-Cloud-7-2020-2911", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_2911-1.json", }, { category: "self", summary: "URL for SUSE-SU-2020:2911-1", url: "https://www.suse.com/support/update/announcement/2020/suse-su-20202911-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2020:2911-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2020-October/007550.html", }, { category: "self", summary: "SUSE Bug 1117080", url: "https://bugzilla.suse.com/1117080", }, { category: "self", summary: "SUSE Bug 1154434", url: "https://bugzilla.suse.com/1154434", }, { category: "self", summary: "SUSE Bug 1164140", url: "https://bugzilla.suse.com/1164140", }, { category: "self", summary: "SUSE Bug 1171823", url: "https://bugzilla.suse.com/1171823", }, { category: "self", summary: "SUSE Bug 1172450", url: "https://bugzilla.suse.com/1172450", }, { category: "self", summary: "SUSE Bug 1173413", url: "https://bugzilla.suse.com/1173413", }, { category: "self", summary: "SUSE Bug 1173416", url: "https://bugzilla.suse.com/1173416", }, { category: "self", summary: "SUSE Bug 1173418", url: "https://bugzilla.suse.com/1173418", }, { category: "self", summary: "SUSE Bug 1174583", url: "https://bugzilla.suse.com/1174583", }, { category: "self", summary: "SUSE Bug 1175484", url: "https://bugzilla.suse.com/1175484", }, { category: "self", summary: "SUSE Bug 965582", url: "https://bugzilla.suse.com/965582", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, { category: "self", summary: "SUSE CVE CVE-2018-17954 page", url: "https://www.suse.com/security/cve/CVE-2018-17954/", }, { category: "self", summary: "SUSE CVE CVE-2018-18623 page", url: "https://www.suse.com/security/cve/CVE-2018-18623/", }, { category: "self", summary: "SUSE CVE CVE-2018-18624 page", url: "https://www.suse.com/security/cve/CVE-2018-18624/", }, { category: "self", summary: "SUSE CVE CVE-2018-18625 page", url: "https://www.suse.com/security/cve/CVE-2018-18625/", }, { category: "self", summary: "SUSE CVE CVE-2019-15043 page", url: "https://www.suse.com/security/cve/CVE-2019-15043/", }, { category: "self", summary: "SUSE CVE CVE-2020-10177 page", url: "https://www.suse.com/security/cve/CVE-2020-10177/", }, { category: "self", summary: "SUSE CVE CVE-2020-10378 page", url: "https://www.suse.com/security/cve/CVE-2020-10378/", }, { category: "self", summary: "SUSE CVE CVE-2020-10744 page", url: "https://www.suse.com/security/cve/CVE-2020-10744/", }, { category: "self", summary: "SUSE CVE CVE-2020-10994 page", url: "https://www.suse.com/security/cve/CVE-2020-10994/", }, { category: "self", summary: "SUSE CVE CVE-2020-11110 page", url: "https://www.suse.com/security/cve/CVE-2020-11110/", }, { category: "self", summary: "SUSE CVE CVE-2020-12052 page", url: "https://www.suse.com/security/cve/CVE-2020-12052/", }, { category: "self", summary: "SUSE CVE CVE-2020-13379 page", url: "https://www.suse.com/security/cve/CVE-2020-13379/", }, { category: "self", summary: "SUSE CVE CVE-2020-1733 page", url: "https://www.suse.com/security/cve/CVE-2020-1733/", }, { category: "self", summary: "SUSE CVE CVE-2020-17376 page", url: "https://www.suse.com/security/cve/CVE-2020-17376/", }, ], title: "Security update for ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-panel, openstack-aodh, openstack-barbican, openstack-cinder, openstack-gnocchi, openstack-heat, openstack-ironic, openstack-magnum, openstack-manila, openstack-monasca-agent, openstack-murano, openstack-neutron, openstack-neutron-vpnaas, openstack-nova, openstack-sahara, python-Pillow, rubygem-crowbar-client", tracking: { current_release_date: "2020-10-13T14:46:03Z", generator: { date: "2020-10-13T14:46:03Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2020:2911-1", initial_release_date: "2020-10-13T14:46:03Z", revision_history: [ { date: "2020-10-13T14:46:03Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", product: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", product_id: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", product: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", product_id: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", }, }, { category: "product_version", name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.aarch64", product: { name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.aarch64", product_id: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.aarch64", }, }, { category: "product_version", name: "grafana-6.7.4-1.17.1.aarch64", product: { name: "grafana-6.7.4-1.17.1.aarch64", product_id: "grafana-6.7.4-1.17.1.aarch64", }, }, { category: "product_version", name: "python-Pillow-2.8.1-4.17.2.aarch64", product: { name: "python-Pillow-2.8.1-4.17.2.aarch64", product_id: "python-Pillow-2.8.1-4.17.2.aarch64", }, }, { category: "product_version", name: "python-Pillow-tk-2.8.1-4.17.2.aarch64", product: { name: "python-Pillow-tk-2.8.1-4.17.2.aarch64", product_id: "python-Pillow-tk-2.8.1-4.17.2.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", product: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", product_id: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.aarch64", product: { name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.aarch64", product_id: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.aarch64", product: { name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.aarch64", product_id: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "ansible-2.2.3.0-17.2.noarch", product: { name: "ansible-2.2.3.0-17.2.noarch", product_id: "ansible-2.2.3.0-17.2.noarch", }, }, { category: "product_version", name: "crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", product: { name: "crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", product_id: "crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", }, }, { category: "product_version", name: "grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", product: { name: "grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", product_id: "grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", }, }, { category: "product_version", name: "openstack-aodh-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", product: { name: "openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", product_id: "openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", }, }, { category: "product_version", name: "openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-aodh-test-3.0.5~dev2-2.11.2.noarch", product: { name: "openstack-aodh-test-3.0.5~dev2-2.11.2.noarch", product_id: "openstack-aodh-test-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "openstack-barbican-3.0.1~dev9-2.12.4.noarch", product: { name: "openstack-barbican-3.0.1~dev9-2.12.4.noarch", product_id: "openstack-barbican-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", product: { name: "openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", product_id: "openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", product: { name: "openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", product_id: "openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", }, }, { category: "product_version", name: "openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", product: { name: "openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", product_id: "openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", product: { name: "openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", product_id: "openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "openstack-barbican-test-3.0.1~dev9-2.12.4.noarch", product: { name: "openstack-barbican-test-3.0.1~dev9-2.12.4.noarch", product_id: "openstack-barbican-test-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", product: { name: "openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", product_id: "openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "openstack-cinder-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-test-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-test-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-test-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", product: { name: "openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", product_id: "openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-doc-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-doc-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-doc-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-gnocchi-test-3.0.7~dev1-2.8.2.noarch", product: { name: "openstack-gnocchi-test-3.0.7~dev1-2.8.2.noarch", product_id: "openstack-gnocchi-test-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-heat-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-heat-api-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-api-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-api-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", product: { name: "openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", product_id: "openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", }, }, { category: "product_version", name: "openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-heat-test-7.0.7~dev10-5.17.3.noarch", product: { name: "openstack-heat-test-7.0.7~dev10-5.17.3.noarch", product_id: "openstack-heat-test-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "openstack-ironic-6.2.5~dev3-2.8.2.noarch", product: { name: "openstack-ironic-6.2.5~dev3-2.8.2.noarch", product_id: "openstack-ironic-6.2.5~dev3-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", product: { name: "openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", product_id: "openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", product: { name: "openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", product_id: "openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", product: { name: "openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", product_id: "openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-test-6.2.5~dev3-2.8.2.noarch", product: { name: "openstack-ironic-test-6.2.5~dev3-2.8.2.noarch", product_id: "openstack-ironic-test-6.2.5~dev3-2.8.2.noarch", }, }, { category: "product_version", name: "openstack-magnum-3.3.2~dev7-14.14.4.noarch", product: { name: "openstack-magnum-3.3.2~dev7-14.14.4.noarch", product_id: "openstack-magnum-3.3.2~dev7-14.14.4.noarch", }, }, { category: "product_version", name: "openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", product: { name: "openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", product_id: "openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", }, }, { category: "product_version", name: "openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", product: { name: "openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", product_id: "openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", }, }, { category: "product_version", name: "openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", product: { name: "openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", product_id: "openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", }, }, { category: "product_version", name: "openstack-magnum-test-3.3.2~dev7-14.14.4.noarch", product: { name: "openstack-magnum-test-3.3.2~dev7-14.14.4.noarch", product_id: "openstack-magnum-test-3.3.2~dev7-14.14.4.noarch", }, }, { category: "product_version", name: "openstack-manila-3.0.1~dev30-4.17.2.noarch", product: { name: "openstack-manila-3.0.1~dev30-4.17.2.noarch", product_id: "openstack-manila-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "openstack-manila-api-3.0.1~dev30-4.17.2.noarch", product: { name: "openstack-manila-api-3.0.1~dev30-4.17.2.noarch", product_id: "openstack-manila-api-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "openstack-manila-data-3.0.1~dev30-4.17.2.noarch", product: { name: "openstack-manila-data-3.0.1~dev30-4.17.2.noarch", product_id: "openstack-manila-data-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", product: { name: "openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", product_id: "openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", }, }, { category: "product_version", name: "openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", product: { name: "openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", product_id: "openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "openstack-manila-share-3.0.1~dev30-4.17.2.noarch", product: { name: "openstack-manila-share-3.0.1~dev30-4.17.2.noarch", product_id: "openstack-manila-share-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "openstack-manila-test-3.0.1~dev30-4.17.2.noarch", product: { name: "openstack-manila-test-3.0.1~dev30-4.17.2.noarch", product_id: "openstack-manila-test-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "openstack-monasca-agent-1.10.1~dev4-13.3.noarch", product: { name: "openstack-monasca-agent-1.10.1~dev4-13.3.noarch", product_id: "openstack-monasca-agent-1.10.1~dev4-13.3.noarch", }, }, { category: "product_version", name: "openstack-murano-3.0.1~dev21-7.5.3.noarch", product: { name: "openstack-murano-3.0.1~dev21-7.5.3.noarch", product_id: "openstack-murano-3.0.1~dev21-7.5.3.noarch", }, }, { category: "product_version", name: "openstack-murano-api-3.0.1~dev21-7.5.3.noarch", product: { name: "openstack-murano-api-3.0.1~dev21-7.5.3.noarch", product_id: "openstack-murano-api-3.0.1~dev21-7.5.3.noarch", }, }, { category: "product_version", name: "openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", product: { name: "openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", product_id: "openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", }, }, { category: "product_version", name: "openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", product: { name: "openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", product_id: "openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", }, }, { category: "product_version", name: "openstack-murano-test-3.0.1~dev21-7.5.3.noarch", product: { name: "openstack-murano-test-3.0.1~dev21-7.5.3.noarch", product_id: "openstack-murano-test-3.0.1~dev21-7.5.3.noarch", }, }, { category: "product_version", name: "openstack-neutron-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", product: { name: "openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", product_id: "openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-test-9.4.2~dev21-7.43.2.noarch", product: { name: "openstack-neutron-test-9.4.2~dev21-7.43.2.noarch", product_id: "openstack-neutron-test-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", product: { name: "openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", product_id: "openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", product: { name: "openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", product_id: "openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", product: { name: "openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", product_id: "openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", product: { name: "openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", product_id: "openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", }, }, { category: "product_version", name: "openstack-nova-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-api-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-api-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-api-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-console-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-console-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-console-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", product: { name: "openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", product_id: "openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", }, }, { category: "product_version", name: "openstack-nova-network-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-network-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-network-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-test-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-test-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-test-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "openstack-sahara-5.0.2~dev3-14.3.noarch", product: { name: "openstack-sahara-5.0.2~dev3-14.3.noarch", product_id: "openstack-sahara-5.0.2~dev3-14.3.noarch", }, }, { category: "product_version", name: "openstack-sahara-api-5.0.2~dev3-14.3.noarch", product: { name: "openstack-sahara-api-5.0.2~dev3-14.3.noarch", product_id: "openstack-sahara-api-5.0.2~dev3-14.3.noarch", }, }, { category: "product_version", name: "openstack-sahara-doc-5.0.2~dev3-14.1.noarch", product: { name: "openstack-sahara-doc-5.0.2~dev3-14.1.noarch", product_id: "openstack-sahara-doc-5.0.2~dev3-14.1.noarch", }, }, { category: "product_version", name: "openstack-sahara-engine-5.0.2~dev3-14.3.noarch", product: { name: "openstack-sahara-engine-5.0.2~dev3-14.3.noarch", product_id: "openstack-sahara-engine-5.0.2~dev3-14.3.noarch", }, }, { category: "product_version", name: "openstack-sahara-test-5.0.2~dev3-14.3.noarch", product: { name: "openstack-sahara-test-5.0.2~dev3-14.3.noarch", product_id: "openstack-sahara-test-5.0.2~dev3-14.3.noarch", }, }, { category: "product_version", name: "openstack-xen-plugins-14.0.11~dev13-4.45.3.noarch", product: { name: "openstack-xen-plugins-14.0.11~dev13-4.45.3.noarch", product_id: "openstack-xen-plugins-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "python-aodh-3.0.5~dev2-2.11.2.noarch", product: { name: "python-aodh-3.0.5~dev2-2.11.2.noarch", product_id: "python-aodh-3.0.5~dev2-2.11.2.noarch", }, }, { category: "product_version", name: "python-barbican-3.0.1~dev9-2.12.4.noarch", product: { name: "python-barbican-3.0.1~dev9-2.12.4.noarch", product_id: "python-barbican-3.0.1~dev9-2.12.4.noarch", }, }, { category: "product_version", name: "python-cinder-9.1.5~dev6-4.28.1.noarch", product: { name: "python-cinder-9.1.5~dev6-4.28.1.noarch", product_id: "python-cinder-9.1.5~dev6-4.28.1.noarch", }, }, { category: "product_version", name: "python-gnocchi-3.0.7~dev1-2.8.2.noarch", product: { name: "python-gnocchi-3.0.7~dev1-2.8.2.noarch", product_id: "python-gnocchi-3.0.7~dev1-2.8.2.noarch", }, }, { category: "product_version", name: "python-heat-7.0.7~dev10-5.17.3.noarch", product: { name: "python-heat-7.0.7~dev10-5.17.3.noarch", product_id: "python-heat-7.0.7~dev10-5.17.3.noarch", }, }, { category: "product_version", name: "python-ironic-6.2.5~dev3-2.8.2.noarch", product: { name: "python-ironic-6.2.5~dev3-2.8.2.noarch", product_id: "python-ironic-6.2.5~dev3-2.8.2.noarch", }, }, { category: "product_version", name: "python-magnum-3.3.2~dev7-14.14.4.noarch", product: { name: "python-magnum-3.3.2~dev7-14.14.4.noarch", product_id: "python-magnum-3.3.2~dev7-14.14.4.noarch", }, }, { category: "product_version", name: "python-manila-3.0.1~dev30-4.17.2.noarch", product: { name: "python-manila-3.0.1~dev30-4.17.2.noarch", product_id: "python-manila-3.0.1~dev30-4.17.2.noarch", }, }, { category: "product_version", name: "python-monasca-agent-1.10.1~dev4-13.3.noarch", product: { name: "python-monasca-agent-1.10.1~dev4-13.3.noarch", product_id: "python-monasca-agent-1.10.1~dev4-13.3.noarch", }, }, { category: "product_version", name: "python-murano-3.0.1~dev21-7.5.3.noarch", product: { name: "python-murano-3.0.1~dev21-7.5.3.noarch", product_id: "python-murano-3.0.1~dev21-7.5.3.noarch", }, }, { category: "product_version", name: "python-neutron-9.4.2~dev21-7.43.2.noarch", product: { name: "python-neutron-9.4.2~dev21-7.43.2.noarch", product_id: "python-neutron-9.4.2~dev21-7.43.2.noarch", }, }, { category: "product_version", name: "python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", product: { name: "python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", product_id: "python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", }, }, { category: "product_version", name: "python-nova-14.0.11~dev13-4.45.3.noarch", product: { name: "python-nova-14.0.11~dev13-4.45.3.noarch", product_id: "python-nova-14.0.11~dev13-4.45.3.noarch", }, }, { category: "product_version", name: "python-sahara-5.0.2~dev3-14.3.noarch", product: { name: "python-sahara-5.0.2~dev3-14.3.noarch", product_id: "python-sahara-5.0.2~dev3-14.3.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", product: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", product_id: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", product: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", product_id: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", }, }, { category: "product_version", name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", product: { name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", product_id: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.ppc64le", }, }, { category: "product_version", name: "grafana-6.7.4-1.17.1.ppc64le", product: { name: "grafana-6.7.4-1.17.1.ppc64le", product_id: "grafana-6.7.4-1.17.1.ppc64le", }, }, { category: "product_version", name: "python-Pillow-2.8.1-4.17.2.ppc64le", product: { name: "python-Pillow-2.8.1-4.17.2.ppc64le", product_id: "python-Pillow-2.8.1-4.17.2.ppc64le", }, }, { category: "product_version", name: "python-Pillow-tk-2.8.1-4.17.2.ppc64le", product: { name: "python-Pillow-tk-2.8.1-4.17.2.ppc64le", product_id: "python-Pillow-tk-2.8.1-4.17.2.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.ppc64le", product: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.ppc64le", product_id: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.ppc64le", product: { name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.ppc64le", product_id: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.ppc64le", product: { name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.ppc64le", product_id: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", product: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", product_id: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", product: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", product_id: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", }, }, { category: "product_version", name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.s390x", product: { name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.s390x", product_id: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.s390x", }, }, { category: "product_version", name: "grafana-6.7.4-1.17.1.s390x", product: { name: "grafana-6.7.4-1.17.1.s390x", product_id: "grafana-6.7.4-1.17.1.s390x", }, }, { category: "product_version", name: "python-Pillow-2.8.1-4.17.2.s390x", product: { name: "python-Pillow-2.8.1-4.17.2.s390x", product_id: "python-Pillow-2.8.1-4.17.2.s390x", }, }, { category: "product_version", name: "python-Pillow-tk-2.8.1-4.17.2.s390x", product: { name: "python-Pillow-tk-2.8.1-4.17.2.s390x", product_id: "python-Pillow-tk-2.8.1-4.17.2.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", product: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", product_id: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.s390x", product: { name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.s390x", product_id: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.s390x", product: { name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.s390x", product_id: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", product: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", product_id: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", }, }, { category: "product_version", name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", product: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", product_id: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", }, }, { category: "product_version", name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.x86_64", product: { name: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.x86_64", product_id: "crowbar-core-devel-4.0+git.1600767499.0615a418f-9.69.3.x86_64", }, }, { category: "product_version", name: "grafana-6.7.4-1.17.1.x86_64", product: { name: "grafana-6.7.4-1.17.1.x86_64", product_id: "grafana-6.7.4-1.17.1.x86_64", }, }, { category: "product_version", name: "python-Pillow-2.8.1-4.17.2.x86_64", product: { name: "python-Pillow-2.8.1-4.17.2.x86_64", product_id: "python-Pillow-2.8.1-4.17.2.x86_64", }, }, { category: "product_version", name: "python-Pillow-tk-2.8.1-4.17.2.x86_64", product: { name: "python-Pillow-tk-2.8.1-4.17.2.x86_64", product_id: "python-Pillow-tk-2.8.1-4.17.2.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", product: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", product_id: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.x86_64", product: { name: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.x86_64", product_id: "ruby2.1-rubygem-crowbar-client-doc-3.9.3-7.23.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.x86_64", product: { name: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.x86_64", product_id: "ruby2.1-rubygem-crowbar-client-testsuite-3.9.3-7.23.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 7", product: { name: "SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:7", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ansible-2.2.3.0-17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", }, product_reference: "ansible-2.2.3.0-17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", }, product_reference: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", }, product_reference: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", }, product_reference: "crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", }, product_reference: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", }, product_reference: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", }, product_reference: "crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", }, product_reference: "crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-1.17.1.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", }, product_reference: "grafana-6.7.4-1.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "grafana-natel-discrete-panel-0.0.9-1.6.5.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", }, product_reference: "grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", }, product_reference: "openstack-aodh-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-api-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", }, product_reference: "openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", }, product_reference: "openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", }, product_reference: "openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", }, product_reference: "openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", }, product_reference: "openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", }, product_reference: "openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-3.0.1~dev9-2.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", }, product_reference: "openstack-barbican-3.0.1~dev9-2.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-api-3.0.1~dev9-2.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", }, product_reference: "openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", }, product_reference: "openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", }, product_reference: "openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", }, product_reference: "openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", }, product_reference: "openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", }, product_reference: "openstack-cinder-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-api-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", }, product_reference: "openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", }, product_reference: "openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", }, product_reference: "openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", }, product_reference: "openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", }, product_reference: "openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-gnocchi-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", }, product_reference: "openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", }, product_reference: "openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", }, product_reference: "openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", }, product_reference: "openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", }, product_reference: "openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", }, product_reference: "openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-api-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-api-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-doc-7.0.7~dev10-5.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", }, product_reference: "openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-engine-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-test-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", }, product_reference: "openstack-heat-test-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-6.2.5~dev3-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", }, product_reference: "openstack-ironic-6.2.5~dev3-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-6.2.5~dev3-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", }, product_reference: "openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", }, product_reference: "openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", }, product_reference: "openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-3.3.2~dev7-14.14.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", }, product_reference: "openstack-magnum-3.3.2~dev7-14.14.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-api-3.3.2~dev7-14.14.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", }, product_reference: "openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", }, product_reference: "openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", }, product_reference: "openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-3.0.1~dev30-4.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", }, product_reference: "openstack-manila-3.0.1~dev30-4.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-api-3.0.1~dev30-4.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", }, product_reference: "openstack-manila-api-3.0.1~dev30-4.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-data-3.0.1~dev30-4.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", }, product_reference: "openstack-manila-data-3.0.1~dev30-4.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-doc-3.0.1~dev30-4.17.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", }, product_reference: "openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", }, product_reference: "openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-manila-share-3.0.1~dev30-4.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", }, product_reference: "openstack-manila-share-3.0.1~dev30-4.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-monasca-agent-1.10.1~dev4-13.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", }, product_reference: "openstack-monasca-agent-1.10.1~dev4-13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-murano-3.0.1~dev21-7.5.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", }, product_reference: "openstack-murano-3.0.1~dev21-7.5.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-murano-api-3.0.1~dev21-7.5.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", }, product_reference: "openstack-murano-api-3.0.1~dev21-7.5.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-murano-doc-3.0.1~dev21-7.5.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", }, product_reference: "openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-murano-engine-3.0.1~dev21-7.5.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", }, product_reference: "openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", }, product_reference: "openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", }, product_reference: "openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", }, product_reference: "openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", }, product_reference: "openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", }, product_reference: "openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", }, product_reference: "openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-api-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-api-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cells-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-cert-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-compute-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-console-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-console-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-doc-14.0.11~dev13-4.45.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", }, product_reference: "openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", }, product_reference: "openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-sahara-5.0.2~dev3-14.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", }, product_reference: "openstack-sahara-5.0.2~dev3-14.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-sahara-api-5.0.2~dev3-14.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", }, product_reference: "openstack-sahara-api-5.0.2~dev3-14.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-sahara-doc-5.0.2~dev3-14.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", }, product_reference: "openstack-sahara-doc-5.0.2~dev3-14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "openstack-sahara-engine-5.0.2~dev3-14.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", }, product_reference: "openstack-sahara-engine-5.0.2~dev3-14.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-2.8.1-4.17.2.aarch64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", }, product_reference: "python-Pillow-2.8.1-4.17.2.aarch64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-2.8.1-4.17.2.s390x as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", }, product_reference: "python-Pillow-2.8.1-4.17.2.s390x", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-2.8.1-4.17.2.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", }, product_reference: "python-Pillow-2.8.1-4.17.2.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-aodh-3.0.5~dev2-2.11.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", }, product_reference: "python-aodh-3.0.5~dev2-2.11.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-barbican-3.0.1~dev9-2.12.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", }, product_reference: "python-barbican-3.0.1~dev9-2.12.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-cinder-9.1.5~dev6-4.28.1.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", }, product_reference: "python-cinder-9.1.5~dev6-4.28.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-gnocchi-3.0.7~dev1-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", }, product_reference: "python-gnocchi-3.0.7~dev1-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-heat-7.0.7~dev10-5.17.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", }, product_reference: "python-heat-7.0.7~dev10-5.17.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-ironic-6.2.5~dev3-2.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", }, product_reference: "python-ironic-6.2.5~dev3-2.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-magnum-3.3.2~dev7-14.14.4.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", }, product_reference: "python-magnum-3.3.2~dev7-14.14.4.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-manila-3.0.1~dev30-4.17.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", }, product_reference: "python-manila-3.0.1~dev30-4.17.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-monasca-agent-1.10.1~dev4-13.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", }, product_reference: "python-monasca-agent-1.10.1~dev4-13.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-murano-3.0.1~dev21-7.5.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", }, product_reference: "python-murano-3.0.1~dev21-7.5.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-neutron-9.4.2~dev21-7.43.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", }, product_reference: "python-neutron-9.4.2~dev21-7.43.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", }, product_reference: "python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-nova-14.0.11~dev13-4.45.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", }, product_reference: "python-nova-14.0.11~dev13-4.45.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "python-sahara-5.0.2~dev3-14.3.noarch as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", }, product_reference: "python-sahara-5.0.2~dev3-14.3.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", }, product_reference: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", }, product_reference: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64 as component of SUSE OpenStack Cloud 7", product_id: "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", }, product_reference: "ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 7", }, ], }, vulnerabilities: [ { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2016-0775", }, { cve: "CVE-2018-17954", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17954", }, ], notes: [ { category: "general", text: "An Improper Privilege Management in crowbar of SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud 9, SUSE OpenStack Cloud Crowbar 8, SUSE OpenStack Cloud Crowbar 9 allows root users on any crowbar managed node to cause become root on any other node. This issue affects: SUSE OpenStack Cloud 7 crowbar-core versions prior to 4.0+git.1578392992.fabfd186c-9.63.1, crowbar-. SUSE OpenStack Cloud 8 ardana-cinder versions prior to 8.0+git.1579279939.ee7da88-3.39.3, ardana-. SUSE OpenStack Cloud 9 ardana-ansible versions prior to 9.0+git.1581611758.f694f7d-3.16.1, ardana-. SUSE OpenStack Cloud Crowbar 8 crowbar-core versions prior to 5.0+git.1582968668.1a55c77c5-3.35.4, crowbar-. SUSE OpenStack Cloud Crowbar 9 crowbar-core versions prior to 6.0+git.1582892022.cbd70e833-3.19.3, crowbar-.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17954", url: "https://www.suse.com/security/cve/CVE-2018-17954", }, { category: "external", summary: "SUSE Bug 1117080 for CVE-2018-17954", url: "https://bugzilla.suse.com/1117080", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "important", }, ], title: "CVE-2018-17954", }, { cve: "CVE-2018-18623", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-18623", }, ], notes: [ { category: "general", text: "Grafana 5.3.1 has XSS via the \"Dashboard > Text Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-18623", url: "https://www.suse.com/security/cve/CVE-2018-18623", }, { category: "external", summary: "SUSE Bug 1172450 for CVE-2018-18623", url: "https://bugzilla.suse.com/1172450", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2018-18623", url: "https://bugzilla.suse.com/1174583", }, { category: "external", summary: "SUSE Bug 1175951 for CVE-2018-18623", url: "https://bugzilla.suse.com/1175951", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2018-18623", }, { cve: "CVE-2018-18624", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-18624", }, ], notes: [ { category: "general", text: "Grafana 5.3.1 has XSS via a column style on the \"Dashboard > Table Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-18624", url: "https://www.suse.com/security/cve/CVE-2018-18624", }, { category: "external", summary: "SUSE Bug 1172450 for CVE-2018-18624", url: "https://bugzilla.suse.com/1172450", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2018-18624", url: "https://bugzilla.suse.com/1174583", }, { category: "external", summary: "SUSE Bug 1175951 for CVE-2018-18624", url: "https://bugzilla.suse.com/1175951", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2018-18624", }, { cve: "CVE-2018-18625", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-18625", }, ], notes: [ { category: "general", text: "Grafana 5.3.1 has XSS via a link on the \"Dashboard > All Panels > General\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-18625", url: "https://www.suse.com/security/cve/CVE-2018-18625", }, { category: "external", summary: "SUSE Bug 1172450 for CVE-2018-18625", url: "https://bugzilla.suse.com/1172450", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2018-18625", url: "https://bugzilla.suse.com/1174583", }, { category: "external", summary: "SUSE Bug 1175951 for CVE-2018-18625", url: "https://bugzilla.suse.com/1175951", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2018-18625", }, { cve: "CVE-2019-15043", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-15043", }, ], notes: [ { category: "general", text: "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-15043", url: "https://www.suse.com/security/cve/CVE-2019-15043", }, { category: "external", summary: "SUSE Bug 1148383 for CVE-2019-15043", url: "https://bugzilla.suse.com/1148383", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "important", }, ], title: "CVE-2019-15043", }, { cve: "CVE-2020-10177", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10177", }, ], notes: [ { category: "general", text: "Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10177", url: "https://www.suse.com/security/cve/CVE-2020-10177", }, { category: "external", summary: "SUSE Bug 1173413 for CVE-2020-10177", url: "https://bugzilla.suse.com/1173413", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-10177", }, { cve: "CVE-2020-10378", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10378", }, ], notes: [ { category: "general", text: "In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10378", url: "https://www.suse.com/security/cve/CVE-2020-10378", }, { category: "external", summary: "SUSE Bug 1161670 for CVE-2020-10378", url: "https://bugzilla.suse.com/1161670", }, { category: "external", summary: "SUSE Bug 1173416 for CVE-2020-10378", url: "https://bugzilla.suse.com/1173416", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-10378", }, { cve: "CVE-2020-10744", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10744", }, ], notes: [ { category: "general", text: "An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Ansible Engine 2.7.18, 2.8.12, and 2.9.9 as well as previous versions are affected and Ansible Tower 3.4.5, 3.5.6 and 3.6.4 as well as previous versions are affected.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10744", url: "https://www.suse.com/security/cve/CVE-2020-10744", }, { category: "external", summary: "SUSE Bug 1171823 for CVE-2020-10744", url: "https://bugzilla.suse.com/1171823", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-10744", }, { cve: "CVE-2020-10994", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10994", }, ], notes: [ { category: "general", text: "In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10994", url: "https://www.suse.com/security/cve/CVE-2020-10994", }, { category: "external", summary: "SUSE Bug 1173418 for CVE-2020-10994", url: "https://bugzilla.suse.com/1173418", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-10994", }, { cve: "CVE-2020-11110", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11110", }, ], notes: [ { category: "general", text: "Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11110", url: "https://www.suse.com/security/cve/CVE-2020-11110", }, { category: "external", summary: "SUSE Bug 1174583 for CVE-2020-11110", url: "https://bugzilla.suse.com/1174583", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-11110", }, { cve: "CVE-2020-12052", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-12052", }, ], notes: [ { category: "general", text: "Grafana version < 6.7.3 is vulnerable for annotation popup XSS.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-12052", url: "https://www.suse.com/security/cve/CVE-2020-12052", }, { category: "external", summary: "SUSE Bug 1170657 for CVE-2020-12052", url: "https://bugzilla.suse.com/1170657", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-12052", }, { cve: "CVE-2020-13379", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-13379", }, ], notes: [ { category: "general", text: "The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information about the network that Grafana is running on. Furthermore, passing invalid URL objects could be used for DOS'ing Grafana via SegFault.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-13379", url: "https://www.suse.com/security/cve/CVE-2020-13379", }, { category: "external", summary: "SUSE Bug 1172409 for CVE-2020-13379", url: "https://bugzilla.suse.com/1172409", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "important", }, ], title: "CVE-2020-13379", }, { cve: "CVE-2020-1733", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-1733", }, ], notes: [ { category: "general", text: "A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an unprivileged become user. When Ansible needs to run a module with become user, the temporary directory is created in /var/tmp. This directory is created with \"umask 77 && mkdir -p <dir>\"; this operation does not fail if the directory already exists and is owned by another user. An attacker could take advantage to gain control of the become user as the target directory can be retrieved by iterating '/proc/<pid>/cmdline'.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-1733", url: "https://www.suse.com/security/cve/CVE-2020-1733", }, { category: "external", summary: "SUSE Bug 1164140 for CVE-2020-1733", url: "https://bugzilla.suse.com/1164140", }, { category: "external", summary: "SUSE Bug 1171823 for CVE-2020-1733", url: "https://bugzilla.suse.com/1171823", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "moderate", }, ], title: "CVE-2020-1733", }, { cve: "CVE-2020-17376", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-17376", }, ], notes: [ { category: "general", text: "An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova before 19.3.1, 20.x before 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share the same paths as host devices previously referenced by the virtual machine on the source host. This can include block devices that map to different Cinder volumes at the destination than at the source. Only deployments allowing host-based connections (for instance, root and ephemeral devices) are affected.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-17376", url: "https://www.suse.com/security/cve/CVE-2020-17376", }, { category: "external", summary: "SUSE Bug 1175484 for CVE-2020-17376", url: "https://bugzilla.suse.com/1175484", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 7:ansible-2.2.3.0-17.2.noarch", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.aarch64", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.s390x", "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1600767499.0615a418f-9.69.3.x86_64", "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1599037255.25b759234-9.74.4.noarch", "SUSE OpenStack Cloud 7:grafana-6.7.4-1.17.1.x86_64", "SUSE OpenStack Cloud 7:grafana-natel-discrete-panel-0.0.9-1.6.5.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-api-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-doc-3.0.5~dev2-2.11.1.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-evaluator-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-expirer-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-listener-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-aodh-notifier-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-api-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-doc-3.0.1~dev9-2.12.2.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-keystone-listener-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-retry-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-barbican-worker-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-api-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-backup-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-doc-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-scheduler-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-cinder-volume-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-api-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-carbonara-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-indexer-sqlalchemy-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-metricd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-gnocchi-statsd-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cfn-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-api-cloudwatch-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-doc-7.0.7~dev10-5.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-heat-engine-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-plugin-heat_docker-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-heat-test-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-api-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-conductor-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-ironic-doc-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-api-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-conductor-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:openstack-magnum-doc-3.3.2~dev7-14.14.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.17.1.noarch", "SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:openstack-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-api-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-murano-doc-3.0.1~dev21-7.5.1.noarch", "SUSE OpenStack Cloud 7:openstack-murano-engine-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.43.1.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpn-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vpnaas-doc-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-neutron-vyatta-agent-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.45.2.noarch", "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-api-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-doc-5.0.2~dev3-14.1.noarch", "SUSE OpenStack Cloud 7:openstack-sahara-engine-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.aarch64", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.s390x", "SUSE OpenStack Cloud 7:python-Pillow-2.8.1-4.17.2.x86_64", "SUSE OpenStack Cloud 7:python-aodh-3.0.5~dev2-2.11.2.noarch", "SUSE OpenStack Cloud 7:python-barbican-3.0.1~dev9-2.12.4.noarch", "SUSE OpenStack Cloud 7:python-cinder-9.1.5~dev6-4.28.1.noarch", "SUSE OpenStack Cloud 7:python-gnocchi-3.0.7~dev1-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-heat-7.0.7~dev10-5.17.3.noarch", "SUSE OpenStack Cloud 7:python-ironic-6.2.5~dev3-2.8.2.noarch", "SUSE OpenStack Cloud 7:python-magnum-3.3.2~dev7-14.14.4.noarch", "SUSE OpenStack Cloud 7:python-manila-3.0.1~dev30-4.17.2.noarch", "SUSE OpenStack Cloud 7:python-monasca-agent-1.10.1~dev4-13.3.noarch", "SUSE OpenStack Cloud 7:python-murano-3.0.1~dev21-7.5.3.noarch", "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.43.2.noarch", "SUSE OpenStack Cloud 7:python-neutron-vpnaas-9.0.1~dev8-5.8.2.noarch", "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.45.3.noarch", "SUSE OpenStack Cloud 7:python-sahara-5.0.2~dev3-14.3.noarch", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.aarch64", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.s390x", "SUSE OpenStack Cloud 7:ruby2.1-rubygem-crowbar-client-3.9.3-7.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-10-13T14:46:03Z", details: "important", }, ], title: "CVE-2020-17376", }, ], }
suse-su-2016:1355-1
Vulnerability from csaf_suse
Published
2016-05-19 08:04
Modified
2016-05-19 08:04
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following security issues:
* CVE-2016-0775: Fixed a buffer overflow in FliDecode.c causing a segfault when opening
FLI files. (bsc#965582)
* CVE-2016-0740: Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of
memory to be overwritten when opening a specially crafted invalid TIFF
file. (bsc#965579)
* Fixed an integer overflow in Resample.c causing writes in the Python heap.
* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening
PhotoCD files.
Patchnames
SUSE-Storage-1.0-2016-796
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "\nThis update for python-Pillow fixes the following security issues:\n\n* CVE-2016-0775: Fixed a buffer overflow in FliDecode.c causing a segfault when opening \n FLI files. (bsc#965582)\n* CVE-2016-0740: Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of \n memory to be overwritten when opening a specially crafted invalid TIFF \n file. (bsc#965579)\n* Fixed an integer overflow in Resample.c causing writes in the Python heap. \n* Fixed a buffer overflow in PcdDecode.c causing a segfault when opening \n PhotoCD files.\n", title: "Description of the patch", }, { category: "details", text: "SUSE-Storage-1.0-2016-796", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1355-1.json", }, { category: "self", summary: "URL for SUSE-SU-2016:1355-1", url: "https://www.suse.com/support/update/announcement/2016/suse-su-20161355-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2016:1355-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2016-May/002073.html", }, { category: "self", summary: "SUSE Bug 965579", url: "https://bugzilla.suse.com/965579", }, { category: "self", summary: "SUSE Bug 965582", url: "https://bugzilla.suse.com/965582", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2016-05-19T08:04:33Z", generator: { date: "2016-05-19T08:04:33Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2016:1355-1", initial_release_date: "2016-05-19T08:04:33Z", revision_history: [ { date: "2016-05-19T08:04:33Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Pillow-2.7.0-7.1.x86_64", product: { name: "python-Pillow-2.7.0-7.1.x86_64", product_id: "python-Pillow-2.7.0-7.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Enterprise Storage 1.0", product: { name: "SUSE Enterprise Storage 1.0", product_id: "SUSE Enterprise Storage 1.0", product_identification_helper: { cpe: "cpe:/o:suse:ses:1.0", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Pillow-2.7.0-7.1.x86_64 as component of SUSE Enterprise Storage 1.0", product_id: "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", }, product_reference: "python-Pillow-2.7.0-7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 1.0", }, ], }, vulnerabilities: [ { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-05-19T08:04:33Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-7.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2016-05-19T08:04:33Z", details: "moderate", }, ], title: "CVE-2016-0775", }, ], }
WID-SEC-W-2024-0426
Vulnerability from csaf_certbund
Published
2016-09-15 22:00
Modified
2024-02-19 23:00
Summary
Python: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Python ist eine universelle, üblicherweise interpretierte höhere Programmiersprache.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Python ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Python ist eine universelle, üblicherweise interpretierte höhere Programmiersprache.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Python ausnutzen, um einen Denial of Service Angriff durchzuführen.", title: "Angriff", }, { category: "general", text: "- UNIX\n- Linux", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0426 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2016/wid-sec-w-2024-0426.json", }, { category: "self", summary: "WID-SEC-2024-0426 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0426", }, { category: "external", summary: "Ubuntu Security Notice USN-3080-1 vom 2016-09-15", url: "http://www.ubuntu.com/usn/usn-3080-1/", }, { category: "external", summary: "Ubuntu Security Notice USN-3090-2 vom 2016-10-01", url: "http://www.ubuntu.com/usn/usn-3090-2/", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2019:2334-1 vom 2019-09-09", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192334-1.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2020:1194-1 vom 2020-05-09", url: "https://www.suse.com/support/update/announcement/2020/suse-su-20201194-1.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2020:2911-1 vom 2020-10-13", url: "http://lists.suse.com/pipermail/sle-security-updates/2020-October/007550.html", }, { category: "external", summary: "Amazon Linux Security Advisory ALAS-2024-2472 vom 2024-02-19", url: "https://alas.aws.amazon.com/AL2/ALAS-2024-2472.html", }, ], source_lang: "en-US", title: "Python: Mehrere Schwachstellen ermöglichen Denial of Service", tracking: { current_release_date: "2024-02-19T23:00:00.000+00:00", generator: { date: "2024-08-15T18:05:26.366+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-0426", initial_release_date: "2016-09-15T22:00:00.000+00:00", revision_history: [ { date: "2016-09-15T22:00:00.000+00:00", number: "1", summary: "Initial Release", }, { date: "2016-09-15T22:00:00.000+00:00", number: "2", summary: "Version nicht vorhanden", }, { date: "2016-10-03T22:00:00.000+00:00", number: "3", summary: "New remediations available", }, { date: "2016-10-03T22:00:00.000+00:00", number: "4", summary: "Version nicht vorhanden", }, { date: "2019-09-09T22:00:00.000+00:00", number: "5", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2020-05-10T22:00:00.000+00:00", number: "6", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2020-10-13T22:00:00.000+00:00", number: "7", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2024-02-19T23:00:00.000+00:00", number: "8", summary: "Neue Updates von Amazon aufgenommen", }, ], status: "final", version: "8", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Amazon Linux 2", product: { name: "Amazon Linux 2", product_id: "398363", product_identification_helper: { cpe: "cpe:/o:amazon:linux_2:-", }, }, }, ], category: "vendor", name: "Amazon", }, { branches: [ { category: "product_name", name: "Open Source Python", product: { name: "Open Source Python", product_id: "113051", product_identification_helper: { cpe: "cpe:/a:python:python:-", }, }, }, ], category: "vendor", name: "Open Source", }, { branches: [ { category: "product_name", name: "SUSE Linux", product: { name: "SUSE Linux", product_id: "T002207", product_identification_helper: { cpe: "cpe:/o:suse:suse_linux:-", }, }, }, ], category: "vendor", name: "SUSE", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3589", notes: [ { category: "description", text: "In Python existieren mehrere Schwachstellen. Ein Angreifer kann unzureichende Eingabeprüfungen in verschiedenen Python Imaging Bibliotheken ausnutzen, um eine betroffene Anwendung zum Absturz zu bringen. Zur erfolgreichen Ausnutzung dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen eine modifizierte Bilddatei (u.a. FLI und PCD) zu öffnen.", }, ], product_status: { known_affected: [ "T002207", "398363", "113051", ], }, release_date: "2016-09-15T22:00:00.000+00:00", title: "CVE-2014-3589", }, { cve: "CVE-2016-0775", notes: [ { category: "description", text: "In Python existieren mehrere Schwachstellen. Ein Angreifer kann unzureichende Eingabeprüfungen in verschiedenen Python Imaging Bibliotheken ausnutzen, um eine betroffene Anwendung zum Absturz zu bringen. Zur erfolgreichen Ausnutzung dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen eine modifizierte Bilddatei (u.a. FLI und PCD) zu öffnen.", }, ], product_status: { known_affected: [ "T002207", "398363", "113051", ], }, release_date: "2016-09-15T22:00:00.000+00:00", title: "CVE-2016-0775", }, { cve: "CVE-2016-2533", notes: [ { category: "description", text: "In Python existieren mehrere Schwachstellen. Ein Angreifer kann unzureichende Eingabeprüfungen in verschiedenen Python Imaging Bibliotheken ausnutzen, um eine betroffene Anwendung zum Absturz zu bringen. Zur erfolgreichen Ausnutzung dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen eine modifizierte Bilddatei (u.a. FLI und PCD) zu öffnen.", }, ], product_status: { known_affected: [ "T002207", "398363", "113051", ], }, release_date: "2016-09-15T22:00:00.000+00:00", title: "CVE-2016-2533", }, ], }
wid-sec-w-2024-0426
Vulnerability from csaf_certbund
Published
2016-09-15 22:00
Modified
2024-02-19 23:00
Summary
Python: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Python ist eine universelle, üblicherweise interpretierte höhere Programmiersprache.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Python ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Python ist eine universelle, üblicherweise interpretierte höhere Programmiersprache.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Python ausnutzen, um einen Denial of Service Angriff durchzuführen.", title: "Angriff", }, { category: "general", text: "- UNIX\n- Linux", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0426 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2016/wid-sec-w-2024-0426.json", }, { category: "self", summary: "WID-SEC-2024-0426 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0426", }, { category: "external", summary: "Ubuntu Security Notice USN-3080-1 vom 2016-09-15", url: "http://www.ubuntu.com/usn/usn-3080-1/", }, { category: "external", summary: "Ubuntu Security Notice USN-3090-2 vom 2016-10-01", url: "http://www.ubuntu.com/usn/usn-3090-2/", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2019:2334-1 vom 2019-09-09", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192334-1.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2020:1194-1 vom 2020-05-09", url: "https://www.suse.com/support/update/announcement/2020/suse-su-20201194-1.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2020:2911-1 vom 2020-10-13", url: "http://lists.suse.com/pipermail/sle-security-updates/2020-October/007550.html", }, { category: "external", summary: "Amazon Linux Security Advisory ALAS-2024-2472 vom 2024-02-19", url: "https://alas.aws.amazon.com/AL2/ALAS-2024-2472.html", }, ], source_lang: "en-US", title: "Python: Mehrere Schwachstellen ermöglichen Denial of Service", tracking: { current_release_date: "2024-02-19T23:00:00.000+00:00", generator: { date: "2024-08-15T18:05:26.366+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-0426", initial_release_date: "2016-09-15T22:00:00.000+00:00", revision_history: [ { date: "2016-09-15T22:00:00.000+00:00", number: "1", summary: "Initial Release", }, { date: "2016-09-15T22:00:00.000+00:00", number: "2", summary: "Version nicht vorhanden", }, { date: "2016-10-03T22:00:00.000+00:00", number: "3", summary: "New remediations available", }, { date: "2016-10-03T22:00:00.000+00:00", number: "4", summary: "Version nicht vorhanden", }, { date: "2019-09-09T22:00:00.000+00:00", number: "5", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2020-05-10T22:00:00.000+00:00", number: "6", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2020-10-13T22:00:00.000+00:00", number: "7", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2024-02-19T23:00:00.000+00:00", number: "8", summary: "Neue Updates von Amazon aufgenommen", }, ], status: "final", version: "8", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Amazon Linux 2", product: { name: "Amazon Linux 2", product_id: "398363", product_identification_helper: { cpe: "cpe:/o:amazon:linux_2:-", }, }, }, ], category: "vendor", name: "Amazon", }, { branches: [ { category: "product_name", name: "Open Source Python", product: { name: "Open Source Python", product_id: "113051", product_identification_helper: { cpe: "cpe:/a:python:python:-", }, }, }, ], category: "vendor", name: "Open Source", }, { branches: [ { category: "product_name", name: "SUSE Linux", product: { name: "SUSE Linux", product_id: "T002207", product_identification_helper: { cpe: "cpe:/o:suse:suse_linux:-", }, }, }, ], category: "vendor", name: "SUSE", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3589", notes: [ { category: "description", text: "In Python existieren mehrere Schwachstellen. Ein Angreifer kann unzureichende Eingabeprüfungen in verschiedenen Python Imaging Bibliotheken ausnutzen, um eine betroffene Anwendung zum Absturz zu bringen. Zur erfolgreichen Ausnutzung dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen eine modifizierte Bilddatei (u.a. FLI und PCD) zu öffnen.", }, ], product_status: { known_affected: [ "T002207", "398363", "113051", ], }, release_date: "2016-09-15T22:00:00.000+00:00", title: "CVE-2014-3589", }, { cve: "CVE-2016-0775", notes: [ { category: "description", text: "In Python existieren mehrere Schwachstellen. Ein Angreifer kann unzureichende Eingabeprüfungen in verschiedenen Python Imaging Bibliotheken ausnutzen, um eine betroffene Anwendung zum Absturz zu bringen. Zur erfolgreichen Ausnutzung dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen eine modifizierte Bilddatei (u.a. FLI und PCD) zu öffnen.", }, ], product_status: { known_affected: [ "T002207", "398363", "113051", ], }, release_date: "2016-09-15T22:00:00.000+00:00", title: "CVE-2016-0775", }, { cve: "CVE-2016-2533", notes: [ { category: "description", text: "In Python existieren mehrere Schwachstellen. Ein Angreifer kann unzureichende Eingabeprüfungen in verschiedenen Python Imaging Bibliotheken ausnutzen, um eine betroffene Anwendung zum Absturz zu bringen. Zur erfolgreichen Ausnutzung dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen eine modifizierte Bilddatei (u.a. FLI und PCD) zu öffnen.", }, ], product_status: { known_affected: [ "T002207", "398363", "113051", ], }, release_date: "2016-09-15T22:00:00.000+00:00", title: "CVE-2016-2533", }, ], }
opensuse-su-2024:13827-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python310-Pillow-10.3.0-1.1 on GA media
Notes
Title of the patch
python310-Pillow-10.3.0-1.1 on GA media
Description of the patch
These are all security issues fixed in the python310-Pillow-10.3.0-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-13827
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python310-Pillow-10.3.0-1.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python310-Pillow-10.3.0-1.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-13827", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13827-1.json", }, { category: "self", summary: "SUSE CVE CVE-2014-3589 page", url: "https://www.suse.com/security/cve/CVE-2014-3589/", }, { category: "self", summary: "SUSE CVE CVE-2014-3598 page", url: "https://www.suse.com/security/cve/CVE-2014-3598/", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, { category: "self", summary: "SUSE CVE CVE-2016-3076 page", url: "https://www.suse.com/security/cve/CVE-2016-3076/", }, { category: "self", summary: "SUSE CVE CVE-2020-15999 page", url: "https://www.suse.com/security/cve/CVE-2020-15999/", }, { category: "self", summary: "SUSE CVE CVE-2020-35653 page", url: "https://www.suse.com/security/cve/CVE-2020-35653/", }, { category: "self", summary: "SUSE CVE CVE-2020-35654 page", url: "https://www.suse.com/security/cve/CVE-2020-35654/", }, { category: "self", summary: "SUSE CVE CVE-2020-35655 page", url: "https://www.suse.com/security/cve/CVE-2020-35655/", }, { category: "self", summary: "SUSE CVE CVE-2021-23437 page", url: "https://www.suse.com/security/cve/CVE-2021-23437/", }, { category: "self", summary: "SUSE CVE CVE-2021-25289 page", url: "https://www.suse.com/security/cve/CVE-2021-25289/", }, { category: "self", summary: "SUSE CVE CVE-2021-25290 page", url: "https://www.suse.com/security/cve/CVE-2021-25290/", }, { category: "self", summary: "SUSE CVE CVE-2021-25291 page", url: "https://www.suse.com/security/cve/CVE-2021-25291/", }, { category: "self", summary: "SUSE CVE CVE-2021-25292 page", url: "https://www.suse.com/security/cve/CVE-2021-25292/", }, { category: "self", summary: "SUSE CVE CVE-2021-25293 page", url: "https://www.suse.com/security/cve/CVE-2021-25293/", }, { category: "self", summary: "SUSE CVE CVE-2021-27921 page", url: "https://www.suse.com/security/cve/CVE-2021-27921/", }, { category: "self", summary: "SUSE CVE CVE-2021-34552 page", url: "https://www.suse.com/security/cve/CVE-2021-34552/", }, { category: "self", summary: "SUSE CVE CVE-2024-28219 page", url: "https://www.suse.com/security/cve/CVE-2024-28219/", }, ], title: "python310-Pillow-10.3.0-1.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:13827-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python310-Pillow-10.3.0-1.1.aarch64", product: { name: "python310-Pillow-10.3.0-1.1.aarch64", product_id: "python310-Pillow-10.3.0-1.1.aarch64", }, }, { category: "product_version", name: "python310-Pillow-tk-10.3.0-1.1.aarch64", product: { name: "python310-Pillow-tk-10.3.0-1.1.aarch64", product_id: "python310-Pillow-tk-10.3.0-1.1.aarch64", }, }, { category: "product_version", name: "python311-Pillow-10.3.0-1.1.aarch64", product: { name: "python311-Pillow-10.3.0-1.1.aarch64", product_id: "python311-Pillow-10.3.0-1.1.aarch64", }, }, { category: "product_version", name: "python311-Pillow-tk-10.3.0-1.1.aarch64", product: { name: "python311-Pillow-tk-10.3.0-1.1.aarch64", product_id: "python311-Pillow-tk-10.3.0-1.1.aarch64", }, }, { category: "product_version", name: "python312-Pillow-10.3.0-1.1.aarch64", product: { name: "python312-Pillow-10.3.0-1.1.aarch64", product_id: "python312-Pillow-10.3.0-1.1.aarch64", }, }, { category: "product_version", name: "python312-Pillow-tk-10.3.0-1.1.aarch64", product: { name: "python312-Pillow-tk-10.3.0-1.1.aarch64", product_id: "python312-Pillow-tk-10.3.0-1.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python310-Pillow-10.3.0-1.1.ppc64le", product: { name: "python310-Pillow-10.3.0-1.1.ppc64le", product_id: "python310-Pillow-10.3.0-1.1.ppc64le", }, }, { category: "product_version", name: "python310-Pillow-tk-10.3.0-1.1.ppc64le", product: { name: "python310-Pillow-tk-10.3.0-1.1.ppc64le", product_id: "python310-Pillow-tk-10.3.0-1.1.ppc64le", }, }, { category: "product_version", name: "python311-Pillow-10.3.0-1.1.ppc64le", product: { name: "python311-Pillow-10.3.0-1.1.ppc64le", product_id: "python311-Pillow-10.3.0-1.1.ppc64le", }, }, { category: "product_version", name: "python311-Pillow-tk-10.3.0-1.1.ppc64le", product: { name: "python311-Pillow-tk-10.3.0-1.1.ppc64le", product_id: "python311-Pillow-tk-10.3.0-1.1.ppc64le", }, }, { category: "product_version", name: "python312-Pillow-10.3.0-1.1.ppc64le", product: { name: "python312-Pillow-10.3.0-1.1.ppc64le", product_id: "python312-Pillow-10.3.0-1.1.ppc64le", }, }, { category: "product_version", name: "python312-Pillow-tk-10.3.0-1.1.ppc64le", product: { name: "python312-Pillow-tk-10.3.0-1.1.ppc64le", product_id: "python312-Pillow-tk-10.3.0-1.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python310-Pillow-10.3.0-1.1.s390x", product: { name: "python310-Pillow-10.3.0-1.1.s390x", product_id: "python310-Pillow-10.3.0-1.1.s390x", }, }, { category: "product_version", name: "python310-Pillow-tk-10.3.0-1.1.s390x", product: { name: "python310-Pillow-tk-10.3.0-1.1.s390x", product_id: "python310-Pillow-tk-10.3.0-1.1.s390x", }, }, { category: "product_version", name: "python311-Pillow-10.3.0-1.1.s390x", product: { name: "python311-Pillow-10.3.0-1.1.s390x", product_id: "python311-Pillow-10.3.0-1.1.s390x", }, }, { category: "product_version", name: "python311-Pillow-tk-10.3.0-1.1.s390x", product: { name: "python311-Pillow-tk-10.3.0-1.1.s390x", product_id: "python311-Pillow-tk-10.3.0-1.1.s390x", }, }, { category: "product_version", name: "python312-Pillow-10.3.0-1.1.s390x", product: { name: "python312-Pillow-10.3.0-1.1.s390x", product_id: "python312-Pillow-10.3.0-1.1.s390x", }, }, { category: "product_version", name: "python312-Pillow-tk-10.3.0-1.1.s390x", product: { name: "python312-Pillow-tk-10.3.0-1.1.s390x", product_id: "python312-Pillow-tk-10.3.0-1.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python310-Pillow-10.3.0-1.1.x86_64", product: { name: "python310-Pillow-10.3.0-1.1.x86_64", product_id: "python310-Pillow-10.3.0-1.1.x86_64", }, }, { category: "product_version", name: "python310-Pillow-tk-10.3.0-1.1.x86_64", product: { name: "python310-Pillow-tk-10.3.0-1.1.x86_64", product_id: "python310-Pillow-tk-10.3.0-1.1.x86_64", }, }, { category: "product_version", name: "python311-Pillow-10.3.0-1.1.x86_64", product: { name: "python311-Pillow-10.3.0-1.1.x86_64", product_id: "python311-Pillow-10.3.0-1.1.x86_64", }, }, { category: "product_version", name: "python311-Pillow-tk-10.3.0-1.1.x86_64", product: { name: "python311-Pillow-tk-10.3.0-1.1.x86_64", product_id: "python311-Pillow-tk-10.3.0-1.1.x86_64", }, }, { category: "product_version", name: "python312-Pillow-10.3.0-1.1.x86_64", product: { name: "python312-Pillow-10.3.0-1.1.x86_64", product_id: "python312-Pillow-10.3.0-1.1.x86_64", }, }, { category: "product_version", name: "python312-Pillow-tk-10.3.0-1.1.x86_64", product: { name: "python312-Pillow-tk-10.3.0-1.1.x86_64", product_id: "python312-Pillow-tk-10.3.0-1.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python310-Pillow-10.3.0-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", }, product_reference: "python310-Pillow-10.3.0-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-10.3.0-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", }, product_reference: "python310-Pillow-10.3.0-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-10.3.0-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", }, product_reference: "python310-Pillow-10.3.0-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-10.3.0-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", }, product_reference: "python310-Pillow-10.3.0-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-tk-10.3.0-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", }, product_reference: "python310-Pillow-tk-10.3.0-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-tk-10.3.0-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", }, product_reference: "python310-Pillow-tk-10.3.0-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-tk-10.3.0-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", }, product_reference: "python310-Pillow-tk-10.3.0-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Pillow-tk-10.3.0-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", }, product_reference: "python310-Pillow-tk-10.3.0-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-10.3.0-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", }, product_reference: "python311-Pillow-10.3.0-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-10.3.0-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", }, product_reference: "python311-Pillow-10.3.0-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-10.3.0-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", }, product_reference: "python311-Pillow-10.3.0-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-10.3.0-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", }, product_reference: "python311-Pillow-10.3.0-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-tk-10.3.0-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", }, product_reference: "python311-Pillow-tk-10.3.0-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-tk-10.3.0-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", }, product_reference: "python311-Pillow-tk-10.3.0-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-tk-10.3.0-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", }, product_reference: "python311-Pillow-tk-10.3.0-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Pillow-tk-10.3.0-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", }, product_reference: "python311-Pillow-tk-10.3.0-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-10.3.0-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", }, product_reference: "python312-Pillow-10.3.0-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-10.3.0-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", }, product_reference: "python312-Pillow-10.3.0-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-10.3.0-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", }, product_reference: "python312-Pillow-10.3.0-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-10.3.0-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", }, product_reference: "python312-Pillow-10.3.0-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-tk-10.3.0-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", }, product_reference: "python312-Pillow-tk-10.3.0-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-tk-10.3.0-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", }, product_reference: "python312-Pillow-tk-10.3.0-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-tk-10.3.0-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", }, product_reference: "python312-Pillow-tk-10.3.0-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python312-Pillow-tk-10.3.0-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", }, product_reference: "python312-Pillow-tk-10.3.0-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3589", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3589", }, ], notes: [ { category: "general", text: "PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3589", url: "https://www.suse.com/security/cve/CVE-2014-3589", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3589", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3589", }, { cve: "CVE-2014-3598", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3598", }, ], notes: [ { category: "general", text: "The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3598", url: "https://www.suse.com/security/cve/CVE-2014-3598", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3598", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3598", }, { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0775", }, { cve: "CVE-2016-3076", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-3076", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the j2k_encode_entry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denial of service (memory corruption) via a crafted Jpeg2000 file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-3076", url: "https://www.suse.com/security/cve/CVE-2016-3076", }, { category: "external", summary: "SUSE Bug 973786 for CVE-2016-3076", url: "https://bugzilla.suse.com/973786", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-3076", }, { cve: "CVE-2020-15999", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15999", }, ], notes: [ { category: "general", text: "Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15999", url: "https://www.suse.com/security/cve/CVE-2020-15999", }, { category: "external", summary: "SUSE Bug 1177914 for CVE-2020-15999", url: "https://bugzilla.suse.com/1177914", }, { category: "external", summary: "SUSE Bug 1177936 for CVE-2020-15999", url: "https://bugzilla.suse.com/1177936", }, { category: "external", summary: "SUSE Bug 1178824 for CVE-2020-15999", url: "https://bugzilla.suse.com/1178824", }, { category: "external", summary: "SUSE Bug 1178894 for CVE-2020-15999", url: "https://bugzilla.suse.com/1178894", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-15999", }, { cve: "CVE-2020-35653", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35653", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35653", url: "https://www.suse.com/security/cve/CVE-2020-35653", }, { category: "external", summary: "SUSE Bug 1180834 for CVE-2020-35653", url: "https://bugzilla.suse.com/1180834", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-35653", }, { cve: "CVE-2020-35654", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35654", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35654", url: "https://www.suse.com/security/cve/CVE-2020-35654", }, { category: "external", summary: "SUSE Bug 1180833 for CVE-2020-35654", url: "https://bugzilla.suse.com/1180833", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2020-35654", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-35654", }, { cve: "CVE-2020-35655", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35655", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35655", url: "https://www.suse.com/security/cve/CVE-2020-35655", }, { category: "external", summary: "SUSE Bug 1180832 for CVE-2020-35655", url: "https://bugzilla.suse.com/1180832", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-35655", }, { cve: "CVE-2021-23437", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-23437", }, ], notes: [ { category: "general", text: "The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-23437", url: "https://www.suse.com/security/cve/CVE-2021-23437", }, { category: "external", summary: "SUSE Bug 1190229 for CVE-2021-23437", url: "https://bugzilla.suse.com/1190229", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-23437", }, { cve: "CVE-2021-25289", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25289", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25289", url: "https://www.suse.com/security/cve/CVE-2021-25289", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2021-25289", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2021-25289", }, { cve: "CVE-2021-25290", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25290", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25290", url: "https://www.suse.com/security/cve/CVE-2021-25290", }, { category: "external", summary: "SUSE Bug 1183105 for CVE-2021-25290", url: "https://bugzilla.suse.com/1183105", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25290", }, { cve: "CVE-2021-25291", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25291", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is an out-of-bounds read in TiffreadRGBATile via invalid tile boundaries.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25291", url: "https://www.suse.com/security/cve/CVE-2021-25291", }, { category: "external", summary: "SUSE Bug 1183106 for CVE-2021-25291", url: "https://bugzilla.suse.com/1183106", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25291", }, { cve: "CVE-2021-25292", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25292", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS (ReDoS) attack via a crafted PDF file because of a catastrophic backtracking regex.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25292", url: "https://www.suse.com/security/cve/CVE-2021-25292", }, { category: "external", summary: "SUSE Bug 1183101 for CVE-2021-25292", url: "https://bugzilla.suse.com/1183101", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25292", }, { cve: "CVE-2021-25293", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25293", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25293", url: "https://www.suse.com/security/cve/CVE-2021-25293", }, { category: "external", summary: "SUSE Bug 1183102 for CVE-2021-25293", url: "https://bugzilla.suse.com/1183102", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25293", }, { cve: "CVE-2021-27921", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27921", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27921", url: "https://www.suse.com/security/cve/CVE-2021-27921", }, { category: "external", summary: "SUSE Bug 1183110 for CVE-2021-27921", url: "https://bugzilla.suse.com/1183110", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-27921", }, { cve: "CVE-2021-34552", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-34552", }, ], notes: [ { category: "general", text: "Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-34552", url: "https://www.suse.com/security/cve/CVE-2021-34552", }, { category: "external", summary: "SUSE Bug 1188574 for CVE-2021-34552", url: "https://bugzilla.suse.com/1188574", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-34552", }, { cve: "CVE-2024-28219", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-28219", }, ], notes: [ { category: "general", text: "In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2024-28219", url: "https://www.suse.com/security/cve/CVE-2024-28219", }, { category: "external", summary: "SUSE Bug 1222262 for CVE-2024-28219", url: "https://bugzilla.suse.com/1222262", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1.x86_64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.aarch64", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.ppc64le", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.s390x", "openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2024-28219", }, ], }
opensuse-su-2024:11209-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python36-Pillow-8.3.2-1.2 on GA media
Notes
Title of the patch
python36-Pillow-8.3.2-1.2 on GA media
Description of the patch
These are all security issues fixed in the python36-Pillow-8.3.2-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11209
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python36-Pillow-8.3.2-1.2 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python36-Pillow-8.3.2-1.2 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-11209", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11209-1.json", }, { category: "self", summary: "SUSE CVE CVE-2014-3589 page", url: "https://www.suse.com/security/cve/CVE-2014-3589/", }, { category: "self", summary: "SUSE CVE CVE-2014-3598 page", url: "https://www.suse.com/security/cve/CVE-2014-3598/", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, { category: "self", summary: "SUSE CVE CVE-2016-3076 page", url: "https://www.suse.com/security/cve/CVE-2016-3076/", }, { category: "self", summary: "SUSE CVE CVE-2020-15999 page", url: "https://www.suse.com/security/cve/CVE-2020-15999/", }, { category: "self", summary: "SUSE CVE CVE-2020-35653 page", url: "https://www.suse.com/security/cve/CVE-2020-35653/", }, { category: "self", summary: "SUSE CVE CVE-2020-35654 page", url: "https://www.suse.com/security/cve/CVE-2020-35654/", }, { category: "self", summary: "SUSE CVE CVE-2020-35655 page", url: "https://www.suse.com/security/cve/CVE-2020-35655/", }, { category: "self", summary: "SUSE CVE CVE-2021-23437 page", url: "https://www.suse.com/security/cve/CVE-2021-23437/", }, { category: "self", summary: "SUSE CVE CVE-2021-25289 page", url: "https://www.suse.com/security/cve/CVE-2021-25289/", }, { category: "self", summary: "SUSE CVE CVE-2021-25290 page", url: "https://www.suse.com/security/cve/CVE-2021-25290/", }, { category: "self", summary: "SUSE CVE CVE-2021-25291 page", url: "https://www.suse.com/security/cve/CVE-2021-25291/", }, { category: "self", summary: "SUSE CVE CVE-2021-25292 page", url: "https://www.suse.com/security/cve/CVE-2021-25292/", }, { category: "self", summary: "SUSE CVE CVE-2021-25293 page", url: "https://www.suse.com/security/cve/CVE-2021-25293/", }, { category: "self", summary: "SUSE CVE CVE-2021-27921 page", url: "https://www.suse.com/security/cve/CVE-2021-27921/", }, { category: "self", summary: "SUSE CVE CVE-2021-34552 page", url: "https://www.suse.com/security/cve/CVE-2021-34552/", }, ], title: "python36-Pillow-8.3.2-1.2 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:11209-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python36-Pillow-8.3.2-1.2.aarch64", product: { name: "python36-Pillow-8.3.2-1.2.aarch64", product_id: "python36-Pillow-8.3.2-1.2.aarch64", }, }, { category: "product_version", name: "python36-Pillow-tk-8.3.2-1.2.aarch64", product: { name: "python36-Pillow-tk-8.3.2-1.2.aarch64", product_id: "python36-Pillow-tk-8.3.2-1.2.aarch64", }, }, { category: "product_version", name: "python38-Pillow-8.3.2-1.2.aarch64", product: { name: "python38-Pillow-8.3.2-1.2.aarch64", product_id: "python38-Pillow-8.3.2-1.2.aarch64", }, }, { category: "product_version", name: "python38-Pillow-tk-8.3.2-1.2.aarch64", product: { name: "python38-Pillow-tk-8.3.2-1.2.aarch64", product_id: "python38-Pillow-tk-8.3.2-1.2.aarch64", }, }, { category: "product_version", name: "python39-Pillow-8.3.2-1.2.aarch64", product: { name: "python39-Pillow-8.3.2-1.2.aarch64", product_id: "python39-Pillow-8.3.2-1.2.aarch64", }, }, { category: "product_version", name: "python39-Pillow-tk-8.3.2-1.2.aarch64", product: { name: "python39-Pillow-tk-8.3.2-1.2.aarch64", product_id: "python39-Pillow-tk-8.3.2-1.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python36-Pillow-8.3.2-1.2.ppc64le", product: { name: "python36-Pillow-8.3.2-1.2.ppc64le", product_id: "python36-Pillow-8.3.2-1.2.ppc64le", }, }, { category: "product_version", name: "python36-Pillow-tk-8.3.2-1.2.ppc64le", product: { name: "python36-Pillow-tk-8.3.2-1.2.ppc64le", product_id: "python36-Pillow-tk-8.3.2-1.2.ppc64le", }, }, { category: "product_version", name: "python38-Pillow-8.3.2-1.2.ppc64le", product: { name: "python38-Pillow-8.3.2-1.2.ppc64le", product_id: "python38-Pillow-8.3.2-1.2.ppc64le", }, }, { category: "product_version", name: "python38-Pillow-tk-8.3.2-1.2.ppc64le", product: { name: "python38-Pillow-tk-8.3.2-1.2.ppc64le", product_id: "python38-Pillow-tk-8.3.2-1.2.ppc64le", }, }, { category: "product_version", name: "python39-Pillow-8.3.2-1.2.ppc64le", product: { name: "python39-Pillow-8.3.2-1.2.ppc64le", product_id: "python39-Pillow-8.3.2-1.2.ppc64le", }, }, { category: "product_version", name: "python39-Pillow-tk-8.3.2-1.2.ppc64le", product: { name: "python39-Pillow-tk-8.3.2-1.2.ppc64le", product_id: "python39-Pillow-tk-8.3.2-1.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python36-Pillow-8.3.2-1.2.s390x", product: { name: "python36-Pillow-8.3.2-1.2.s390x", product_id: "python36-Pillow-8.3.2-1.2.s390x", }, }, { category: "product_version", name: "python36-Pillow-tk-8.3.2-1.2.s390x", product: { name: "python36-Pillow-tk-8.3.2-1.2.s390x", product_id: "python36-Pillow-tk-8.3.2-1.2.s390x", }, }, { category: "product_version", name: "python38-Pillow-8.3.2-1.2.s390x", product: { name: "python38-Pillow-8.3.2-1.2.s390x", product_id: "python38-Pillow-8.3.2-1.2.s390x", }, }, { category: "product_version", name: "python38-Pillow-tk-8.3.2-1.2.s390x", product: { name: "python38-Pillow-tk-8.3.2-1.2.s390x", product_id: "python38-Pillow-tk-8.3.2-1.2.s390x", }, }, { category: "product_version", name: "python39-Pillow-8.3.2-1.2.s390x", product: { name: "python39-Pillow-8.3.2-1.2.s390x", product_id: "python39-Pillow-8.3.2-1.2.s390x", }, }, { category: "product_version", name: "python39-Pillow-tk-8.3.2-1.2.s390x", product: { name: "python39-Pillow-tk-8.3.2-1.2.s390x", product_id: "python39-Pillow-tk-8.3.2-1.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python36-Pillow-8.3.2-1.2.x86_64", product: { name: "python36-Pillow-8.3.2-1.2.x86_64", product_id: "python36-Pillow-8.3.2-1.2.x86_64", }, }, { category: "product_version", name: "python36-Pillow-tk-8.3.2-1.2.x86_64", product: { name: "python36-Pillow-tk-8.3.2-1.2.x86_64", product_id: "python36-Pillow-tk-8.3.2-1.2.x86_64", }, }, { category: "product_version", name: "python38-Pillow-8.3.2-1.2.x86_64", product: { name: "python38-Pillow-8.3.2-1.2.x86_64", product_id: "python38-Pillow-8.3.2-1.2.x86_64", }, }, { category: "product_version", name: "python38-Pillow-tk-8.3.2-1.2.x86_64", product: { name: "python38-Pillow-tk-8.3.2-1.2.x86_64", product_id: "python38-Pillow-tk-8.3.2-1.2.x86_64", }, }, { category: "product_version", name: "python39-Pillow-8.3.2-1.2.x86_64", product: { name: "python39-Pillow-8.3.2-1.2.x86_64", product_id: "python39-Pillow-8.3.2-1.2.x86_64", }, }, { category: "product_version", name: "python39-Pillow-tk-8.3.2-1.2.x86_64", product: { name: "python39-Pillow-tk-8.3.2-1.2.x86_64", product_id: "python39-Pillow-tk-8.3.2-1.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python36-Pillow-8.3.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", }, product_reference: "python36-Pillow-8.3.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-8.3.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", }, product_reference: "python36-Pillow-8.3.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-8.3.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", }, product_reference: "python36-Pillow-8.3.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-8.3.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", }, product_reference: "python36-Pillow-8.3.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-tk-8.3.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", }, product_reference: "python36-Pillow-tk-8.3.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-tk-8.3.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", }, product_reference: "python36-Pillow-tk-8.3.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-tk-8.3.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", }, product_reference: "python36-Pillow-tk-8.3.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python36-Pillow-tk-8.3.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", }, product_reference: "python36-Pillow-tk-8.3.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-8.3.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", }, product_reference: "python38-Pillow-8.3.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-8.3.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", }, product_reference: "python38-Pillow-8.3.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-8.3.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", }, product_reference: "python38-Pillow-8.3.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-8.3.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", }, product_reference: "python38-Pillow-8.3.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-tk-8.3.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", }, product_reference: "python38-Pillow-tk-8.3.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-tk-8.3.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", }, product_reference: "python38-Pillow-tk-8.3.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-tk-8.3.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", }, product_reference: "python38-Pillow-tk-8.3.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python38-Pillow-tk-8.3.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", }, product_reference: "python38-Pillow-tk-8.3.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-8.3.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", }, product_reference: "python39-Pillow-8.3.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-8.3.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", }, product_reference: "python39-Pillow-8.3.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-8.3.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", }, product_reference: "python39-Pillow-8.3.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-8.3.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", }, product_reference: "python39-Pillow-8.3.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-tk-8.3.2-1.2.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", }, product_reference: "python39-Pillow-tk-8.3.2-1.2.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-tk-8.3.2-1.2.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", }, product_reference: "python39-Pillow-tk-8.3.2-1.2.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-tk-8.3.2-1.2.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", }, product_reference: "python39-Pillow-tk-8.3.2-1.2.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Pillow-tk-8.3.2-1.2.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", }, product_reference: "python39-Pillow-tk-8.3.2-1.2.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3589", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3589", }, ], notes: [ { category: "general", text: "PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3589", url: "https://www.suse.com/security/cve/CVE-2014-3589", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3589", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3589", }, { cve: "CVE-2014-3598", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3598", }, ], notes: [ { category: "general", text: "The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3598", url: "https://www.suse.com/security/cve/CVE-2014-3598", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3598", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3598", }, { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0775", }, { cve: "CVE-2016-3076", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-3076", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the j2k_encode_entry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denial of service (memory corruption) via a crafted Jpeg2000 file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-3076", url: "https://www.suse.com/security/cve/CVE-2016-3076", }, { category: "external", summary: "SUSE Bug 973786 for CVE-2016-3076", url: "https://bugzilla.suse.com/973786", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-3076", }, { cve: "CVE-2020-15999", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15999", }, ], notes: [ { category: "general", text: "Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15999", url: "https://www.suse.com/security/cve/CVE-2020-15999", }, { category: "external", summary: "SUSE Bug 1177914 for CVE-2020-15999", url: "https://bugzilla.suse.com/1177914", }, { category: "external", summary: "SUSE Bug 1177936 for CVE-2020-15999", url: "https://bugzilla.suse.com/1177936", }, { category: "external", summary: "SUSE Bug 1178824 for CVE-2020-15999", url: "https://bugzilla.suse.com/1178824", }, { category: "external", summary: "SUSE Bug 1178894 for CVE-2020-15999", url: "https://bugzilla.suse.com/1178894", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-15999", }, { cve: "CVE-2020-35653", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35653", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35653", url: "https://www.suse.com/security/cve/CVE-2020-35653", }, { category: "external", summary: "SUSE Bug 1180834 for CVE-2020-35653", url: "https://bugzilla.suse.com/1180834", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-35653", }, { cve: "CVE-2020-35654", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35654", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35654", url: "https://www.suse.com/security/cve/CVE-2020-35654", }, { category: "external", summary: "SUSE Bug 1180833 for CVE-2020-35654", url: "https://bugzilla.suse.com/1180833", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2020-35654", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-35654", }, { cve: "CVE-2020-35655", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35655", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35655", url: "https://www.suse.com/security/cve/CVE-2020-35655", }, { category: "external", summary: "SUSE Bug 1180832 for CVE-2020-35655", url: "https://bugzilla.suse.com/1180832", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-35655", }, { cve: "CVE-2021-23437", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-23437", }, ], notes: [ { category: "general", text: "The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-23437", url: "https://www.suse.com/security/cve/CVE-2021-23437", }, { category: "external", summary: "SUSE Bug 1190229 for CVE-2021-23437", url: "https://bugzilla.suse.com/1190229", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-23437", }, { cve: "CVE-2021-25289", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25289", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25289", url: "https://www.suse.com/security/cve/CVE-2021-25289", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2021-25289", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2021-25289", }, { cve: "CVE-2021-25290", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25290", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25290", url: "https://www.suse.com/security/cve/CVE-2021-25290", }, { category: "external", summary: "SUSE Bug 1183105 for CVE-2021-25290", url: "https://bugzilla.suse.com/1183105", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25290", }, { cve: "CVE-2021-25291", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25291", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is an out-of-bounds read in TiffreadRGBATile via invalid tile boundaries.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25291", url: "https://www.suse.com/security/cve/CVE-2021-25291", }, { category: "external", summary: "SUSE Bug 1183106 for CVE-2021-25291", url: "https://bugzilla.suse.com/1183106", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25291", }, { cve: "CVE-2021-25292", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25292", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS (ReDoS) attack via a crafted PDF file because of a catastrophic backtracking regex.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25292", url: "https://www.suse.com/security/cve/CVE-2021-25292", }, { category: "external", summary: "SUSE Bug 1183101 for CVE-2021-25292", url: "https://bugzilla.suse.com/1183101", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25292", }, { cve: "CVE-2021-25293", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25293", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25293", url: "https://www.suse.com/security/cve/CVE-2021-25293", }, { category: "external", summary: "SUSE Bug 1183102 for CVE-2021-25293", url: "https://bugzilla.suse.com/1183102", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25293", }, { cve: "CVE-2021-27921", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27921", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27921", url: "https://www.suse.com/security/cve/CVE-2021-27921", }, { category: "external", summary: "SUSE Bug 1183110 for CVE-2021-27921", url: "https://bugzilla.suse.com/1183110", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-27921", }, { cve: "CVE-2021-34552", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-34552", }, ], notes: [ { category: "general", text: "Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-34552", url: "https://www.suse.com/security/cve/CVE-2021-34552", }, { category: "external", summary: "SUSE Bug 1188574 for CVE-2021-34552", url: "https://bugzilla.suse.com/1188574", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2.x86_64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.aarch64", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.ppc64le", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.s390x", "openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-34552", }, ], }
opensuse-su-2024:10511-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python3-Pillow-3.4.2-1.1 on GA media
Notes
Title of the patch
python3-Pillow-3.4.2-1.1 on GA media
Description of the patch
These are all security issues fixed in the python3-Pillow-3.4.2-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10511
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python3-Pillow-3.4.2-1.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python3-Pillow-3.4.2-1.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-10511", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10511-1.json", }, { category: "self", summary: "SUSE CVE CVE-2014-3589 page", url: "https://www.suse.com/security/cve/CVE-2014-3589/", }, { category: "self", summary: "SUSE CVE CVE-2014-3598 page", url: "https://www.suse.com/security/cve/CVE-2014-3598/", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, { category: "self", summary: "SUSE CVE CVE-2016-3076 page", url: "https://www.suse.com/security/cve/CVE-2016-3076/", }, ], title: "python3-Pillow-3.4.2-1.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:10511-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python3-Pillow-3.4.2-1.1.aarch64", product: { name: "python3-Pillow-3.4.2-1.1.aarch64", product_id: "python3-Pillow-3.4.2-1.1.aarch64", }, }, { category: "product_version", name: "python3-Pillow-tk-3.4.2-1.1.aarch64", product: { name: "python3-Pillow-tk-3.4.2-1.1.aarch64", product_id: "python3-Pillow-tk-3.4.2-1.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-Pillow-3.4.2-1.1.ppc64le", product: { name: "python3-Pillow-3.4.2-1.1.ppc64le", product_id: "python3-Pillow-3.4.2-1.1.ppc64le", }, }, { category: "product_version", name: "python3-Pillow-tk-3.4.2-1.1.ppc64le", product: { name: "python3-Pillow-tk-3.4.2-1.1.ppc64le", product_id: "python3-Pillow-tk-3.4.2-1.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-Pillow-3.4.2-1.1.s390x", product: { name: "python3-Pillow-3.4.2-1.1.s390x", product_id: "python3-Pillow-3.4.2-1.1.s390x", }, }, { category: "product_version", name: "python3-Pillow-tk-3.4.2-1.1.s390x", product: { name: "python3-Pillow-tk-3.4.2-1.1.s390x", product_id: "python3-Pillow-tk-3.4.2-1.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-Pillow-3.4.2-1.1.x86_64", product: { name: "python3-Pillow-3.4.2-1.1.x86_64", product_id: "python3-Pillow-3.4.2-1.1.x86_64", }, }, { category: "product_version", name: "python3-Pillow-tk-3.4.2-1.1.x86_64", product: { name: "python3-Pillow-tk-3.4.2-1.1.x86_64", product_id: "python3-Pillow-tk-3.4.2-1.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-Pillow-3.4.2-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", }, product_reference: "python3-Pillow-3.4.2-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-3.4.2-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", }, product_reference: "python3-Pillow-3.4.2-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-3.4.2-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", }, product_reference: "python3-Pillow-3.4.2-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-3.4.2-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", }, product_reference: "python3-Pillow-3.4.2-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-3.4.2-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", }, product_reference: "python3-Pillow-tk-3.4.2-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-3.4.2-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", }, product_reference: "python3-Pillow-tk-3.4.2-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-3.4.2-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", }, product_reference: "python3-Pillow-tk-3.4.2-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-3.4.2-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", }, product_reference: "python3-Pillow-tk-3.4.2-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3589", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3589", }, ], notes: [ { category: "general", text: "PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3589", url: "https://www.suse.com/security/cve/CVE-2014-3589", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3589", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3589", }, { cve: "CVE-2014-3598", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3598", }, ], notes: [ { category: "general", text: "The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3598", url: "https://www.suse.com/security/cve/CVE-2014-3598", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3598", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3598", }, { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0775", }, { cve: "CVE-2016-3076", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-3076", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the j2k_encode_entry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denial of service (memory corruption) via a crafted Jpeg2000 file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-3076", url: "https://www.suse.com/security/cve/CVE-2016-3076", }, { category: "external", summary: "SUSE Bug 973786 for CVE-2016-3076", url: "https://bugzilla.suse.com/973786", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1.x86_64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.aarch64", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.ppc64le", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.s390x", "openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-3076", }, ], }
opensuse-su-2024:10567-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python-Pillow-3.1.1-4.1 on GA media
Notes
Title of the patch
python-Pillow-3.1.1-4.1 on GA media
Description of the patch
These are all security issues fixed in the python-Pillow-3.1.1-4.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10567
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python-Pillow-3.1.1-4.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python-Pillow-3.1.1-4.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-10567", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10567-1.json", }, { category: "self", summary: "SUSE CVE CVE-2014-3589 page", url: "https://www.suse.com/security/cve/CVE-2014-3589/", }, { category: "self", summary: "SUSE CVE CVE-2014-3598 page", url: "https://www.suse.com/security/cve/CVE-2014-3598/", }, { category: "self", summary: "SUSE CVE CVE-2016-0740 page", url: "https://www.suse.com/security/cve/CVE-2016-0740/", }, { category: "self", summary: "SUSE CVE CVE-2016-0775 page", url: "https://www.suse.com/security/cve/CVE-2016-0775/", }, ], title: "python-Pillow-3.1.1-4.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:10567-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Pillow-3.1.1-4.1.aarch64", product: { name: "python-Pillow-3.1.1-4.1.aarch64", product_id: "python-Pillow-3.1.1-4.1.aarch64", }, }, { category: "product_version", name: "python-Pillow-tk-3.1.1-4.1.aarch64", product: { name: "python-Pillow-tk-3.1.1-4.1.aarch64", product_id: "python-Pillow-tk-3.1.1-4.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python-Pillow-3.1.1-4.1.ppc64le", product: { name: "python-Pillow-3.1.1-4.1.ppc64le", product_id: "python-Pillow-3.1.1-4.1.ppc64le", }, }, { category: "product_version", name: "python-Pillow-tk-3.1.1-4.1.ppc64le", product: { name: "python-Pillow-tk-3.1.1-4.1.ppc64le", product_id: "python-Pillow-tk-3.1.1-4.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-Pillow-3.1.1-4.1.s390x", product: { name: "python-Pillow-3.1.1-4.1.s390x", product_id: "python-Pillow-3.1.1-4.1.s390x", }, }, { category: "product_version", name: "python-Pillow-tk-3.1.1-4.1.s390x", product: { name: "python-Pillow-tk-3.1.1-4.1.s390x", product_id: "python-Pillow-tk-3.1.1-4.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-Pillow-3.1.1-4.1.x86_64", product: { name: "python-Pillow-3.1.1-4.1.x86_64", product_id: "python-Pillow-3.1.1-4.1.x86_64", }, }, { category: "product_version", name: "python-Pillow-tk-3.1.1-4.1.x86_64", product: { name: "python-Pillow-tk-3.1.1-4.1.x86_64", product_id: "python-Pillow-tk-3.1.1-4.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Pillow-3.1.1-4.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", }, product_reference: "python-Pillow-3.1.1-4.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-3.1.1-4.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", }, product_reference: "python-Pillow-3.1.1-4.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-3.1.1-4.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", }, product_reference: "python-Pillow-3.1.1-4.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-3.1.1-4.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", }, product_reference: "python-Pillow-3.1.1-4.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-tk-3.1.1-4.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", }, product_reference: "python-Pillow-tk-3.1.1-4.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-tk-3.1.1-4.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", }, product_reference: "python-Pillow-tk-3.1.1-4.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-tk-3.1.1-4.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", }, product_reference: "python-Pillow-tk-3.1.1-4.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-tk-3.1.1-4.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", }, product_reference: "python-Pillow-tk-3.1.1-4.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2014-3589", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3589", }, ], notes: [ { category: "general", text: "PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3589", url: "https://www.suse.com/security/cve/CVE-2014-3589", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3589", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3589", }, { cve: "CVE-2014-3598", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2014-3598", }, ], notes: [ { category: "general", text: "The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2014-3598", url: "https://www.suse.com/security/cve/CVE-2014-3598", }, { category: "external", summary: "SUSE Bug 921566 for CVE-2014-3598", url: "https://bugzilla.suse.com/921566", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2014-3598", }, { cve: "CVE-2016-0740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0740", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0740", url: "https://www.suse.com/security/cve/CVE-2016-0740", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0740", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0740", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0740", }, { cve: "CVE-2016-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-0775", }, ], notes: [ { category: "general", text: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-0775", url: "https://www.suse.com/security/cve/CVE-2016-0775", }, { category: "external", summary: "SUSE Bug 965579 for CVE-2016-0775", url: "https://bugzilla.suse.com/965579", }, { category: "external", summary: "SUSE Bug 965582 for CVE-2016-0775", url: "https://bugzilla.suse.com/965582", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-3.1.1-4.1.x86_64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.aarch64", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.ppc64le", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.s390x", "openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-0775", }, ], }
gsd-2016-0775
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
Aliases
Aliases
{ GSD: { alias: "CVE-2016-0775", description: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", id: "GSD-2016-0775", references: [ "https://www.suse.com/security/cve/CVE-2016-0775.html", "https://www.debian.org/security/2016/dsa-3499", "https://ubuntu.com/security/CVE-2016-0775", "https://advisories.mageia.org/CVE-2016-0775.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2016-0775", ], details: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", id: "GSD-2016-0775", modified: "2023-12-13T01:21:17.061225Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2016-0775", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_affected: "=", version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.debian.org/security/2016/dsa-3499", refsource: "MISC", url: "http://www.debian.org/security/2016/dsa-3499", }, { name: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", refsource: "MISC", url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, { name: "https://security.gentoo.org/glsa/201612-52", refsource: "MISC", url: "https://security.gentoo.org/glsa/201612-52", }, { name: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", refsource: "MISC", url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "<3.1.1", affected_versions: "All versions before 3.1.1", cvss_v2: "AV:N/AC:M/Au:N/C:N/I:N/A:P", cvss_v3: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-119", "CWE-937", ], date: "2017-06-30", description: "Buffer overflow in the `ImagingFliDecode` function in `libImaging/FliDecode.c` allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", fixed_versions: [ "3.1.1", ], identifier: "CVE-2016-0775", identifiers: [ "CVE-2016-0775", ], not_impacted: "All versions starting from 3.1.1", package_slug: "pypi/Pillow", pubdate: "2016-04-13", solution: "Upgrade to version 3.1.1 or above.", title: "Buffer overflow in ImagingFliDecode", urls: [ "http://www.cvedetails.com/cve/CVE-2016-0775/", "https://github.com/python-pillow/Pillow/blob/3.1.x/CHANGES.rst#311-2016-02-04", "https://github.com/python-pillow/Pillow/commit/bcaaf97f4ff25b3b5b9e8efeda364e17e80858ec", ], uuid: "4cb72547-bc14-40c1-a538-e29e977ae8b7", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "3.1.0", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2016-0775", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-119", }, ], }, ], }, references: { reference_data: [ { name: "DSA-3499", refsource: "DEBIAN", tags: [], url: "http://www.debian.org/security/2016/dsa-3499", }, { name: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", refsource: "CONFIRM", tags: [], url: "https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b", }, { name: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", refsource: "CONFIRM", tags: [], url: "https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst", }, { name: "GLSA-201612-52", refsource: "GENTOO", tags: [], url: "https://security.gentoo.org/glsa/201612-52", }, ], }, }, impact: { baseMetricV2: { cvssV2: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.3, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: true, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 3.6, }, }, lastModifiedDate: "2017-07-01T01:29Z", publishedDate: "2016-04-13T16:59Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.