# Security Beta update for SUSE Manager Client Tools and Salt

Announcement ID: SUSE-SU-2024:0196-1  
Rating: moderate  
References:

  * bsc#1172110
  * bsc#1176460
  * bsc#1180816
  * bsc#1180942
  * bsc#1181119
  * bsc#1181935
  * bsc#1183684
  * bsc#1187725
  * bsc#1188061
  * bsc#1188571
  * bsc#1189520
  * bsc#1191454
  * bsc#1192154
  * bsc#1192383
  * bsc#1192696
  * bsc#1192763
  * bsc#1193492
  * bsc#1193686
  * bsc#1193688
  * bsc#1197507
  * bsc#1198903
  * bsc#1199810
  * bsc#1200142
  * bsc#1200480
  * bsc#1200591
  * bsc#1200968
  * bsc#1200970
  * bsc#1201003
  * bsc#1201059
  * bsc#1201535
  * bsc#1201539
  * bsc#1202614
  * bsc#1202945
  * bsc#1203283
  * bsc#1203596
  * bsc#1203597
  * bsc#1203599
  * bsc#1204032
  * bsc#1204126
  * bsc#1204302
  * bsc#1204303
  * bsc#1204304
  * bsc#1204305
  * bsc#1204501
  * bsc#1205207
  * bsc#1205225
  * bsc#1205227
  * bsc#1205599
  * bsc#1205759
  * bsc#1207352
  * bsc#1207749
  * bsc#1207750
  * bsc#1207830
  * bsc#1208046
  * bsc#1208049
  * bsc#1208060
  * bsc#1208062
  * bsc#1208065
  * bsc#1208270
  * bsc#1208293
  * bsc#1208298
  * bsc#1208612
  * bsc#1208692
  * bsc#1208719
  * bsc#1208819
  * bsc#1208821
  * bsc#1208965
  * bsc#1209113
  * bsc#1209645
  * bsc#1210458
  * bsc#1210640
  * bsc#1210907
  * bsc#1211525
  * bsc#1212099
  * bsc#1212100
  * bsc#1212279
  * bsc#1212641
  * bsc#1218843
  * bsc#1218844
  * jsc#MSQA-718
  * jsc#PED-2145
  * jsc#PED-2617
  * jsc#PED-3576
  * jsc#PED-3694
  * jsc#PED-4556
  * jsc#PED-5405
  * jsc#PED-5406
  * jsc#SLE-23422
  * jsc#SLE-23439
  * jsc#SLE-23631
  * jsc#SLE-24133
  * jsc#SLE-24565
  * jsc#SLE-24791

  
Cross-References:

  * CVE-2020-7753
  * CVE-2021-20178
  * CVE-2021-20180
  * CVE-2021-20191
  * CVE-2021-20228
  * CVE-2021-3447
  * CVE-2021-3583
  * CVE-2021-3620
  * CVE-2021-36222
  * CVE-2021-3711
  * CVE-2021-3807
  * CVE-2021-3918
  * CVE-2021-41174
  * CVE-2021-41244
  * CVE-2021-43138
  * CVE-2021-43798
  * CVE-2021-43813
  * CVE-2021-43815
  * CVE-2022-0155
  * CVE-2022-23552
  * CVE-2022-27664
  * CVE-2022-29170
  * CVE-2022-31097
  * CVE-2022-31107
  * CVE-2022-31123
  * CVE-2022-31130
  * CVE-2022-32149
  * CVE-2022-35957
  * CVE-2022-36062
  * CVE-2022-39201
  * CVE-2022-39229
  * CVE-2022-39306
  * CVE-2022-39307
  * CVE-2022-39324
  * CVE-2022-41715
  * CVE-2022-41723
  * CVE-2022-46146
  * CVE-2023-0507
  * CVE-2023-0594
  * CVE-2023-1387
  * CVE-2023-1410
  * CVE-2023-2183
  * CVE-2023-2801
  * CVE-2023-3128

  
CVSS scores:

  * CVE-2020-7753 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2021-20178 ( SUSE ):  5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
  * CVE-2021-20178 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-20180 ( SUSE ):  5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
  * CVE-2021-20180 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-20191 ( SUSE ):  5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
  * CVE-2021-20191 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-20228 ( SUSE ):  5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
  * CVE-2021-20228 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-3447 ( SUSE ):  5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
  * CVE-2021-3447 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-3583 ( SUSE ):  6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2021-3583 ( NVD ):  7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
  * CVE-2021-3620 ( SUSE ):  6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
  * CVE-2021-3620 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-36222 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2021-36222 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2021-3711 ( SUSE ):  9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2021-3711 ( NVD ):  9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2021-3807 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2021-3807 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2021-3807 ( NVD ):  7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2021-3918 ( SUSE ):  8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2021-3918 ( NVD ):  9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2021-41174 ( SUSE ):  6.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:N
  * CVE-2021-41174 ( NVD ):  6.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:N
  * CVE-2021-41244 ( SUSE ):  9.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
  * CVE-2021-41244 ( NVD ):  7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2021-43138 ( SUSE ):  7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2021-43138 ( NVD ):  7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2021-43798 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-43798 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2021-43813 ( SUSE ):  4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2021-43813 ( NVD ):  4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2021-43815 ( SUSE ):  4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2021-43815 ( NVD ):  4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2022-0155 ( NVD ):  6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
  * CVE-2022-23552 ( SUSE ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2022-23552 ( NVD ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2022-27664 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-27664 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-29170 ( SUSE ):  6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:L
  * CVE-2022-29170 ( NVD ):  8.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
  * CVE-2022-31097 ( SUSE ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2022-31097 ( NVD ):  8.7 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
  * CVE-2022-31107 ( SUSE ):  7.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
  * CVE-2022-31107 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
  * CVE-2022-31123 ( SUSE ):  4.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
  * CVE-2022-31123 ( NVD ):  7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2022-31130 ( SUSE ):  4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
  * CVE-2022-31130 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2022-32149 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-32149 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-35957 ( SUSE ):  6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2022-35957 ( NVD ):  6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
  * CVE-2022-36062 ( SUSE ):  6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L
  * CVE-2022-36062 ( NVD ):  7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
  * CVE-2022-39201 ( SUSE ):  4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
  * CVE-2022-39201 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2022-39229 ( SUSE ):  3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
  * CVE-2022-39229 ( NVD ):  4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
  * CVE-2022-39306 ( SUSE ):  6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2022-39306 ( NVD ):  6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2022-39307 ( SUSE ):  5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  * CVE-2022-39307 ( NVD ):  6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
  * CVE-2022-39324 ( SUSE ):  6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
  * CVE-2022-39324 ( NVD ):  6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
  * CVE-2022-41715 ( SUSE ):  6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-41715 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-41723 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-41723 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2022-46146 ( SUSE ):  8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  * CVE-2022-46146 ( NVD ):  8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  * CVE-2023-0507 ( SUSE ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2023-0507 ( NVD ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2023-0594 ( SUSE ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2023-0594 ( NVD ):  7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
  * CVE-2023-1387 ( SUSE ):  4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N
  * CVE-2023-1387 ( NVD ):  4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N
  * CVE-2023-1410 ( SUSE ):  5.7 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N
  * CVE-2023-1410 ( NVD ):  6.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:N
  * CVE-2023-2183 ( SUSE ):  4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N
  * CVE-2023-2183 ( NVD ):  4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N
  * CVE-2023-2801 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-2801 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-3128 ( SUSE ):  9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
  * CVE-2023-3128 ( NVD ):  9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

  
Affected Products:

  * openSUSE Leap 15.3
  * openSUSE Leap 15.4
  * openSUSE Leap 15.5
  * SUSE Linux Enterprise Desktop 15
  * SUSE Linux Enterprise Desktop 15 SP1
  * SUSE Linux Enterprise Desktop 15 SP2
  * SUSE Linux Enterprise Desktop 15 SP3
  * SUSE Linux Enterprise Desktop 15 SP4
  * SUSE Linux Enterprise Desktop 15 SP5
  * SUSE Linux Enterprise High Performance Computing 15
  * SUSE Linux Enterprise High Performance Computing 15 SP1
  * SUSE Linux Enterprise High Performance Computing 15 SP2
  * SUSE Linux Enterprise High Performance Computing 15 SP3
  * SUSE Linux Enterprise High Performance Computing 15 SP4
  * SUSE Linux Enterprise High Performance Computing 15 SP5
  * SUSE Linux Enterprise Micro 5.0
  * SUSE Linux Enterprise Micro 5.1
  * SUSE Linux Enterprise Micro 5.2
  * SUSE Linux Enterprise Micro 5.3
  * SUSE Linux Enterprise Micro 5.4
  * SUSE Linux Enterprise Micro 5.5
  * SUSE Linux Enterprise Real Time 15 SP1
  * SUSE Linux Enterprise Real Time 15 SP2
  * SUSE Linux Enterprise Real Time 15 SP3
  * SUSE Linux Enterprise Real Time 15 SP4
  * SUSE Linux Enterprise Real Time 15 SP5
  * SUSE Linux Enterprise Server 15
  * SUSE Linux Enterprise Server 15 SP1
  * SUSE Linux Enterprise Server 15 SP2
  * SUSE Linux Enterprise Server 15 SP3
  * SUSE Linux Enterprise Server 15 SP4
  * SUSE Linux Enterprise Server 15 SP5
  * SUSE Linux Enterprise Server for SAP Applications 15
  * SUSE Linux Enterprise Server for SAP Applications 15 SP1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP2
  * SUSE Linux Enterprise Server for SAP Applications 15 SP3
  * SUSE Linux Enterprise Server for SAP Applications 15 SP4
  * SUSE Linux Enterprise Server for SAP Applications 15 SP5
  * SUSE Manager Client Tools Beta for SLE 15
  * SUSE Manager Client Tools Beta for SLE Micro 5

  
  
An update that solves 44 vulnerabilities, contains 14 features and has 35
security fixes can now be installed.

## Description:

This update fixes the following issues:

ansible:

  * Update to version 2.9.27 (jsc#SLE-23631) (jsc#SLE-24133)
  * bsc#1187725 CVE-2021-3620 ansible-connection module discloses sensitive info
    in traceback error message (in 2.9.27)
  * bsc#1188061 CVE-2021-3583 Template Injection through yaml multi-line strings
    with ansible facts used in template. (in 2.9.23)
  * bsc#1176460 gh#ansible/ansible#72094 ansible module nmcli is broken in
    ansible 2.9.13 (in 2.9.15)
  * Update to 2.9.22:
  * CVE-2021-3447 (bsc#1183684) multiple modules expose secured values
  * CVE-2021-20228 (bsc#1181935) basic.py no_log with fallback option
  * CVE-2021-20191 (bsc#1181119) multiple collections exposes secured values
  * CVE-2021-20180 (bsc#1180942) bitbucket_pipeline_variable exposes sensitive
    values
  * CVE-2021-20178 (bsc#1180816) user data leak in snmp_facts module

dracut-saltboot:

  * Update to version 0.1.1681904360.84ef141
  * Load network configuration even when missing protocol version (bsc#1210640)
  * Update to verion 0.1.1674034019.a93ff61
  * Install copied wicked config as client.xml (bsc#1205599)
  * Update to version 0.1.1673279145.e7616bd
  * Add failsafe stop file when salt-minion does not stop (bsc#1172110)
  * Copy existing wicked config instead of generating new (bsc#1205599)
  * Update to version 0.1.1665997480.587fa10
  * Add dependencies on xz and gzip to support compressed images
  * Update to version 0.1.1661440542.6cbe0da
  * Use standard susemanager.conf
  * Move image services to dracut-saltboot package
  * Use salt bundle
  * Require e2fsprogs (bsc#1202614)
  * Update to version 0.1.1657643023.0d694ce
  * Update dracut-saltboot dependencies (bsc#1200970)
  * Fix network loading when ipappend is used in pxe config
  * Add new information messages

golang-github-QubitProducts-exporter_exporter:

  * Remove license file from %doc
  * Exclude s390 arch
  * Adapted to build on Enterprise Linux.
  * Fix build for RedHat 7
  * Require Go >= 1.14 also for CentOS
  * Add support for CentOS
  * Replace %{?systemd_requires} with %{?systemd_ordering}

golang-github-boynux-squid_exporter:

  * Exclude s390 architecture (gh#SUSE/spacewalk#19050)
  * Enhanced to build on Enterprise Linux 8.

golang-github-lusitaniae-apache_exporter:

  * Do not strip if SUSE Linux Enterprise 15 SP3
  * Exclude debug for RHEL >= 8
  * Build with Go >= 1.20 when the OS is not RHEL
  * Spec file clean up
  * Fix apparmor profile for SLE 12
  * Do not build with apparmor profile for SLE 12
  * Upgrade to version 1.0.0 (jsc#PED-5405)
  * Improved flag parsing
  * Added support for custom headers
  * Build with Go 1.19
  * Build using promu
  * Add _service file
  * Fix sandboxing options
  * Upgrade to version 0.13.4
  * Fix denial of service vulnerability (CVE-2022-32149, bsc#1204501)
  * Upgrade to version 0.13.3
  * Fix uncontrolled resource consumption (CVE-2022-41723, bsc#1208270)
  * Upgrade to version 0.13.1
  * Fix panic caused by missing flagConfig options
  * Upgrade to version 0.13.0
  * Fix authentication bypass vulnarability (CVE-2022-46146, bsc#1208046)
  * Corrected comment in AppArmor profile
  * Added AppArmor profile
  * Added sandboxing options to systemd service unit
  * Exclude s390 architecture (gh#SUSE/spacewalk#19050)
  * Update to upstream release 0.11.0 (jsc#SLE-24791)
  * Add TLS support
  * Switch to logger, please check --log.level and --log.format flags
  * Update to version 0.10.1
  * Bugfix: Reset ProxyBalancer metrics on each scrape to remove stale data
  * Update to version 0.10.0
  * Add Apache Proxy and other metrics
  * Update to version 0.8.0
  * Change commandline flags
  * Add metrics: Apache version, request duration total
  * Adapted to build on Enterprise Linux 8
  * Require building with Go 1.15
  * Add support for RedHat 8
  * Adjust dependencies on spec file
  * Disable dwarf compression in go build
  * Add support for Red Hat
  * Add %license macro for LICENSE file

golang-github-prometheus-prometheus:

  * Update to 2.45.0 (jsc#PED-5406):
  * [FEATURE] API: New limit parameter to limit the number of items returned by
    `/api/v1/status/tsdb` endpoint.
  * [FEATURE] Config: Add limits to global config.
  * [FEATURE] Consul SD: Added support for `path_prefix`.
  * [FEATURE] Native histograms: Add option to scrape both classic and native
    histograms.
  * [FEATURE] Native histograms: Added support for two more arithmetic operators
    `avg_over_time` and `sum_over_time`.
  * [FEATURE] Promtool: When providing the block id, only one block will be
    loaded and analyzed.
  * [FEATURE] Remote-write: New Azure ad configuration to support remote writing
    directly to Azure Monitor workspace.
  * [FEATURE] TSDB: Samples per chunk are now configurable with flag
    `storage.tsdb.samples-per-chunk`. By default set to its former value 120.
  * [ENHANCEMENT] Native histograms: bucket size can now be limited to avoid
    scrape fails.
  * [ENHANCEMENT] TSDB: Dropped series are now deleted from the WAL sooner.
  * [BUGFIX] Native histograms: ChunkSeries iterator now checks if a new sample
    can be appended to the open chunk.
  * [BUGFIX] Native histograms: Fix Histogram Appender `Appendable()` segfault.
  * [BUGFIX] Native histograms: Fix setting reset header to gauge histograms in
    seriesToChunkEncoder.
  * [BUGFIX] TSDB: Tombstone intervals are not modified after Get() call.
  * [BUGFIX] TSDB: Use path/filepath to set the WAL directory.
  * Update to 2.44.0:
  * [FEATURE] Remote-read: Handle native histograms.
  * [FEATURE] Promtool: Health and readiness check of prometheus server in CLI.
  * [FEATURE] PromQL: Add `query_samples_total` metric, the total number of
    samples loaded by all queries.
  * [ENHANCEMENT] Storage: Optimise buffer used to iterate through samples.
  * [ENHANCEMENT] Scrape: Reduce memory allocations on target labels.
  * [ENHANCEMENT] PromQL: Use faster heap method for `topk()` / `bottomk()`.
  * [ENHANCEMENT] Rules API: Allow filtering by rule name.
  * [ENHANCEMENT] Native Histograms: Various fixes and improvements.
  * [ENHANCEMENT] UI: Search of scraping pools is now case-insensitive.
  * [ENHANCEMENT] TSDB: Add an affirmative log message for successful WAL
    repair.
  * [BUGFIX] TSDB: Block compaction failed when shutting down.
  * [BUGFIX] TSDB: Out-of-order chunks could be ignored if the write-behind log
    was deleted.
  * Update to 2.43.1
  * [BUGFIX] Labels: Set() after Del() would be ignored, which broke some
    relabeling rules.
  * Update to 2.43.0:
  * [FEATURE] Promtool: Add HTTP client configuration to query commands.
  * [FEATURE] Scrape: Add `include_scrape_configs` to include scrape configs
    from different files.
  * [FEATURE] HTTP client: Add `no_proxy` to exclude URLs from proxied requests.
  * [FEATURE] HTTP client: Add `proxy_from_enviroment` to read proxies from env
    variables.
  * [ENHANCEMENT] API: Add support for setting lookback delta per query via the
    API.
  * [ENHANCEMENT] API: Change HTTP status code from 503/422 to 499 if a request
    is canceled.
  * [ENHANCEMENT] Scrape: Allow exemplars for all metric types.
  * [ENHANCEMENT] TSDB: Add metrics for head chunks and WAL folders size.
  * [ENHANCEMENT] TSDB: Automatically remove incorrect snapshot with index that
    is ahead of WAL.
  * [ENHANCEMENT] TSDB: Improve Prometheus parser error outputs to be more
    comprehensible.
  * [ENHANCEMENT] UI: Scope `group by` labels to metric in autocompletion.
  * [BUGFIX] Scrape: Fix `prometheus_target_scrape_pool_target_limit` metric not
    set before reloading.
  * [BUGFIX] TSDB: Correctly update `prometheus_tsdb_head_chunks_removed_total`
    and `prometheus_tsdb_head_chunks` metrics when reading WAL.
  * [BUGFIX] TSDB: Use the correct unit (seconds) when recording out-of-order
    append deltas in the `prometheus_tsdb_sample_ooo_delta` metric.
  * Update to 2.42.0: This release comes with a bunch of feature coverage for
    native histograms and breaking changes. If you are trying native histograms
    already, we recommend you remove the `wal` directory when upgrading. Because
    the old WAL record for native histograms is not backward compatible in
    v2.42.0, this will lead to some data loss for the latest data. Additionally,
    if you scrape "float histograms" or use recording rules on native histograms
    in v2.42.0 (which writes float histograms), it is a one-way street since
    older versions do not support float histograms.
  * [CHANGE] **breaking** TSDB: Changed WAL record format for the experimental
    native histograms.
  * [FEATURE] Add 'keep_firing_for' field to alerting rules.
  * [FEATURE] Promtool: Add support of selecting timeseries for TSDB dump.
  * [ENHANCEMENT] Agent: Native histogram support.
  * [ENHANCEMENT] Rules: Support native histograms in recording rules.
  * [ENHANCEMENT] SD: Add container ID as a meta label for pod targets for
    Kubernetes.
  * [ENHANCEMENT] SD: Add VM size label to azure service discovery.
  * [ENHANCEMENT] Support native histograms in federation.
  * [ENHANCEMENT] TSDB: Add gauge histogram support.
  * [ENHANCEMENT] TSDB/Scrape: Support FloatHistogram that represents buckets as
    float64 values.
  * [ENHANCEMENT] UI: Show individual scrape pools on /targets page.
  * Update to 2.41.0:
  * [FEATURE] Relabeling: Add keepequal and dropequal relabel actions.
  * [FEATURE] Add support for HTTP proxy headers.
  * [ENHANCEMENT] Reload private certificates when changed on disk.
  * [ENHANCEMENT] Add max_version to specify maximum TLS version in tls_config.
  * [ENHANCEMENT] Add goos and goarch labels to prometheus_build_info.
  * [ENHANCEMENT] SD: Add proxy support for EC2 and LightSail SDs.
  * [ENHANCEMENT] SD: Add new metric prometheus_sd_file_watcher_errors_total.
  * [ENHANCEMENT] Remote Read: Use a pool to speed up marshalling.
  * [ENHANCEMENT] TSDB: Improve handling of tombstoned chunks in iterators.
  * [ENHANCEMENT] TSDB: Optimize postings offset table reading.
  * [BUGFIX] Scrape: Validate the metric name, label names, and label values
    after relabeling.
  * [BUGFIX] Remote Write receiver and rule manager: Fix error handling.
  * Update to 2.40.7:
  * [BUGFIX] TSDB: Fix queries involving negative buckets of native histograms.
  * Update to 2.40.5:
  * [BUGFIX] TSDB: Fix queries involving native histograms due to improper reset
    of iterators.
  * Update to 2.40.3:
  * [BUGFIX] TSDB: Fix compaction after a deletion is called.
  * Update to 2.40.2:
  * [BUGFIX] UI: Fix black-on-black metric name color in dark mode.
  * Update to 2.40.1:
  * [BUGFIX] TSDB: Fix alignment for atomic int64 for 32 bit architecture.
  * [BUGFIX] Scrape: Fix accept headers.
  * Update to 2.40.0:
  * [FEATURE] Add experimental support for native histograms. Enable with the
    flag --enable-feature=native-histograms.
  * [FEATURE] SD: Add service discovery for OVHcloud.
  * [ENHANCEMENT] Kubernetes SD: Use protobuf encoding.
  * [ENHANCEMENT] TSDB: Use golang.org/x/exp/slices for improved sorting speed.
  * [ENHANCEMENT] Consul SD: Add enterprise admin partitions. Adds
    __meta_consul_partition label. Adds partition config in consul_sd_config.
  * [BUGFIX] API: Fix API error codes for /api/v1/labels and /api/v1/series.
  * Update to 2.39.1:
  * [BUGFIX] Rules: Fix notifier relabel changing the labels on active alerts.
  * Update to 2.39.0:
  * [FEATURE] experimental TSDB: Add support for ingesting out-of-order samples.
    This is configured via out_of_order_time_window field in the config file;
    check config file docs for more info.
  * [ENHANCEMENT] API: /-/healthy and /-/ready API calls now also respond to a
    HEAD request on top of existing GET support.
  * [ENHANCEMENT] PuppetDB SD: Add __meta_puppetdb_query label.
  * [ENHANCEMENT] AWS EC2 SD: Add __meta_ec2_region label.
  * [ENHANCEMENT] AWS Lightsail SD: Add __meta_lightsail_region label.
  * [ENHANCEMENT] Scrape: Optimise relabeling by re-using memory.
  * [ENHANCEMENT] TSDB: Improve WAL replay timings.
  * [ENHANCEMENT] TSDB: Optimise memory by not storing unnecessary data in the
    memory.
  * [ENHANCEMENT] TSDB: Allow overlapping blocks by default.
    \--storage.tsdb.allow-overlapping-blocks now has no effect.
  * [ENHANCEMENT] UI: Click to copy label-value pair from query result to
    clipboard.
  * [BUGFIX] TSDB: Turn off isolation for Head compaction to fix a memory leak.
  * [BUGFIX] TSDB: Fix 'invalid magic number 0' error on Prometheus startup.
  * [BUGFIX] PromQL: Properly close file descriptor when logging unfinished
    queries.
  * [BUGFIX] Agent: Fix validation of flag options and prevent WAL from growing
    more than desired.
  * Update to 2.38.0:
  * [FEATURE]: Web: Add a /api/v1/format_query HTTP API endpoint that allows
    pretty-formatting PromQL expressions.
  * [FEATURE]: UI: Add support for formatting PromQL expressions in the UI.
  * [FEATURE]: DNS SD: Support MX records for discovering targets.
  * [FEATURE]: Templates: Add toTime() template function that allows converting
    sample timestamps to Go time.Time values.
  * [ENHANCEMENT]: Kubernetes SD: Add __meta_kubernetes_service_port_number meta
    label indicating the service port number.
    __meta_kubernetes_pod_container_image meta label indicating the container
    image.
  * [ENHANCEMENT]: PromQL: When a query panics, also log the query itself
    alongside the panic message.
  * [ENHANCEMENT]: UI: Tweak colors in the dark theme to improve the contrast
    ratio.
  * [ENHANCEMENT]: Web: Speed up calls to /api/v1/rules by avoiding locks and
    using atomic types instead.
  * [ENHANCEMENT]: Scrape: Add a no-default-scrape-port feature flag, which
    omits or removes any default HTTP (:80) or HTTPS (:443) ports in the
    target's scrape address.
  * [BUGFIX]: TSDB: In the WAL watcher metrics, expose the type="exemplar" label
    instead of type="unknown" for exemplar records.
  * [BUGFIX]: TSDB: Fix race condition around allocating series IDs during chunk
    snapshot loading.
  * Remove npm_licenses.tar.bz2 during "make clean"
  * Remove web-ui archives during "make clean".
  * Require promu >= 0.14.0 for building
  * Drop:
  * Upgrade to version 2.37.6
  * Require Go 1.19
  * Upgrade to version 2.37.5
  * [SECURITY] Security upgrade from go and upstream dependencies that include
    security fixes to the net/http and os packages.
  * Upgrade to version 2.37.4
  * [SECURITY] Fix basic authentication bypass vulnerability (CVE-2022-46146,
    bsc#1208049, jsc#PED-3576).
  * Upgrade to version 2.37.3
  * [BUGFIX] Update our regexp library to fix upstream CVE-2022-41715.
  * Upgrade to version 2.37.2
  * Upgrade to version 2.37.1
  * [BUGFIX] Properly close file descriptor when logging unfinished queries.
  * [BUGFIX] TSDB: In the WAL watcher metrics, expose the
  * Upgrade to version 2.37.0
  * [FEATURE] Nomad SD: New service discovery for Nomad built-in service
    discovery.
  * [ENHANCEMENT] Kubernetes SD: Allow attaching node labels for endpoint role.
  * [ENHANCEMENT] PromQL: Optimise creation of signature with/without labels.
  * [ENHANCEMENT] TSDB: Memory optimizations.
  * [ENHANCEMENT] TSDB: Reduce sleep time when reading WAL.
  * [ENHANCEMENT] OAuth2: Add appropriate timeouts and User-Agent header.
  * [BUGFIX] Alerting: Fix Alertmanager targets not being updated when alerts
    were queued.
  * [BUGFIX] Hetzner SD: Make authentication files relative to Prometheus config
    file.
  * [BUGFIX] Promtool: Fix promtool check config not erroring properly on
    failures.
  * [BUGFIX] Scrape: Keep relabeled scrape interval and timeout on reloads.
  * [BUGFIX] TSDB: Don't increment prometheus_tsdb_compactions_failed_total when
    context is canceled.
  * [BUGFIX] TSDB: Fix panic if series is not found when deleting series.
  * [BUGFIX] TSDB: Increase prometheus_tsdb_mmap_chunk_corruptions_total on out
    of sequence errors.
  * [BUGFIX] Uyuni SD: Make authentication files relative to Prometheus
    configuration file and fix default configuration values.
  * Upgrade to version 2.36.2
  * [BUGFIX] Fix serving of static assets like fonts and favicon.
  * Upgrade to version 2.36.1
  * [BUGFIX] promtool: Add --lint-fatal option.
  * Upgrade to version 2.36.0
  * [FEATURE] Add lowercase and uppercase relabel action.
  * [FEATURE] SD: Add IONOS Cloud integration.
  * [FEATURE] SD: Add Vultr integration.
  * [FEATURE] SD: Add Linode SD failure count metric.
  * [FEATURE] Add prometheus_ready metric.
  * [ENHANCEMENT] Add stripDomain to template function.
  * [ENHANCEMENT] UI: Enable active search through dropped targets.
  * [ENHANCEMENT] promtool: support matchers when querying label
  * [ENHANCEMENT] Add agent mode identifier.
  * [BUGFIX] Changing TotalQueryableSamples from int to int64.
  * [BUGFIX] tsdb/agent: Ignore duplicate exemplars.
  * [BUGFIX] TSDB: Fix chunk overflow appending samples at a variable rate.
  * [BUGFIX] Stop rule manager before TSDB is stopped.
  * Upgrade to version 2.35.0
  * [CHANGE] TSDB: Delete *.tmp WAL files when Prometheus starts.
  * [CHANGE] promtool: Add new flag --lint (enabled by default) for the commands
    check rules and check config, resulting in a new exit code (3) for linter
    errors.
  * [FEATURE] Support for automatically setting the variable GOMAXPROCS to the
    container CPU limit. Enable with the flag \--enable-feature=auto-gomaxprocs.
  * [FEATURE] PromQL: Extend statistics with total and peak number of samples in
    a query. Additionally, per-step statistics are available with --enable-
    feature=promql-per-step-stats and using stats=all in the query API. Enable
    with the flag \--enable-feature=per-step-stats.
  * [ENHANCEMENT] TSDB: more efficient sorting of postings read from WAL at
    startup.
  * [ENHANCEMENT] Azure SD: Add metric to track Azure SD failures.
  * [ENHANCEMENT] Azure SD: Add an optional resource_group configuration.
  * [ENHANCEMENT] Kubernetes SD: Support discovery.k8s.io/v1 EndpointSlice
    (previously only discovery.k8s.io/v1beta1 EndpointSlice was supported).
  * [ENHANCEMENT] Kubernetes SD: Allow attaching node metadata to discovered
    pods.
  * [ENHANCEMENT] OAuth2: Support for using a proxy URL to fetch OAuth2 tokens.
  * [ENHANCEMENT] Configuration: Add the ability to disable HTTP2.
  * [ENHANCEMENT] Config: Support overriding minimum TLS version.
  * [BUGFIX] Kubernetes SD: Explicitly include gcp auth from k8s.io.
  * [BUGFIX] Fix OpenMetrics parser to sort uppercase labels correctly.
  * [BUGFIX] UI: Fix scrape interval and duration tooltip not showing on target
    page.
  * [BUGFIX] Tracing/GRPC: Set TLS credentials only when insecure is false.
  * [BUGFIX] Agent: Fix ID collision when loading a WAL with multiple segments.
  * [BUGFIX] Remote-write: Fix a deadlock between Batch and flushing the queue.
  * Upgrade to version 2.34.0
  * [CHANGE] UI: Classic UI removed.
  * [CHANGE] Tracing: Migrate from Jaeger to OpenTelemetry based tracing.
  * [ENHANCEMENT] TSDB: Disable the chunk write queue by default and allow
    configuration with the experimental flag \--storage.tsdb.head-chunks-write-
    queue-size.
  * [ENHANCEMENT] HTTP SD: Add a failure counter.
  * [ENHANCEMENT] Azure SD: Set Prometheus User-Agent on requests.
  * [ENHANCEMENT] Uyuni SD: Reduce the number of logins to Uyuni.
  * [ENHANCEMENT] Scrape: Log when an invalid media type is encountered during a
    scrape.
  * [ENHANCEMENT] Scrape: Accept application/openmetrics-text;version=1.0.0 in
    addition to version=0.0.1.
  * [ENHANCEMENT] Remote-read: Add an option to not use external labels as
    selectors for remote read.
  * [ENHANCEMENT] UI: Optimize the alerts page and add a search bar.
  * [ENHANCEMENT] UI: Improve graph colors that were hard to see.
  * [ENHANCEMENT] Config: Allow escaping of $ with $$ when using environment
    variables with external labels.
  * [BUGFIX] PromQL: Properly return an error from histogram_quantile when
    metrics have the same labelset.
  * [BUGFIX] UI: Fix bug that sets the range input to the resolution.
  * [BUGFIX] TSDB: Fix a query panic when memory-snapshot-on-shutdown is
    enabled.
  * [BUGFIX] Parser: Specify type in metadata parser errors.
  * [BUGFIX] Scrape: Fix label limit changes not applying.
  * Upgrade to version 2.33.5
  * [BUGFIX] Remote-write: Fix deadlock between adding to queue and getting
    batch.
  * Upgrade to version 2.33.4
  * [BUGFIX] TSDB: Fix panic when m-mapping head chunks onto the disk.
  * Upgrade to version 2.33.3
  * [BUGFIX] Azure SD: Fix a regression when public IP Address isn't set.
  * Upgrade to version 2.33.2
  * [BUGFIX] Azure SD: Fix panic when public IP Address isn't set.
  * [BUGFIX] Remote-write: Fix deadlock when stopping a shard.
  * Upgrade to version 2.33.1
  * [BUGFIX] SD: Fix no such file or directory in K8s SD when not running inside
    K8s.
  * Upgrade to version 2.33.0
  * [CHANGE] PromQL: Promote negative offset and @ modifer to stable features.
  * [CHANGE] Web: Promote remote-write-receiver to stable.
  * [FEATURE] Config: Add stripPort template function.
  * [FEATURE] Promtool: Add cardinality analysis to check metrics, enabled by
    flag --extended.
  * [FEATURE] SD: Enable target discovery in own K8s namespace.
  * [FEATURE] SD: Add provider ID label in K8s SD.
  * [FEATURE] Web: Add limit field to the rules API.
  * [ENHANCEMENT] Remote-write: Avoid allocations by buffering concrete structs
    instead of interfaces.
  * [ENHANCEMENT] Remote-write: Log time series details for out-of-order samples
    in remote write receiver.
  * [ENHANCEMENT] Remote-write: Shard up more when backlogged.
  * [ENHANCEMENT] TSDB: Use simpler map key to improve exemplar ingest
    performance.
  * [ENHANCEMENT] TSDB: Avoid allocations when popping from the intersected
    postings heap.
  * [ENHANCEMENT] TSDB: Make chunk writing non-blocking, avoiding latency spikes
    in remote-write.
  * [ENHANCEMENT] TSDB: Improve label matching performance.
  * [ENHANCEMENT] UI: Optimize the service discovery page and add a search bar.
  * [ENHANCEMENT] UI: Optimize the target page and add a search bar.
  * [BUGFIX] Promtool: Make exit codes more consistent.
  * [BUGFIX] Promtool: Fix flakiness of rule testing.
  * [BUGFIX] Remote-write: Update
    prometheus_remote_storage_queue_highest_sent_timestamp_seconds metric when
    write irrecoverably fails.
  * [BUGFIX] Storage: Avoid panic in BufferedSeriesIterator.
  * [BUGFIX] TSDB: CompactBlockMetas should produce correct mint/maxt for
    overlapping blocks.
  * [BUGFIX] TSDB: Fix logging of exemplar storage size.
  * [BUGFIX] UI: Fix overlapping click targets for the alert state checkboxes.
  * [BUGFIX] UI: Fix Unhealthy filter on target page to actually display only
    Unhealthy targets.
  * [BUGFIX] UI: Fix autocompletion when expression is empty.
  * [BUGFIX] TSDB: Fix deadlock from simultaneous GC and write.
  * Fix authentication bypass by updating Prometheus Exporter Toolkit to version
    0.7.3 (CVE-2022-46146, bsc#1208049)
  * Fix uncontrolled resource consumption by updating Go to version 1.20.1
    (CVE-2022-41723, bsc#1208298)
  * Restructure the spec to build web assets online
  * Makefile

grafana:

  * Update to version 9.5.8:
  * Features and enhancements GenericOAuth: Set sub as auth id
  * Bug fixes: DataSourceProxy: Fix url validation error handling
  * Update to version 9.5.7: Alerting: Sort NumberCaptureValues in
    EvaluationString Alerting: Improve performance of matching captures
    Alerting: No longer silence paused alerts during legacy migration Alerting:
    Remove and revert flag alertingBigTransactions Alerting: Migrate unknown
    NoData\Error settings to the default Tracing: supply Grafana build version
    Tempo: Escape regex-sensitive characters in span name before building promql
    query Plugins: Only configure plugin proxy transport once Alerting: Fix
    unique violation when updating rule group with title chains/cycles
    Prometheus: Version detect bug Prometheus: Fix heatmap format with no data
    Database: Change getExistingDashboardByTitleAndFolder to get dashboard by
    title, not slug Alerting: Convert 'Both' type Prometheus queries to 'Range'
    in SQLStore: Fix Postgres dialect treating "false" migrator default as true
    Alerting: Support newer http_config struct InfluxDB: Interpolate retention
    policies StatusHistory: Fix rendering of value-mapped null Alerting: Fix
    provenance guard checks for Alertmanager configuration to not cause panic
    when compared nested objects AnonymousAuth: Fix concurrent read-write crash
    AzureMonitor: Ensure legacy properties containing template variables are
    correctly migrated Explore: Remove data source onboarding page Dashboard:
    Re-align Save form Azure Monitor: Fix bug that did not show alert rule
    preview Histogram: Respect min/max panel settings for x-axis Heatmap: Fix
    color rendering for value ranges < 1 Heatmap: Handle unsorted timestamps in
    calculate mode Google Cloud Monitor: Fix mem usage for dropdown
    AzureMonitor: Fix logs query multi-resource and timespan values Utils:
    Reimplement util.GetRandomString to avoid modulo bias Alerting: Fix matching
    labels with spaces in their values Dashboard: Fix applying timezone to
    datetime variables Dashboard: Fix panel description event triggering every
    time panel is rendered Tempo: Fix get label values based on CoreApp type
    Heatmap: Fix log scale editor Dashboard: Fix disappearing panel when viewed
    panel is refreshed Prometheus: Fix bug in creating autocomplete queries with
    labels Prometheus: Fix Query Inspector expression range value Alerting: Fix
    migration failing if alert_configuration table is not empty InfluxDB: Fix
    querying retention policies on flux mode
  * Update to version 9.5.6:
  * Bug fixes Dashboard: Fix library panels in collapsed rows not getting
    updated Auth: Add and document option for enabling email lookup
  * Update to version 9.5.5: Security: Fix authentication bypass using Azure AD
    OAuth (bsc#1212641, CVE-2023-3128, jsc#PED-3694). Auth: Show invite button
    if disable login form is set to false. Azure: Fix Kusto auto-completion for
    Azure datasources. RBAC: Remove legacy AC editor and admin role on new
    dashboard route. API: Revert allowing editors to access GET /datasources.
    Settings: Add ability to override skip_org_role_sync with Env variables.
  * Update to version 9.5.3: Query: Prevent crash while executing concurrent
    mixed queries (bsc#1212099, CVE-2023-2801). Alerting: Require
    alert.notifications:write permissions to test receivers and templates
    (bsc#1212100, CVE-2023-2183).
  * Update to version 9.5.2: Alerting: Scheduler use rule fingerprint instead of
    version. Explore: Update table min height. DataLinks: Encoded URL fixed.
    TimeSeries: Fix leading null-fill for missing intervals. Dashboard: Revert
    fixed header shown on mobile devices in the new panel header. PostgreSQL:
    Fix TLS certificate issue by downgrading lib/pq. Provisioning: Fix
    provisioning issues with legacy alerting and data source permissions.
    Alerting: Fix misleading status code in provisioning API. Loki: Fix log
    samples using `instant` queries. Panel Header: Implement new Panel Header on
    Angular Panels. Azure Monitor: Fix bug that was not showing resources for
    certain locations. Alerting: Fix panic when reparenting receivers to groups
    following an attempted rename via Provisioning. Cloudwatch Logs: Clarify
    Cloudwatch Logs Limits.
  * Update to 9.5.1 Loki Variable Query Editor: Fix bug when the query is
    updated Expressions: Fix expression load with legacy UID -100
  * Update to 9.5.0 (CVE-2023-1387, bsc#1210907, jsc#PED-3694)
  * Breaking changes
    * default named retention policies won't be used to query. Users who have a default named retention policy in their influxdb database, have to rename it to something else. Having default named retention policy is not breaking anything. We will make sure to use the actual default retention policy under the hood. To change the hardcoded retention policy in the dashboard.json, users must they select the right retention policy from dropdown and save the panel/dashboard.
    * Grafana Alerting rules with NoDataState configuration set to Alerting will now respect "For" duration.
    * Users who use LDAP role sync to only sync Viewer, Editor and Admin roles, but grant Grafana Server Admin role manually will not be able to do that anymore. After this change, LDAP role sync will override any manual changes to Grafana Server Admin role assignments. If grafana_admin is left unset in LDAP role mapping configuration, it will default to false. API keys: Add deprecation to api keys. API: Enable serving Swagger UI by default and add docs and guidelines. API: Permit Cache-Control (browser caching) for datasource resources. Accessibility: Make row actions keyboard accessible. Admin/Plugins: Set category filter in connections link. Alerting: Add CustomDetails field in PagerDuty contact point. Alerting: Add dashboard and panel links to rule and instance annotations. Alerting: Add filter and remove funcs for custom labels and Alerting: Add fuzzy search to alert list view. Alerting: Add metrics for active receiver and integrations. Alerting: Better printing of labels. Alerting: Create new state history "fanout" backend that dispatches to multiple other backends at once. Alerting: Enable preview for recording rules. Alerting: Fetch all applied alerting configurations. Alerting: Introduce proper feature toggles for common state history backend combinations. Alerting: Make time range query parameters not required when querying Loki. Alerting: New notification policies view. Alerting: No longer index state history log streams by instance labels. Alerting: Respect "For" Duration for NoData alerts. Alerting: Support filtering rules by multiple datasources. Alerting: Switch to snappy-compressed-protobuf for outgoing push requests to Loki. Angular: Prevent angular from loading when disabled. Auth: Add Generic oauth skip org role sync setting. Auth: Add feature flag to move token rotation to client. Auth: Show user sync external Authentication status. Backend: Use sdk version 0.148.0. Chore: Add stat for remote cache config. Chore: Replace short UID generation with more standard UUIDs. Chore: Use DOMPurify to sanitize strings rather than js-xss. CloudMonitoring: Add possibility to use path for private key. CloudWatch Logs: Update default timeout to 30m. CloudWatch: Add AWS/IotSiteWise namespace and metrics. CloudWatch: Add account support to variable queries. CloudWatch: Make deeplinks work for us-gov and china regions. Cloudwatch: Add MeteredIOBytes metric for EFS. Command Palette: Display dashboard location. Command palette: Enable folder searching. Connections: Turn on feature toggle by default. Cookies: Provide a mechanism for per user control over cookies. Dashboard Datasource: Update Query List & Improve UX. Dashboard: Add a feature that creates a table panel when a spreadsheet file is dropped on the dashboard. Dashboard: Add new visualization/row/library panel/pasted panel is now a dropdown menu. Dashboard: Add value format for requests per minute. Dashboard: Empty/No Panels dashboard with a new design. Dashboard: When dashboard is not found show message instead of empty page. Dashboards: Enable feature flag newPanelChromeUI by default. Dataplane: Support timeSeriesLong without transform. Datasources: Add user_agent header customization for outgoing HTTP requests. Datasources: Use getDefaultQuery in annotations editors. Docs: Add documentation on how to debug backend plugins. Docs: Deprecate dashboard previews. Elasticsearch: Detect Elasticsearch version. Elasticsearch: Run Explore queries trough data source backend. Explore: Add range option to internal data links. Explore: Add transformations to correlation data links. Explore: Support mixed data sources for supplementary query. Extensions: Expose an enum for available placements. Feat: Changing link destination for get more plugins. Feat: Linking to plugin details page rather than externally for new datasources. FieldMatchers: Add match by value (reducer). Flame graph: Add context menu. Flame graph: Add metadata above flame graph. Geomap: Improve tooltip url for photos layer. Geomap: Release night / day layer. InfluxDB: Move database information into jsondata. Jaeger and Zipkin: Config & docs upgrade. LDAP: Allow setting minimum TLS version and accepted ciphers. Live: Remove (alpha) ability to configure live pipelines. Logger: Add feature toggle for errors in HTTP request logs. Login: Allow custom name and icon for social providers. Logs Panel: Refactor style generation to improve rendering performance. Logs: Add millisecond to timestamp in log line. Logs: Rename dedup to deduplicate. Loki Query Editor: Make Monaco the default editor. Loki: Add unpack query builder hint. Loki: Add descriptions to query builder operations. Loki: Add placeholder to the loki query editor. Loki: Always fetch for new label keys in the QueryBuilder. Loki: Display error with label filter conflicts. Loki: Improve the display of loki query stats. MSSQL/Postgres: List views in table dropdown as well. MSSQL: Update forked go-mssqldb dependency. Metrics: Update comment to mention folders instead of dashboards. Navigation: Enable new navigation by default. NodeGraph: Support icons for nodes. Notifications: Enable display of trace ID by default. Packaging: Start Grafana service after InfluxDB. Panel Header: Add CancelQuery option to panel header. Panel: Show multiple errors info in the inspector. PanelChrome: Add option to show actions on the right side (actions = leftItems). Phlare: Allow variables in labelSelector (in query). Plugin: Skip preloading disabled app plugins. Plugins: Add optional logger for plugin requests sent to backend plugins. Plugins: Extend panel menu with commands from plugins. Plugins: Extend panel menu with links from plugins. Plugins: Improve instrumentation by adding metrics and tracing. Plugins: Support for distributed tracing in backend plugins SDK. Plugins: Support for link extensions. Profiling: Enable flame graph & Phlare/Parca data sources for all users. Prometheus Datasource: Improve Prom query variable editor. Prometheus Metrics: Add missing stat_total_teams metric. Prometheus/Loki: Run query explicitly instead of onblur in panel edit. Prometheus: Browser resource caching. Prometheus: Improve prometheus query variable editor. Prometheus: Use $__rate_interval for rate queries generated by metric browser. Pubdash: Email sharing handle dashboard deleted. PublicDashboards: Backfills share column with default value. PublicDashboards: Configuration modal redesign. PublicDashboards: Email sharing. PublicDashboards: Enable creation when dashboard has template variables. PublicDashboards: Paused or deleted public dashboard screen. QueryHistory: Improve handling of mixed datasource entries. Rendering: Experimental support to use JWTs as auth method. SQL Datasources: Add back help content. Schema: Remove exclusion for timeseries and update imports. Search: Improvements for starred dashboard search. Select: Show icon in the grafana/ui Select component. Service accounts: Creation logic simplification. Service accounts: Remove Add API keys buttons and remove one state of migrating for API keys tab. SplitOpen: Update API to accept multiple queries. Stat Panel: Add an option for a non-gradient/solid background. Stat: Add ability to remove default single-color background gradient. SupportBundles: Add OAuth bundle collectors. Table Panel: Add ability to use text color for value or hide value in gauge cell. Table: Introduce sparkline cell type. Tempo: Config and doc updates. Tempo: Update service graph view and docs. TraceView: Add key and url escaping of json tag values. TraceView: Reworked header. Tracing: Add more detail to HTTP Outgoing Request. Tracing: Docs and config improvements for Tempo/Jaeger/Zipkin. Tracing: Support multiple OTel propagators. Transformations: Support time format when converting time to strings. Transformers: Support adding the row index using calculate field transformer. Units: Format currency with negative before the symbol. API: Fix "Updated by" Column in dashboard versions table. AccessControl: Allow editors to access GET /api/datasources. Alerting: Add "backend" label to state history writes metrics. Alerting: Add alert instance labels to Loki log lines in addition to stream labels. Alerting: Elide requests to Loki if nothing should be recorded. Alerting: Fix DatasourceUID and RefID missing for DatasourceNoData alerts. Alerting: Fix ambiguous handling of equals in labels when bucketing Loki state history streams. Alerting: Fix attachment of external labels to Loki state history log streams. Alerting: Fix creating a recording rule when having multiple datasources. Alerting: Fix explore link in alert detail view. Alerting: Fix share URL for Prometheus rules on subpath. Alerting: Fix stats that display alert count when using unified alerting. Alerting: Hide mute timing actions when dealing with vanilla prometheus. Alerting: Paginate result previews. Alerting: Prometheus-compatible Alertmanager timings editor. Alerting: Update scheduler to get updates only from database. Alerting: Use a completely isolated context for state history writes. Alerting: Use displayNameFromDS if available in preview. Annotation List: Fix panel not updating when variable is changed. Annotations: Ignore unique constraint violations for tags. Auth: Fix orgrole picker disabled if isSynced user. AzureMonitor: Fix Log Analytics portal links. BrowseDashboards: Fix move to General folder not working. Catalog: Show install error with incompatible version. Chore: Update Grafana to use Alertmanager v0.25.1-0.20230308154952-78fedf89728b. CloudMonitoring: Add project selector for MQL editor[fix]. CloudWatch Logs: Fix running logs queries with expressions. CloudWatch Logs: Fix to make log queries use a relative time if available. CloudWatch Logs: Revert "Queries in an expression should run synchronously". CloudWatch: Fix cachedQueries insights not being updated for metric queries. Cloudwatch: Pass refId from query for expression queries. Dashboards: Evaluate provisioned dashboard titles in a backwards compatible way. Dashboards: Fix broken internal data links. Database: Don't sleep 10ms before every request. Elasticsearch: Fix processing of response with multiple group by for alerting. Elasticsearch: Handle multiple annotation structures. Email: Mark HTML comments as "safe" in email templates. ErrorHandling: Fixes issues with bad error messages. ErrorView: Better detection of no-data responses. Explore: Make DataSourcePicker visible on small screens. Fix: DataLinks from data sources override user defined data link. Fix: Top table rendering and update docs. Frontend: Fix broken links in /plugins when pathname has a trailing slash. Geomap: Fix route layer zoom behavior. Google Cloud Monitoring: Fix project variable. HeatMap: Sort y buckets when all bucket names are numeric. InfluxDB: Fix querying with hardcoded retention policy. InfluxDB: Fix sending retention policy with InfluxQL queries. KVStore: Include database field in migration. LDAP: Always synchronize Server Admin role through role sync if role sync is enabled. Library panels: Ensure pagination controls are always correctly displayed. Loki: Fix autocomplete situations with multiple escaped quotes. MegaMenu: Fixes mega menu showing scroll indicator when it shouldn't. Navigation: Redirect to root page when switching organization. Navigation: Scrolled hamburger menu links now navigate correctly in Safari. NestedFolders: Fix nested folder deletion. New Panel Header: Fix when clicking submenu item the parent menu item onClick get's triggered. Phlare: Fix error when there are no profileTypes to send from backend. PieChart: Show long labels properly. PluginExtensions: Fixed issue with incorrect type being exposed when configuring an extension. Plugins: Ensure proxy route bodies are valid JSON. Plugins: Fix width for README pages with tables. Plugins: Markdown fetch retry with lowercase. Plugins: Skip instrumenting plugin build info for core and bundled plugins. PublicDashboards: Query collapsed panels inside rows. Query Splitting: Fix for handling queries with no requestId. SQL Datasources: Fix variable throwing error if query returns no data. SQL Datasources: Prevent Call Stack Overflows with Large Numbers of Values for Variable. SQLStore: Fix SQLite error propagation if query retries are disabled. Stat Panel: Fix issue with clipping text values. Table Panel: Fix panel migration for options cell type. Table: Fix migrations from old angular table for cell color modes. Table: Fixes issue with pagination summary causing scrollbar. Table: Fixes table panel gauge alignment. TablePanel: Fix table cells overflowing when there are multiple data links. TablePanel: fix footer bug; no footer calculated values after "hidden" column override. Templating: Allow percent encoding of variable with custom all. Tempo: Set default limit if none is provided for traceql queries. TimeSeries: Don't extend stepped interpolation to graph edges. TimeSeries: Improve stacking direction heuristic. Trace View: Update the queryType to traceql for checking if same trace when clicking span link. TraceView: Don't require preferredVisualisationType to render. Utils: Reimplement util.GetRandomString to avoid modulo bias. XYChart: Add all dataset columns in tooltip.
  * Plugin development fixes & changes DateTimePicker: Can now select time
    correctly. Grafana UI: Fix tooltip prop of button component. DateTimePicker:
    Add min date support to calendar. GrafanaUI: Implement new component
    Toggletip. ContextMenu: Fix padding and show border based on items.
  * Update to 9.4.7 (2023-03-16) Alerting: Update scheduler to receive rule
    updates only from database. Influxdb: Re-introduce backend migration feature
    toggle. Security: Fixes for CVE-2023-1410. The InfluxDB backend migration
    feature toggle (influxdbBackendMigration) has been reintroduced in this
    version as issues were discovered with backend processing of InfluxDB data.
    Unless this feature toggle is enabled, all InfluxDB data will be parsed in
    the frontend. This frontend processing is the default behavior. In Grafana
    9.4.4, InfluxDB data parsing started to be handled in the backend. If you
    have upgraded to 9.4.4 and then added new transformations on InfluxDB data,
    those panels will fail to render. To resolve this either: Remove the
    affected panel and re-create it or edit the `time` field as `Time` in
    `panel.json` or `dashboard.json` as the exporter toolkit has been updated by
    upstream
  * Install wrapper scripts under /usr/sbin
  * Install actual binaries under /usr/libexec/grafana (or /usr/lib under older
    distributions) and create a simlink for wrapper scripts and the service
    (which expect the binary to be under /usr/share/grafana/bin)
  * Update to 9.4.3 Alerting: Use background context for maintenance function.
  * Update to 9.4.2 Alerting: Fix boolean default in migration from false to 0.
  * Update to 9.4.0 Alerting: Add endpoint for querying state history. Alerting:
    Add label query parameters to state history endpoint. Alerting: Add static
    label to all state history entries. Alerting: Mark AM configuration as
    applied. Azure Monitor: Enable multiple resource queries. Query Caching: Add
    per-panel query caching TTL. Table: Add row number column option. Tempo:
    Remove tempoApmTable feature flag. Transformations: Selectively apply
    transformation to queries. AccessControl: Clear user permission cache for
    update org user role. Alerting: Fix handling of special floating-point cases
    when writing observed values to annotations. Auth: Rotate token patch.
    ContextMenu: Consider y coord when determining bottom collision.
    Elasticsearch: Fix consistent label order in alerting. Explore: Fix graph
    not updating when changing config. Heatmap: Support heatmap rows with non-
    timeseries X axis. Login: Fix panic when a user is upserted by a background
    process. MSSQL: Add support for macro function calls. MySQL: Quote
    identifiers that include special characters. Navigation: Sign in button now
    works correctly when served under a sub path. Nested Folder: Fix for SQLite
    not to overwrite the parent on restarts. PanelChrome: Adds display mode to
    support transparent option. Plugins: Case-sensitive routes for standalone
    pages. Plugins: Prefer to use the data source UID when querying. SQLStore:
    Fix folder migration for MySQL < 5.7. Search: Fix not being able to clear
    sort value. Tempo: Fix span name being dropped from the query. PanelChrome:
    Implement hover header.
  * Update to 9.3.7 Alerting: Validate that tags are 100 characters or less.
    Expressions: Fixes the issue showing expressions editor. Logs: Fix stats not
    being updated when log results change. Plugins: Fix circular reference in
    customOptions leading to MarshalJSON errors. Time Series Panel: Fix legend
    text selection in Firefox.
  * Update to 9.3.6 QueryEditorRow: Fixes issue loading query editor when data
    source variable selected.
  * Update to 9.3.4 Prometheus: Add default editor configuration. TextPanel:
    Refactor to functional component. Alerting: Fix webhook to use correct key
    for decrypting token. Alerting: Set error annotation on EvaluationError
    regardless of underlying error type. Datasources: Fix Proxy by UID Failing
    for UIDs with a Hyphen. Fix creating of span link with no tags.
    Elasticsearch: Fix failing requests when using SigV4. Elasticsearch: Fix
    toggle-settings are not shown correctly. Explore: Be sure time range key
    bindings are mounted after clear. Explore: Unsync time ranges when a pane is
    closed. Logs: Lines with long words do not break properly. Loki: Fix
    misaligned derived fields settings. Query Builder: Fix max width of input
    component to prevent overflows. Search: Auto focus input elements. Search:
    Fix empty folder message showing when by starred dashboards. Table Panel:
    Fix image of image cell overflowing table cell and cells ignoring text
    alignment setting when a data link is added.
  * Update to 9.3.2 Graphite: Process multiple queries to Graphite plugin. API:
    Fix delete user failure due to quota not enabled. Accessibility: Improved
    keyboard accessibility in BarGauge. Accessibility: Improved keyboard
    accessibility in BigValue. Alerting: Use the QuotaTargetSrv instead of the
    QuotaTarget in quota check. AzureMonitor: Automate location retrieval.
    AzureMonitor: Fix bad request when setting dimensions. BarChart: Fix value
    mappings. Build: Streamline and sync dockerfiles. Build: Unified dockerfile
    for all builds. CloudWatch: Fix - make sure dimensions are propagated to
    alert query editor. Cloudwatch: Fix deeplink with default region. Command
    Palette: Fix not being able to type if triggered whilst another modal is
    open. Command Palette: Maintain page state when changing theme. Dashboards:
    Fix 'Make Editable' button not working in Dashboard Settings. Dashboards:
    Show error when data source is missing. Datasource: Fix - apply default
    query also to queries in new panels. Dropdown: Menu now closes correctly
    when selecting options on touch devices. Influx: Query segment menus now
    position correctly near the bottom of the screen. Login: Fix failure to
    login a new user via an external provider if quota are enabled.
    Loki/Prometheus: Fix wrong queries executed in split view. Loki: Fix wrongly
    escaped label values when using LabelFilter. Navigation: Prevent app crash
    when importing a dashboard with a uid of `home`. Panel Edit: Fix data links
    edit icons being off screen when provided title is too long. Prometheus: Fix
    exemplar fill color to match series color in time series. Prometheus: Fix
    exemplars not respecting corresponding series display status. StateTimeline:
    Fix negative infinity legend/tooltip from thresholds. Table: Fixes row
    border style not showing and colored rows blending together. Tempo: Fix
    TraceQL autocomplete issues. TimePicker: Prevent TimePicker overflowing
    viewport on small screens. TimeRangePicker: Fix recently ranges only not
    showing all recent ranges. TimeZonePicker: Scroll menu correctly when using
    keyboard controls.
  * Update to 9.3.1 Connections: Update "Your connections/Data sources" page.
    Accessibility: Increase badge constrast to be WCAG AA compliant.
  * Update to 9.3.0 Alerting: Enable interpolation for notification policies in
    file provisioning. Azure Monitor Logs: Avoid warning when the response is
    empty. Azure Monitor: Add support to customized routes. Canvas: Add icon
    value mapping. CloudWatch: Cross-account querying support. Docs: Update
    `merge-pull-request.md` regarding backport policies. GaugePanel: Setting the
    neutral-point of a gauge. Geomap: Improve location editor.
    Internationalization: Enable internationalization by default. Logs: Add
    `Download logs` button to log log-browser. Loki: Add `gzip` compression to
    resource calls. Loki: Add improvements to loki label browser. Loki: Make
    label browser accessible in query builder. Loki: Remove raw query toggle.
    Middleware: Add CSP Report Only support. Navigation: Prevent viewer role
    accessing dashboard creation, import and folder creation. OAuth: Refactor
    OAuth parameters handling to support obtaining refresh tokens for Google
    OAuth. Oauth: Display friendly error message when role_attribute_strict=true
    and no valid role found. Preferences: Add confirmation modal when saving org
    preferences. PublicDashboards: Orphaned public dashboard deletion script
    added. Query Editor: Hide overflow for long query names. Solo Panel:
    Configurable timezone. TablePanel: Add support for Count calculation per
    column or per entire dataset. Tempo: Send the correct start time when making
    a TraceQL query. Various Panels: Remove beta label from Bar Chart,
    Candlestick, Histogram, State Timeline, & Status History Panels. Access
    Control: Clear user's permission cache after resource creation.
    Accessibility: Improve keyboard accessibility in `AnnoListPanel`.
    Accessibility: Improve keyboard accessibility in `Collapse`.
    `GettingStarted` panel. Accessibility: Improve keyboard accessibility of
    `FilterPill`. Admin: Fix broken links to image assets in email templates.
    Azure Monitor: Fix namespace selection for storageaccounts. Calcs: Fix
    difference percent in legend. DataLinks: Improve Data-Links AutoComplete
    Logic. Explore: Fix a11y issue with logs navigation buttons. Heatmap: Fix
    blurry text & rendering. Heatmap: Fix tooltip y range of top and bottom
    buckets in calculated heatmaps. Logs: Fix misalignment of LogRows.
    Navigation: Stop clearing search state when opening a result in a new tab.
    OptionsUI: SliderValueEditor does not get auto focused on slider change.
    PanelEdit: Fixes bug with not remembering panel options pane collapse/expand
    state. Quota: Fix failure in store due to missing scope parameters. Quota:
    Fix failure when checking session limits. StateTimeline: Prevent label text
    from overflowing state rects. Tempo: Fix search table duration unit.
    TraceView: Fix broken rendering when scrolling in Dashboard panel in
    Firefox. GrafanaUI: Add disabled option for menu items.
  * Update to 9.2.4 Access Control: Add an endpoint for setting several managed
    resource permissions. Accessibility: Increase `Select` placeholder contrast
    to be WCAG AA compliant. Alerting: Append org ID to alert notification URLs.
    Alerting: Make the Grouped view the default one for Rules. Build: Remove
    unnecessary alpine package updates. Google Cloud Monitoring: Set frame
    interval to draw null values. Instrumentation: Expose when the binary was
    built as a gauge. Loki: Preserve `X-ID-Token` header. Search: Reduce
    requests in folder view. TimeSeries: More thorough detection of negative
    values for auto-stacking direction. Alerting: Attempt to preserve UID from
    migrated legacy channel. Alerting: Fix response is not returned for invalid
    Duration in Provisioning API. Alerting: Fix screenshot is not taken for
    stale series. Auth: Fix admins not seeing pending invites. MSSQL/Postgres:
    Fix visual query editor filter disappearing. Tempo: Fix dropdown issue on
    tag field focus. Timeseries: Fix null pointer when matching fill below to
    field. Toolkit: Fix Webpack less-loader config.
  * Update to 9.2.3 Docs: Add information about DB version support to upgrade
    guide. Footer: Update footer release notes link to Github changelog.
    Prometheus: Do not drop errors in streaming parser. Prometheus:
    Flavor/version configuration. Prometheus: Provide label values match
    parameter API when supported prometheus instance is configured. Security:
    Upgrade x/text to version unaffected by CVE-2022-32149. Auth: Fix
    GF_AUTH_JWT_URL_LOGIN env variable doesn't work. Live: Explicitly reply with
    http 200. Prometheus: Fix builder operation mode changing multiselect to
    single select behaviour. Security: Fix vulnerabilities in webpack loader-
    utils.
  * Update to 9.2.2 Alerting: Add support for wecom apiapp. Canvas: Improve
    resource picker initialization. Canvas: Improve text element readability.
    CloudWatch: Make sure adoption tracking is done on valid, migrated queries.
    Dashboard: Alerts user to incorrect tag format for JSON import. MSSQL:
    Support tables from all schemas. Opentsdb: Allow template variables for
    filter keys. QueryEditor: Revert components from grafana-ui. Browse: Fix
    General folder not showing in FolderPicker. Elasticsearch: Fix calculation
    of trimEdges in alert mode. Elasticsearch: Fix trimEdges delete logic in
    alert mode. GoogleOAuth: Unlock User Admin UI. LogContext: Fix wrong color
    of `show context` icon in light theme. Loki: Fix adding of adhoc filters to
    stream selector when query with empty stream selector. Loki: Fix double
    stringified log-lines when copied via Copy button. Loki: Fix explain section
    about $__interval variable. Loki: Remove already selected options from next
    label filter options in builder. NodeGraph: Fix rendering issues when values
    of arc are over 1. PublicDashboards: Fix hidden queries execution. Tempo:
    Fix Node Graph visualization type in dashboard. TimeSeries: Fix stacking
    when first value is negative zero. TimeseriesPanel: Fix variables in data
    links. User: Fix externalUserId not being populated. We added some
    components a bit too early to @grafana/ui in 9.2 so we are moving them back
    to @grafana/experimental. If you used any of these components
    AccessoryButton EditorFieldGroup EditorHeader EditorField EditorRow
    EditorList EditorRows EditorSwitch FlexItem Stack InlineSelect InputGroup
    Space Please use them from grafana/experimental from now on.
  * Update to 9.2.1 Alerting: Improve notification policies created during
    migration. AzureAD: Add option to force fetch the groups from the Graph API.
    Docs: Note end of release notes publication. Inspect: Handle JSON tab crash
    when the provided object is too big to stringify. TablePanel: Footer now
    updates values on column filtering. Alerting: Fix email image embedding on
    Windows. Alerting: Fix mathexp.NoData for ConditionsCmd. Legacy Alerting:
    Fix duration calculation when testing a rule. Loki: Propagate additional
    headers from Grafana to Loki when querying data. Search: Sort alphabetically
    in the folder view, increase the limit of the folder search from 50 to 1000.
    TablePanel: Fix last table column to be centered. Grafana UI: Export prop
    types for queryfield, modal and field components. Toolkit: Fix `Cannot use
    import statement outside...` error in tests.
  * Update to 9.2.0 Alerting: Add Notification error feedback on contact points
    view. Alerting: Allow created by to be manually set when there's no creator
    for silences. Alerting: Expose info about notification delivery errors in a
    new /receivers endpoint. Alerting: Update imported prometheus alertmanager
    version. Alerting: Write and Delete multiple alert instances. Core:
    Implement aria attributes for query rows, improve a11y. DevEnv: Adds docker
    block for clickhouse. Docker: removes unneccesary use of edge repo. Explore:
    Revert split pane resize feature. Frontend: Make local storage items
    propagate to different tabs immediately. PublicDashboards: Allow disabling
    an existent public dashboard if it. QueryEditorRow: Only pass error to query
    editor if panel is not in a loading state. XYChart: Beta release. Alerting:
    Start ticker only when scheduler starts. Alerting: Fix pq: missing FROM-
    clause for table "a". AzureMonitor: Correctly update subscriptions value in
    ARG editor. Chore: Regenerate swagger specification and fix validation
    failures. Correlations: Only return correlation for which both source and
    target datasources exist. Explore: Prevent panes from disappearing when
    resizing window in split view. Links: Fix opening links from different orgs
    on the same tab. LogContext: Fix scroll position in upper context group.
    Logs: Show copy button independently from context. Loki/Prometheus: Fix
    adding of ad hoc filters when jumping from dashboard to explore. Loki: Add
    support for range aggregations with by grouping. Loki: Fix label-value
    escaping in context query. Loki: Fix redundant escaping in adhoc filter with
    regex match. PanelEdit: Fixes resize pane border and spacing issues. RBAC:
    Redirect to /login when forceLogin is set. Security: Fix CVE-2022-27664.
    StateTimeline: Fix tooltip showing erroneously in shared crosshair
    dashboards. Tempo: Fix unexpected trimming of leading zeroes in traceID.
    Tracing: Fix bug where errors are not reported to OpenTelemetry.
  * Update to 9.1.8 Alerting: Fix evaluation interval validation. Alerting: Fix
    migration to create rules with group index 1. Alerting: Fix migration to not
    add label "alertname". Azure Monitor: Fix empty Logs response for Alerting.
    Azure Monitor: Fix subscription selector when changing data sources. Google
    Cloud Monitoring: Fix bucket bound for distributions.
  * Update to 9.1.7 CloudWatch: Add missing AWS/Prometheus metrics. Explore: Add
    feature tracking events. Graphite: Add error information to graphite queries
    tracing. Prometheus: Restore FromAlert header. Search: Add search index
    configuration options. Thresholds: Add option for dashed line style.
    Alerting: Fix default query's data source when no default datasource
    specified. Alerting: Fix mathexp.NoData cannot be reduced. Alerting: Skip
    unsupported file types on provisioning. AzureMonitor: Ensure resourceURI
    template variable is migrated. Dashboard: Fix plugin dashboard save as
    button. Docs: Fix decimals: auto docs for panel edit. Fix: RBAC handle
    `error no resolver` found. LibraryPanelSearch: Refactor and fix hyphen
    issue. Live: Fix live streaming with `live-service-web-worker` feature flag
    enabled. QueryField: Fix wrong cursor position on autocomplete.
  * Update to 9.1.6 DataSource: Adding possibility to hide queries from the
    inspector. Inspect: Hide Actions tab when it is empty. PanelMenu: Remove
    hide legend action as it was showing on all panel types. Provisioning
    Contact points: Support disableResolveMessage via YAML. PublicDashboards:
    Support subpaths when generating pubdash url. Alerting: Fix legacy migration
    crash when rule name is too long. Alerting: Fix send resolved notifications.
    Azure Monitor: Fix migration issue with MetricDefinitionsQuery template
    variable query types. Browse: Hide dashboard actions if user does not have
    enough permission. ElasticSearch: Fix dispatching queries at a wrong time.
    Panel: Disable legends when showLegend is false prior to schema v37.
    Prometheus: Fix metadata requests for browser access mode. Search: Avoid
    requesting all dashboards when in Folder View. TablePanel/StatPanel: Fix
    values not being visible when background transparent.
  * Update to 9.1.5 Alerting: Sanitize invalid label/annotation names for
    external alertmanagers. Alerting: Telegram: Truncate long messages to avoid
    send error. DisplayProcessor: Handle reverse-ordered data when auto-showing
    millis. Heatmap: Add option to reverse color scheme. PluginLoader: Alias
    slate-react as @grafana/slate-react. Search: Add substring matcher, to bring
    back the old dashboard search behavior. Traces: More visible span colors.
    Alerting: Fix incorrect propagation of org ID and other fields in rule
    provisioning endpoints. Alerting: Resetting the notification policy tree to
    the default policy will also restore default contact points. AzureMonitor:
    Fix custom namespaces. AzureMonitor: Fix issue where custom metric
    namespaces are not included in the metric namespace list. CloudWatch: Fix
    display name of metric and namespace. Cloudwatch: Fix annotation query
    serialization issue. Dashboard: Fix issue where unsaved changes warning
    would appear even after save, and not being able to change library panels.
    Dashboard: Hide overflow content for single left pane. Loki: Fix a bug where
    adding adhoc filters was not possible.
  * Update to 9.1.4 GrafanaUI: Fixes Chrome issue for various query fields.
  * Update to 9.1.3 API: Do not expose user input in datasource error responses.
    Library Panel: Allow to delete them when deprecated. Plugins Catalog: Allow
    to filter plugins using special characters. Alerting: Fix UI bug when
    setting custom notification policy group by. AppRootPage: Fix issue
    navigating between two app plugin pages. Correlations: Use correct fallback
    handlers. RBAC: Fix deleting empty snapshots. LibraryElements: Fix inability
    to delete library panels under MySQL. Metrics: fix `grafana_database_conn_*`
    metrics, and add new `go_sql_stats_*` metrics as eventual replacement.
    TestData DB: Fix node graph not showing when the `Data type` field is set to
    `random`.
  * Deprecations The `grafana_database_conn_*` metrics are deprecated, and will
    be removed in a future version of Grafana. Use the `go_sql_stats_*` metrics
    instead.
  * Update to 9.1.2 AdHoc variable: Correctly preselect datasource when
    provisioning. AzureMonitor: Added ARG query function for template variables.
    Dashboards: Persist details message when navigating through dashboard save
    drawer's tabs. Dashboards: Correctly migrate mixed data source targets.
    Elasticsearch: Use millisecond intervals for alerting. Elasticsearch: Use
    millisecond intervals in frontend. Geomap: Local color range. Plugins
    Catalog: Use appSubUrl to generate plugins catalog urls. Rendering: Add
    support for renderer token. Alerting: Fix saving of screenshots uploaded
    with a signed url. AngularPanels: Fixing changing angular panel options not
    taking having affect when coming back from panel edit. Explore: Improve a11y
    of query row collapse button. Geomap: Fix tooltip display. QueryEditorRow:
    Filter data on mount. Search: Show all dashboards in the folder view.
    Tracing: Fix the event attributes in opentelemetry tracing. GrafanaUI: Fix
    styles for invalid selects & DataSourcePicker.
  * Update to 9.1.1 Cloud Monitoring: Support SLO burn rate. Schema: Restore
    "hidden" in LegendDisplayMode. Timeseries: Revert the timezone(s) property
    name change back to singular. Alerting: Fix links in Microsoft Teams
    notifications. Alerting: Fix notifications for Microsoft Teams. Alerting:
    Fix width of Adaptive Cards in Teams notifications. ColorPickerInput: Fix
    popover in disabled state. Decimals: Fixes auto decimals to behave the same
    for positive and negative values. Loki: Fix unique log row id generation.
    Plugins: Fix file extension in development authentication guide. TimeSeries:
    Fix jumping legend issue. TimeSeries: Fix memory leak on viz re-init caused
    by KeyboardPlugin. TimePicker: Fixes relative timerange of less than a day
    not displaying. GrafanaUI: Fixes ClipboardButton to always keep multi line
    content.
  * Update to 9.1.0 API: Allow creating teams with a user defined identifier.
    Alerting: Adds interval and For to alert rule details. Alerting: Extend PUT
    rule-group route to write the entire rule group rather than top-level fields
    only. Alerting: Use Adaptive Cards in Teams notifications. Azure Monitor:
    Add Network Insights Dashboard. Chore: Improve logging of unrecoverable
    errors. Correlations: Add UpdateCorrelation HTTP API. Dashboard: Reverted
    the changes of hiding multi-select and all variable in the datasource
    picker. Geomap: Add alpha day/night layer. Geomap: Add measuring tools.
    GrafanaUI: Add success state to ClipboardButton. Heatmap: Replace the
    heatmap panel with new implementation. KVStore: Allow empty value in
    kv_store. Prometheus: Promote Azure auth flag to configuration. Search:
    Display only dashboards in General folder of Search Folder View. Status
    history/State timeline: Support datalinks. Transform: Add a limit transform.
    Transformations: Add standard deviation and variance reducers. API: Fix
    snapshot responses. Access Control: Fix permission error during dashboard
    creation flow. Access Control: Set permissions for Grafana's test data
    source. Alerting: Fix migration failure. BarGauge: Show empty bar when
    value, minValue and maxValue are all equal. Dashboard: Fix color of bold and
    italics text in panel description tooltip. Loki: Fix passing of query with
    defaults to code mode. Loki: Fix producing correct log volume query for
    query with comments. Loki: Fix showing of unusable labels field in detected
    fields. Tracing: Fix OpenTelemetry Jaeger context propagation. Alerting:
    AlertingProxy to elevate permissions for request forwarded to data proxy
    when RBAC enabled. Plugins: Only pass `rootUrls` field in request when not
    empty. Alert notifications to Microsoft Teams now use Adaptive Cards instead
    of Office 365 Connector Cards. Starting at 9.1.0, existing heatmap panels
    will start using a new implementation. This can be disabled by setting the
    `useLegacyHeatmapPanel` feature flag to true. It can be tested on a single
    dashbobard by adding `?__feature.useLegacyHeatmapPanel=true` to any
    dashboard URL. The most notable changes are: Significantly improved
    rendering performance When calculating heatmaps, the buckets are now placed
    on reasonable borders (1m, 5m, 30s etc) Round cells are no longer supported
  * Update to 9.0.9 AuthNZ: Security fixes for CVE-2022-35957 and
    CVE-2022-36062.
  * Update to 9.0.8 Alerting: Hide "no rules" message when we are fetching from
    data sources. Alerting: AlertingProxy to elevate permissions for request
    forwarded to data proxy when RBAC enabled.
  * Update to 9.0.7 CloudMonitoring: Remove link setting for SLO queries.
    GrafanaUI: Render PageToolbar's leftItems regardless of title's presence.
  * Update to 9.0.6 Access Control: Allow org admins to invite new users to
    their organization. Grafana/toolkit: Fix incorrect image and font generation
    for plugin builds. Prometheus: Fix adding of multiple values for regex
    operator. UI/Card: Fix card items always having pointer cursor.
  * Update to 9.0.5 Access control: Show dashboard settings to users who can
    edit dashboard. Alerting: Allow the webhook notifier to support a custom
    Authorization header. Plugins: Add signature wildcard globbing for dedicated
    private plugin type. Prometheus: Don't show errors from unsuccessful API
    checks like rules or exemplar checks. Access control: Allow organisation
    admins to add existing users to org. Alerting: Fix alert panel instance-
    based rules filtering. Apps: Fixes navigation between different app plugin
    pages. Cloudwatch: Upgrade grafana-aws-sdk to fix auth issue with secret
    keys. Loki: Fix `show context` not working in some occasions. RBAC: Fix
    permissions on dashboards and folders created by anonymous users.
  * Update to 9.0.4 Browse/Search: Make browser back work properly when visiting
    Browse or search. Logs: Improve getLogRowContext API. Loki: Improve handling
    of empty responses. Plugins: Always validate root URL if specified in
    signature manfiest. Preferences: Get home dashboard from teams. SQLStore:
    Support Upserting multiple rows. Traces: Add more template variables in
    Tempo & Zipkin. Traces: Remove serviceMap feature flag. Access Control: Fix
    missing folder permissions. Access control: Fix org user removal for OSS
    users. Alerting: Fix Slack notifications. Alerting: Preserve new-lines from
    custom email templates in rendered email. Log: Fix text logging for
    unsupported types. Loki: Fix incorrect TopK value type in query builder.
  * Update to 9.0.3 Access Control: Allow dashboard admins to query org users.
    Alerting: Add method to provisioning API for obtaining a group and its
    rules. Alerting: Allow filtering of contact points by name. Alerting:
    Disable /api/admin/pause-all-alerts with Unified Alerting. Annotations: Use
    point marker for short time range annotations. AzureMonitor: Update UI to
    experimental package. AzureMonitor: Update resource and namespace metadata.
    CloudWatch: Remove simplejson in favor of 'encoding/json'. DashboardRow:
    Collapse shortcut prevent to move the collapsed rows. Navigation: Highlight
    active nav item when Grafana is served from subpath. Plugins: InfluxDB
    datasource - set epoch query param value as "ms". Plugins: InfluxDB update
    time range query. StateTimeline: Try to sort time field. API: Do not
    validate/save legacy alerts when saving a dashboard if legacy alerting is
    disabled. Alerting: Add method to reset notification policy tree back to the
    default. Alerting: Fix Teams notifier not failing on 200 response with
    error. Alerting: Fix bug where state did not change between Alerting and
    Error. Alerting: Fix consistency errors in OpenAPI documentation. Alerting:
    Fix normalization of alert states for panel Alerting: Provisioning API
    respects global rule quota. CSRF: Fix additional headers option. Chore: Bump
    parse-url to 6.0.2 to fix security vulnerabilities. Chore: Fix
    CVE-2020-7753. Chore: Fix CVE-2021-3807. Chore: Fix CVE-2021-3918. Chore:
    Fix CVE-2021-43138. Chore: Fix CVE-2022-0155. Dashboard: Fixes tooltip issue
    with TimePicker and Setting buttons. Dashboard: Prevent unnecessary
    scrollbar when viewing single panel. Logs: Fixed wrapping log lines from
    detected fields. Loki: Add missing operators in label filter expression.
    Loki: Fix error when changing operations with different parameters. Loki:
    Fix suggesting of correct operations in query builder. Plugins: InfluxDB
    variable interpolation fix for influxdbBackendMigration feature flag.
    SQLstore: Fix fetching an inexistent playlist. Security: Fixes for
    CVE-2022-31107 and CVE-2022-31097. Snapshots: Fix deleting external
    snapshots when using RBAC. Table: Fix scrollbar being hidden by pagination.
    Templating: Changing between variables with the same name now correctly
    triggers a dashboard refresh. Time series panel: Fix an issue with stacks
    being not complete due to the incorrect data frame length.
  * Update to 9.0.2 Alerting: Add support for images in Pushover alerts.
    Alerting: Don't stop the migration when alert rule tags are invalid.
    Alerting: Skip the default data source if incompatible. AzureMonitor: Parse
    non-fatal errors for Logs. OAuth: Restore debug log behavior. Plugins:
    Improved handling of symlinks. Alerting: Code-gen parsing of URL parameters
    and fix related bugs. Annotations: Fix annotation autocomplete causing
    panels to crash. Barchart: Fix warning not showing. CloudWatch: Enable
    custom session duration in AWS plugin auth. Dashboards: Fixes issue with the
    initial panel layout counting as an unsaved change. Plugins: Use a Grafana
    specific SDK logger implementation for core plugins. Search: Fix pagination
    in the new search page.
  * Update to 9.0.1 Alerting: Add support for image annotation in Alertmanager
    alerts. Alerting: Add support for images in SensuGo alerts. Alerting: Add
    support for images in Threema alerts. Alerting: Adds Mimir to Alertmanager
    data source implementation. Alerting: Invalid setting of enabled for unified
    alerting should return error. AzureMonitor: Clean namespace when changing
    the resource. AzureMonitor: Update supported namespaces and filter resources
    by the right type. CLI: Allow relative symlinks in zip archives when
    installing plugins. Dashboard: Don't show unsaved changes modal for
    automatic schema changes. Dashboard: Unsaved changes warning should not
    trigger when only pluginVersion has changed. Expression: Execute hidden
    expressions. Geomap: Support showing tooltip content on click (not just
    hover). Heatmap: Remove alpha flag from new heatmap panel. Instrumentation:
    Define handlers for requests that are not handled with named handlers. Log
    Panel: Improve log row hover contrast and visibility. Logs: Handle backend-
    mode errors in histogram. Loki: Do not show histogram for instant queries.
    Loki: Handle data source configs with path in the url. Loki: Handle invalid
    query type values. OAuth: Redirect to login if no oauth module is found or
    if module is not configured. OptionsUI: Move internal options editors out of
    @grafana/ui. Prometheus: Don't show undefined for step in collapsed options
    in query editor when value is "auto". Prometheus: Show query patterns in all
    editor modes for Prometheus and Loki. Tempo: Add link to Tempo Search with
    node service selected. Time Series Panel: Add Null Filling and "No Value"
    Support. TimeSeries: Add an option to set legend width. Timeseries: Improve
    cursor Y sync behavior. Traces: Do not use red in span colors as this looks
    like an error. Alerting: Fix AM config overwrite when SQLite db is locked
    during sync. Alerting: Fix alert instances filtering for prom rules.
    Alerting: Fix alert rule page crashing when datasource contained URL unsafe
    characters. Alerting: Fix automatically select newly created folder option.
    Alerting: Fix removal of notification policy without labels matchers.
    CloudWatch: Allow hidden queries to be executed in case an ID is provided.
    Dashboard: Prevent non-repeating panels being dropped from repeated rows
    when collapsed/expanded. Dashboards: Fix folder picker not showing correct
    results when typing too fast. Datasource: Prevent panic when proxying for
    non-existing data source. Explore: Fix log context scroll to bottom.
    Explore: Revert "Remove support for compact format URLs". Expressions: Fixes
    dashboard schema migration issue that casued Expression datasource to be set
    on panel level. Formatting: Fixes valueFormats for a value of 0.
    GrafanaData: Fix week start for non-English browsers. LibraryPanel: Resizing
    a library panel to 6x3 no longer crashes the dashboard on startup. LogRow:
    Fix placement of icon. Loki: Fix bug in labels framing. Loki: Fix issues
    with using query patterns. Loki: Fix showing of duplicated label values in
    dropdown in query builder. MSSQL: Fix ParseFloat error. Panels: Fixes issue
    with showing 'Cannot visualize data' when query returned 0 rows. Playlists:
    Disable Create Playlist buttons for users with viewer role. Plugins: Fix
    typo in plugin data frames documentation. Prometheus: Fix body not being
    included in resource calls if they are POST. RolePicker: Fix submenu
    position on horizontal space overflow. Tracing: Fix trace links in traces
    panel. Support for compact Explore URLs is deprecated and will be removed in
    a future release. Until then, when navigating to Explore using the
    deprecated format the URLs are automatically converted. If you have existing
    links pointing to Explore update them using the format generated by Explore
    upon navigation. You can identify a compact URL by its format. Compact URLs
    have the left (and optionally right) url parameter as an array of strings,
    for example `&left=["now-1h","now"...]`. The
    standard explore URLs follow a key/value pattern, for example
    `&left={"datasource":"test"...}`. Please be sure to
    check your dashboards for any hardcoded links to Explore and update them to
    the standard URL pattern.
  * Update to 9.0.0 API: Add GET /api/annotations/:annotationId endpoint. API:
    Add endpoint for updating a data source by its UID. AccessControl: Add
    enterprise only setting for rbac permission cache. AccessControl: Document
    basic roles changes and provisioning V2. AccessControl: Enable RBAC by
    default. AddDataSourceConfig: Remove deprecated checkHealth prop. Alerting:
    Add Image URLs to Microsoft Teams notifier. Alerting: Add RBAC actions and
    role for provisioning API routes. Alerting: Add Screenshot URLs to Pagerduty
    Notifier. Alerting: Add a "Reason" to Alert Instances to show underlying
    cause of state. Alerting: Add a general screenshot service and alerting-
    specific image service. Alerting: Add image url or file attachment to email
    notifications. Alerting: Add image_urls to OpsGenie notification details.
    Alerting: Add notification policy flow chart. Alerting: Attach image URL to
    alerts in Webhook notifier format. Alerting: Attach image URLs or upload
    files to Discord Alerting: Attach image URLs to Google Chat notifications.
    Alerting: Attach screenshot data to Unified Alerting Alerting: Create folder
    for alerting when start from the scratch. Alerting: Modify alertmanager
    endpoints for proxying using the datasource UID. Alerting: Modify endpoint
    for testing a datasource rule using the UID. Alerting: Modify prometheus
    endpoints for proxying using the datasource UID. Alerting: State Manager
    takes screenshots. Alerting: Use UID scope for folders authorization.
    Alerting: modify ruler endpoints for proxying using the datasource UID.
    Angular: Adds back two angular directives that are still used by remaining
    angular bits and plugins. Azure Monitor: Add Resource Picker to Metrics
    Queries. Azure Monitor: Add search feature to resource picker. AzureMonitor:
    Add support for selecting multiple options when using the equals and not
    equals dimension filters. AzureMonitor: Remove deprecated code. Build:
    Change names to PascalCase to match. Chore: Remove deprecated DataSourceAPI
    methods. Chore: Upgrade typescript to 4.6.4. Cloud Monitoring: Use new
    annotation API. CloudMonitoring: Allow to set a custom value or disable
    graph_period. CloudWatch: Add generic filter component to variable editor.
    CloudWatch: Added missing AWS/AppRunner metrics. CloudWatch: Enable support
    for dynamic labels with migrated alias patterns. Cloudwatch: Pass label in
    deep link. Cloudwatch: Use new annotation API. Dashboard: Validate
    dashboards against schema on save. DashboardPickerByID: Add option to
    exclude dashboards. DashboardPickerById: Add optionLabel prop. Dashboards:
    Display values of 0 with the configured decimal places. Data: Remove
    deprecated types and functions from valueMappings. Elasticsearch: Remove
    browser access mode. Elasticsearch: Remove support for versions after their
    end of the life (<7.10.0). Encryption: Add support for multiple data keys
    per day. Encryption: Enable envelope encryption by default. Explore: Remove
    support for legacy, compact format URLs. Explore: Skip Angular error
    handling when Angular support is disabled. Explore: simplify support for
    multiple query editors. FeatureToggles: Support changing feature toggles
    with URL parameters. FileUpload: Make component accessible by keyboard
    navigation. Formatting: Make SI number formats more robust. Graph: Deprecate
    Graph (old) and make it no longer a visualization option for new panels.
    IconButton: IconButtons are now correctly aligned in Safari. Logger: Enable
    new logging format by default. Loki: Add more query patterns. Loki: Enable
    new visual query builder by default. Loki: use the same dataframe-format for
    both live and normal queries. OAuth: Make allowed email domain case
    insensitive. Panels: Use the No value option when showing the no data
    message. Plugins: Remove plugin list panel. Query History: Enable new query
    history by default. QueryEditorRow: Show query errors next to query in a
    consistent way across Grafana. SAML: Implement Name Templates for
    assertion_attribute_name option. Service accounts: Do not display service
    accounts assigned to team. Settings: Use Grafana Azure SDK to pass Azure env
    vars for external plugins. Shortcuts: Add shortcut to show shortcuts to the
    list of shortcuts. Traces Panel: Add new Traces Panel visualization. Traces:
    Filter by service/span name and operation in Tempo and Jaeger.
    Transformations: Allow more complex regex expressions in `Rename by regex`.
    grafana/ui: Add default type="button" to 

SUSE: 2024:0196-1 moderate: Security Beta SUSE Manager Client Tools an

January 23, 2024

Summary

## This update fixes the following issues: ansible: * Update to version 2.9.27 (jsc#SLE-23631) (jsc#SLE-24133) * bsc#1187725 CVE-2021-3620 ansible-connection module discloses sensitive info in traceback error message (in 2.9.27) * bsc#1188061 CVE-2021-3583 Template Injection through yaml multi-line strings with ansible facts used in template. (in 2.9.23) * bsc#1176460 gh#ansible/ansible#72094 ansible module nmcli is broken in ansible 2.9.13 (in 2.9.15) * Update to 2.9.22: * CVE-2021-3447 (bsc#1183684) multiple modules expose secured values * CVE-2021-20228 (bsc#1181935) basic.py no_log with fallback option * CVE-2021-20191 (bsc#1181119) multiple collections exposes secured values * CVE-2021-20180 (bsc#1180942) bitbucket_pipeline_variable exposes sensitive values * CVE-2021-20178 (bsc#1180816) user data leak in snmp_facts module dracut-saltboot: * Update to version 0.1.1681904360.84ef141 * Load network configuration even when missing protocol version (bsc#1210640) * Update to verion 0.1.1674034019.a93ff61 * Install copied wicked config as client.xml (bsc#1205599) * Update to version 0.1.1673279145.e7616bd * Add failsafe stop file when salt-minion does not stop (bsc#1172110) * Copy existing wicked config instead of generating new (bsc#1205599) * Update to version 0.1.1665997480.587fa10 * Add dependencies on xz and gzip to support compressed images * Update to version 0.1.1661440542.6cbe0da * Use standard susemanager.conf * Move image services to dracut-saltboot package * Use salt bundle * Require e2fsprogs (bsc#1202614) * Update to version 0.1.1657643023.0d694ce * Update dracut-saltboot dependencies (bsc#1200970) * Fix network loading when ipappend is used in pxe config * Add new information messages golang-github-QubitProducts-exporter_exporter: * Remove license file from %doc * Exclude s390 arch * Adapted to build on Enterprise Linux. * Fix build for RedHat 7 * Require Go >= 1.14 also for CentOS * Add support for CentOS * Replace %{?systemd_requires} with %{?systemd_ordering} golang-github-boynux-squid_exporter: * Exclude s390 architecture (gh#SUSE/spacewalk#19050) * Enhanced to build on Enterprise Linux 8. golang-github-lusitaniae-apache_exporter: * Do not strip if SUSE Linux Enterprise 15 SP3 * Exclude debug for RHEL >= 8 * Build with Go >= 1.20 when the OS is not RHEL * Spec file clean up * Fix apparmor profile for SLE 12 * Do not build with apparmor profile for SLE 12 * Upgrade to version 1.0.0 (jsc#PED-5405) * Improved flag parsing * Added support for custom headers * Build with Go 1.19 * Build using promu * Add _service file * Fix sandboxing options * Upgrade to version 0.13.4 * Fix denial of service vulnerability (CVE-2022-32149, bsc#1204501) * Upgrade to version 0.13.3 * Fix uncontrolled resource consumption (CVE-2022-41723, bsc#1208270) * Upgrade to version 0.13.1 * Fix panic caused by missing flagConfig options * Upgrade to version 0.13.0 * Fix authentication bypass vulnarability (CVE-2022-46146, bsc#1208046) * Corrected comment in AppArmor profile * Added AppArmor profile * Added sandboxing options to systemd service unit * Exclude s390 architecture (gh#SUSE/spacewalk#19050) * Update to upstream release 0.11.0 (jsc#SLE-24791) * Add TLS support * Switch to logger, please check --log.level and --log.format flags * Update to version 0.10.1 * Bugfix: Reset ProxyBalancer metrics on each scrape to remove stale data * Update to version 0.10.0 * Add Apache Proxy and other metrics * Update to version 0.8.0 * Change commandline flags * Add metrics: Apache version, request duration total * Adapted to build on Enterprise Linux 8 * Require building with Go 1.15 * Add support for RedHat 8 * Adjust dependencies on spec file * Disable dwarf compression in go build * Add support for Red Hat * Add %license macro for LICENSE file golang-github-prometheus-prometheus: * Update to 2.45.0 (jsc#PED-5406): * [FEATURE] API: New limit parameter to limit the number of items returned by `/api/v1/status/tsdb` endpoint. * [FEATURE] Config: Add limits to global config. * [FEATURE] Consul SD: Added support for `path_prefix`. * [FEATURE] Native histograms: Add option to scrape both classic and native histograms. * [FEATURE] Native histograms: Added support for two more arithmetic operators `avg_over_time` and `sum_over_time`. * [FEATURE] Promtool: When providing the block id, only one block will be loaded and analyzed. * [FEATURE] Remote-write: New Azure ad configuration to support remote writing directly to Azure Monitor workspace. * [FEATURE] TSDB: Samples per chunk are now configurable with flag `storage.tsdb.samples-per-chunk`. By default set to its former value 120. * [ENHANCEMENT] Native histograms: bucket size can now be limited to avoid scrape fails. * [ENHANCEMENT] TSDB: Dropped series are now deleted from the WAL sooner. * [BUGFIX] Native histograms: ChunkSeries iterator now checks if a new sample can be appended to the open chunk. * [BUGFIX] Native histograms: Fix Histogram Appender `Appendable()` segfault. * [BUGFIX] Native histograms: Fix setting reset header to gauge histograms in seriesToChunkEncoder. * [BUGFIX] TSDB: Tombstone intervals are not modified after Get() call. * [BUGFIX] TSDB: Use path/filepath to set the WAL directory. * Update to 2.44.0: * [FEATURE] Remote-read: Handle native histograms. * [FEATURE] Promtool: Health and readiness check of prometheus server in CLI. * [FEATURE] PromQL: Add `query_samples_total` metric, the total number of samples loaded by all queries. * [ENHANCEMENT] Storage: Optimise buffer used to iterate through samples. * [ENHANCEMENT] Scrape: Reduce memory allocations on target labels. * [ENHANCEMENT] PromQL: Use faster heap method for `topk()` / `bottomk()`. * [ENHANCEMENT] Rules API: Allow filtering by rule name. * [ENHANCEMENT] Native Histograms: Various fixes and improvements. * [ENHANCEMENT] UI: Search of scraping pools is now case-insensitive. * [ENHANCEMENT] TSDB: Add an affirmative log message for successful WAL repair. * [BUGFIX] TSDB: Block compaction failed when shutting down. * [BUGFIX] TSDB: Out-of-order chunks could be ignored if the write-behind log was deleted. * Update to 2.43.1 * [BUGFIX] Labels: Set() after Del() would be ignored, which broke some relabeling rules. * Update to 2.43.0: * [FEATURE] Promtool: Add HTTP client configuration to query commands. * [FEATURE] Scrape: Add `include_scrape_configs` to include scrape configs from different files. * [FEATURE] HTTP client: Add `no_proxy` to exclude URLs from proxied requests. * [FEATURE] HTTP client: Add `proxy_from_enviroment` to read proxies from env variables. * [ENHANCEMENT] API: Add support for setting lookback delta per query via the API. * [ENHANCEMENT] API: Change HTTP status code from 503/422 to 499 if a request is canceled. * [ENHANCEMENT] Scrape: Allow exemplars for all metric types. * [ENHANCEMENT] TSDB: Add metrics for head chunks and WAL folders size. * [ENHANCEMENT] TSDB: Automatically remove incorrect snapshot with index that is ahead of WAL. * [ENHANCEMENT] TSDB: Improve Prometheus parser error outputs to be more comprehensible. * [ENHANCEMENT] UI: Scope `group by` labels to metric in autocompletion. * [BUGFIX] Scrape: Fix `prometheus_target_scrape_pool_target_limit` metric not set before reloading. * [BUGFIX] TSDB: Correctly update `prometheus_tsdb_head_chunks_removed_total` and `prometheus_tsdb_head_chunks` metrics when reading WAL. * [BUGFIX] TSDB: Use the correct unit (seconds) when recording out-of-order append deltas in the `prometheus_tsdb_sample_ooo_delta` metric. * Update to 2.42.0: This release comes with a bunch of feature coverage for native histograms and breaking changes. If you are trying native histograms already, we recommend you remove the `wal` directory when upgrading. Because the old WAL record for native histograms is not backward compatible in v2.42.0, this will lead to some data loss for the latest data. Additionally, if you scrape "float histograms" or use recording rules on native histograms in v2.42.0 (which writes float histograms), it is a one-way street since older versions do not support float histograms. * [CHANGE] **breaking** TSDB: Changed WAL record format for the experimental native histograms. * [FEATURE] Add 'keep_firing_for' field to alerting rules. * [FEATURE] Promtool: Add support of selecting timeseries for TSDB dump. * [ENHANCEMENT] Agent: Native histogram support. * [ENHANCEMENT] Rules: Support native histograms in recording rules. * [ENHANCEMENT] SD: Add container ID as a meta label for pod targets for Kubernetes. * [ENHANCEMENT] SD: Add VM size label to azure service discovery. * [ENHANCEMENT] Support native histograms in federation. * [ENHANCEMENT] TSDB: Add gauge histogram support. * [ENHANCEMENT] TSDB/Scrape: Support FloatHistogram that represents buckets as float64 values. * [ENHANCEMENT] UI: Show individual scrape pools on /targets page. * Update to 2.41.0: * [FEATURE] Relabeling: Add keepequal and dropequal relabel actions. * [FEATURE] Add support for HTTP proxy headers. * [ENHANCEMENT] Reload private certificates when changed on disk. * [ENHANCEMENT] Add max_version to specify maximum TLS version in tls_config. * [ENHANCEMENT] Add goos and goarch labels to prometheus_build_info. * [ENHANCEMENT] SD: Add proxy support for EC2 and LightSail SDs. * [ENHANCEMENT] SD: Add new metric prometheus_sd_file_watcher_errors_total. * [ENHANCEMENT] Remote Read: Use a pool to speed up marshalling. * [ENHANCEMENT] TSDB: Improve handling of tombstoned chunks in iterators. * [ENHANCEMENT] TSDB: Optimize postings offset table reading. * [BUGFIX] Scrape: Validate the metric name, label names, and label values after relabeling. * [BUGFIX] Remote Write receiver and rule manager: Fix error handling. * Update to 2.40.7: * [BUGFIX] TSDB: Fix queries involving negative buckets of native histograms. * Update to 2.40.5: * [BUGFIX] TSDB: Fix queries involving native histograms due to improper reset of iterators. * Update to 2.40.3: * [BUGFIX] TSDB: Fix compaction after a deletion is called. * Update to 2.40.2: * [BUGFIX] UI: Fix black-on-black metric name color in dark mode. * Update to 2.40.1: * [BUGFIX] TSDB: Fix alignment for atomic int64 for 32 bit architecture. * [BUGFIX] Scrape: Fix accept headers. * Update to 2.40.0: * [FEATURE] Add experimental support for native histograms. Enable with the flag --enable-feature=native-histograms. * [FEATURE] SD: Add service discovery for OVHcloud. * [ENHANCEMENT] Kubernetes SD: Use protobuf encoding. * [ENHANCEMENT] TSDB: Use golang.org/x/exp/slices for improved sorting speed. * [ENHANCEMENT] Consul SD: Add enterprise admin partitions. Adds __meta_consul_partition label. Adds partition config in consul_sd_config. * [BUGFIX] API: Fix API error codes for /api/v1/labels and /api/v1/series. * Update to 2.39.1: * [BUGFIX] Rules: Fix notifier relabel changing the labels on active alerts. * Update to 2.39.0: * [FEATURE] experimental TSDB: Add support for ingesting out-of-order samples. This is configured via out_of_order_time_window field in the config file; check config file docs for more info. * [ENHANCEMENT] API: /-/healthy and /-/ready API calls now also respond to a HEAD request on top of existing GET support. * [ENHANCEMENT] PuppetDB SD: Add __meta_puppetdb_query label. * [ENHANCEMENT] AWS EC2 SD: Add __meta_ec2_region label. * [ENHANCEMENT] AWS Lightsail SD: Add __meta_lightsail_region label. * [ENHANCEMENT] Scrape: Optimise relabeling by re-using memory. * [ENHANCEMENT] TSDB: Improve WAL replay timings. * [ENHANCEMENT] TSDB: Optimise memory by not storing unnecessary data in the memory. * [ENHANCEMENT] TSDB: Allow overlapping blocks by default. \--storage.tsdb.allow-overlapping-blocks now has no effect. * [ENHANCEMENT] UI: Click to copy label-value pair from query result to clipboard. * [BUGFIX] TSDB: Turn off isolation for Head compaction to fix a memory leak. * [BUGFIX] TSDB: Fix 'invalid magic number 0' error on Prometheus startup. * [BUGFIX] PromQL: Properly close file descriptor when logging unfinished queries. * [BUGFIX] Agent: Fix validation of flag options and prevent WAL from growing more than desired. * Update to 2.38.0: * [FEATURE]: Web: Add a /api/v1/format_query HTTP API endpoint that allows pretty-formatting PromQL expressions. * [FEATURE]: UI: Add support for formatting PromQL expressions in the UI. * [FEATURE]: DNS SD: Support MX records for discovering targets. * [FEATURE]: Templates: Add toTime() template function that allows converting sample timestamps to Go time.Time values. * [ENHANCEMENT]: Kubernetes SD: Add __meta_kubernetes_service_port_number meta label indicating the service port number. __meta_kubernetes_pod_container_image meta label indicating the container image. * [ENHANCEMENT]: PromQL: When a query panics, also log the query itself alongside the panic message. * [ENHANCEMENT]: UI: Tweak colors in the dark theme to improve the contrast ratio. * [ENHANCEMENT]: Web: Speed up calls to /api/v1/rules by avoiding locks and using atomic types instead. * [ENHANCEMENT]: Scrape: Add a no-default-scrape-port feature flag, which omits or removes any default HTTP (:80) or HTTPS (:443) ports in the target's scrape address. * [BUGFIX]: TSDB: In the WAL watcher metrics, expose the type="exemplar" label instead of type="unknown" for exemplar records. * [BUGFIX]: TSDB: Fix race condition around allocating series IDs during chunk snapshot loading. * Remove npm_licenses.tar.bz2 during "make clean" * Remove web-ui archives during "make clean". * Require promu >= 0.14.0 for building * Drop: * Upgrade to version 2.37.6 * Require Go 1.19 * Upgrade to version 2.37.5 * [SECURITY] Security upgrade from go and upstream dependencies that include security fixes to the net/http and os packages. * Upgrade to version 2.37.4 * [SECURITY] Fix basic authentication bypass vulnerability (CVE-2022-46146, bsc#1208049, jsc#PED-3576). * Upgrade to version 2.37.3 * [BUGFIX] Update our regexp library to fix upstream CVE-2022-41715. * Upgrade to version 2.37.2 * Upgrade to version 2.37.1 * [BUGFIX] Properly close file descriptor when logging unfinished queries. * [BUGFIX] TSDB: In the WAL watcher metrics, expose the * Upgrade to version 2.37.0 * [FEATURE] Nomad SD: New service discovery for Nomad built-in service discovery. * [ENHANCEMENT] Kubernetes SD: Allow attaching node labels for endpoint role. * [ENHANCEMENT] PromQL: Optimise creation of signature with/without labels. * [ENHANCEMENT] TSDB: Memory optimizations. * [ENHANCEMENT] TSDB: Reduce sleep time when reading WAL. * [ENHANCEMENT] OAuth2: Add appropriate timeouts and User-Agent header. * [BUGFIX] Alerting: Fix Alertmanager targets not being updated when alerts were queued. * [BUGFIX] Hetzner SD: Make authentication files relative to Prometheus config file. * [BUGFIX] Promtool: Fix promtool check config not erroring properly on failures. * [BUGFIX] Scrape: Keep relabeled scrape interval and timeout on reloads. * [BUGFIX] TSDB: Don't increment prometheus_tsdb_compactions_failed_total when context is canceled. * [BUGFIX] TSDB: Fix panic if series is not found when deleting series. * [BUGFIX] TSDB: Increase prometheus_tsdb_mmap_chunk_corruptions_total on out of sequence errors. * [BUGFIX] Uyuni SD: Make authentication files relative to Prometheus configuration file and fix default configuration values. * Upgrade to version 2.36.2 * [BUGFIX] Fix serving of static assets like fonts and favicon. * Upgrade to version 2.36.1 * [BUGFIX] promtool: Add --lint-fatal option. * Upgrade to version 2.36.0 * [FEATURE] Add lowercase and uppercase relabel action. * [FEATURE] SD: Add IONOS Cloud integration. * [FEATURE] SD: Add Vultr integration. * [FEATURE] SD: Add Linode SD failure count metric. * [FEATURE] Add prometheus_ready metric. * [ENHANCEMENT] Add stripDomain to template function. * [ENHANCEMENT] UI: Enable active search through dropped targets. * [ENHANCEMENT] promtool: support matchers when querying label * [ENHANCEMENT] Add agent mode identifier. * [BUGFIX] Changing TotalQueryableSamples from int to int64. * [BUGFIX] tsdb/agent: Ignore duplicate exemplars. * [BUGFIX] TSDB: Fix chunk overflow appending samples at a variable rate. * [BUGFIX] Stop rule manager before TSDB is stopped. * Upgrade to version 2.35.0 * [CHANGE] TSDB: Delete *.tmp WAL files when Prometheus starts. * [CHANGE] promtool: Add new flag --lint (enabled by default) for the commands check rules and check config, resulting in a new exit code (3) for linter errors. * [FEATURE] Support for automatically setting the variable GOMAXPROCS to the container CPU limit. Enable with the flag \--enable-feature=auto-gomaxprocs. * [FEATURE] PromQL: Extend statistics with total and peak number of samples in a query. Additionally, per-step statistics are available with --enable- feature=promql-per-step-stats and using stats=all in the query API. Enable with the flag \--enable-feature=per-step-stats. * [ENHANCEMENT] TSDB: more efficient sorting of postings read from WAL at startup. * [ENHANCEMENT] Azure SD: Add metric to track Azure SD failures. * [ENHANCEMENT] Azure SD: Add an optional resource_group configuration. * [ENHANCEMENT] Kubernetes SD: Support discovery.k8s.io/v1 EndpointSlice (previously only discovery.k8s.io/v1beta1 EndpointSlice was supported). * [ENHANCEMENT] Kubernetes SD: Allow attaching node metadata to discovered pods. * [ENHANCEMENT] OAuth2: Support for using a proxy URL to fetch OAuth2 tokens. * [ENHANCEMENT] Configuration: Add the ability to disable HTTP2. * [ENHANCEMENT] Config: Support overriding minimum TLS version. * [BUGFIX] Kubernetes SD: Explicitly include gcp auth from k8s.io. * [BUGFIX] Fix OpenMetrics parser to sort uppercase labels correctly. * [BUGFIX] UI: Fix scrape interval and duration tooltip not showing on target page. * [BUGFIX] Tracing/GRPC: Set TLS credentials only when insecure is false. * [BUGFIX] Agent: Fix ID collision when loading a WAL with multiple segments. * [BUGFIX] Remote-write: Fix a deadlock between Batch and flushing the queue. * Upgrade to version 2.34.0 * [CHANGE] UI: Classic UI removed. * [CHANGE] Tracing: Migrate from Jaeger to OpenTelemetry based tracing. * [ENHANCEMENT] TSDB: Disable the chunk write queue by default and allow configuration with the experimental flag \--storage.tsdb.head-chunks-write- queue-size. * [ENHANCEMENT] HTTP SD: Add a failure counter. * [ENHANCEMENT] Azure SD: Set Prometheus User-Agent on requests. * [ENHANCEMENT] Uyuni SD: Reduce the number of logins to Uyuni. * [ENHANCEMENT] Scrape: Log when an invalid media type is encountered during a scrape. * [ENHANCEMENT] Scrape: Accept application/openmetrics-text;version=1.0.0 in addition to version=0.0.1. * [ENHANCEMENT] Remote-read: Add an option to not use external labels as selectors for remote read. * [ENHANCEMENT] UI: Optimize the alerts page and add a search bar. * [ENHANCEMENT] UI: Improve graph colors that were hard to see. * [ENHANCEMENT] Config: Allow escaping of $ with $$ when using environment variables with external labels. * [BUGFIX] PromQL: Properly return an error from histogram_quantile when metrics have the same labelset. * [BUGFIX] UI: Fix bug that sets the range input to the resolution. * [BUGFIX] TSDB: Fix a query panic when memory-snapshot-on-shutdown is enabled. * [BUGFIX] Parser: Specify type in metadata parser errors. * [BUGFIX] Scrape: Fix label limit changes not applying. * Upgrade to version 2.33.5 * [BUGFIX] Remote-write: Fix deadlock between adding to queue and getting batch. * Upgrade to version 2.33.4 * [BUGFIX] TSDB: Fix panic when m-mapping head chunks onto the disk. * Upgrade to version 2.33.3 * [BUGFIX] Azure SD: Fix a regression when public IP Address isn't set. * Upgrade to version 2.33.2 * [BUGFIX] Azure SD: Fix panic when public IP Address isn't set. * [BUGFIX] Remote-write: Fix deadlock when stopping a shard. * Upgrade to version 2.33.1 * [BUGFIX] SD: Fix no such file or directory in K8s SD when not running inside K8s. * Upgrade to version 2.33.0 * [CHANGE] PromQL: Promote negative offset and @ modifer to stable features. * [CHANGE] Web: Promote remote-write-receiver to stable. * [FEATURE] Config: Add stripPort template function. * [FEATURE] Promtool: Add cardinality analysis to check metrics, enabled by flag --extended. * [FEATURE] SD: Enable target discovery in own K8s namespace. * [FEATURE] SD: Add provider ID label in K8s SD. * [FEATURE] Web: Add limit field to the rules API. * [ENHANCEMENT] Remote-write: Avoid allocations by buffering concrete structs instead of interfaces. * [ENHANCEMENT] Remote-write: Log time series details for out-of-order samples in remote write receiver. * [ENHANCEMENT] Remote-write: Shard up more when backlogged. * [ENHANCEMENT] TSDB: Use simpler map key to improve exemplar ingest performance. * [ENHANCEMENT] TSDB: Avoid allocations when popping from the intersected postings heap. * [ENHANCEMENT] TSDB: Make chunk writing non-blocking, avoiding latency spikes in remote-write. * [ENHANCEMENT] TSDB: Improve label matching performance. * [ENHANCEMENT] UI: Optimize the service discovery page and add a search bar. * [ENHANCEMENT] UI: Optimize the target page and add a search bar. * [BUGFIX] Promtool: Make exit codes more consistent. * [BUGFIX] Promtool: Fix flakiness of rule testing. * [BUGFIX] Remote-write: Update prometheus_remote_storage_queue_highest_sent_timestamp_seconds metric when write irrecoverably fails. * [BUGFIX] Storage: Avoid panic in BufferedSeriesIterator. * [BUGFIX] TSDB: CompactBlockMetas should produce correct mint/maxt for overlapping blocks. * [BUGFIX] TSDB: Fix logging of exemplar storage size. * [BUGFIX] UI: Fix overlapping click targets for the alert state checkboxes. * [BUGFIX] UI: Fix Unhealthy filter on target page to actually display only Unhealthy targets. * [BUGFIX] UI: Fix autocompletion when expression is empty. * [BUGFIX] TSDB: Fix deadlock from simultaneous GC and write. * Fix authentication bypass by updating Prometheus Exporter Toolkit to version 0.7.3 (CVE-2022-46146, bsc#1208049) * Fix uncontrolled resource consumption by updating Go to version 1.20.1 (CVE-2022-41723, bsc#1208298) * Restructure the spec to build web assets online * Makefile grafana: * Update to version 9.5.8: * Features and enhancements GenericOAuth: Set sub as auth id * Bug fixes: DataSourceProxy: Fix url validation error handling * Update to version 9.5.7: Alerting: Sort NumberCaptureValues in EvaluationString Alerting: Improve performance of matching captures Alerting: No longer silence paused alerts during legacy migration Alerting: Remove and revert flag alertingBigTransactions Alerting: Migrate unknown NoData\Error settings to the default Tracing: supply Grafana build version Tempo: Escape regex-sensitive characters in span name before building promql query Plugins: Only configure plugin proxy transport once Alerting: Fix unique violation when updating rule group with title chains/cycles Prometheus: Version detect bug Prometheus: Fix heatmap format with no data Database: Change getExistingDashboardByTitleAndFolder to get dashboard by title, not slug Alerting: Convert 'Both' type Prometheus queries to 'Range' in SQLStore: Fix Postgres dialect treating "false" migrator default as true Alerting: Support newer http_config struct InfluxDB: Interpolate retention policies StatusHistory: Fix rendering of value-mapped null Alerting: Fix provenance guard checks for Alertmanager configuration to not cause panic when compared nested objects AnonymousAuth: Fix concurrent read-write crash AzureMonitor: Ensure legacy properties containing template variables are correctly migrated Explore: Remove data source onboarding page Dashboard: Re-align Save form Azure Monitor: Fix bug that did not show alert rule preview Histogram: Respect min/max panel settings for x-axis Heatmap: Fix color rendering for value ranges < 1 Heatmap: Handle unsorted timestamps in calculate mode Google Cloud Monitor: Fix mem usage for dropdown AzureMonitor: Fix logs query multi-resource and timespan values Utils: Reimplement util.GetRandomString to avoid modulo bias Alerting: Fix matching labels with spaces in their values Dashboard: Fix applying timezone to datetime variables Dashboard: Fix panel description event triggering every time panel is rendered Tempo: Fix get label values based on CoreApp type Heatmap: Fix log scale editor Dashboard: Fix disappearing panel when viewed panel is refreshed Prometheus: Fix bug in creating autocomplete queries with labels Prometheus: Fix Query Inspector expression range value Alerting: Fix migration failing if alert_configuration table is not empty InfluxDB: Fix querying retention policies on flux mode * Update to version 9.5.6: * Bug fixes Dashboard: Fix library panels in collapsed rows not getting updated Auth: Add and document option for enabling email lookup * Update to version 9.5.5: Security: Fix authentication bypass using Azure AD OAuth (bsc#1212641, CVE-2023-3128, jsc#PED-3694). Auth: Show invite button if disable login form is set to false. Azure: Fix Kusto auto-completion for Azure datasources. RBAC: Remove legacy AC editor and admin role on new dashboard route. API: Revert allowing editors to access GET /datasources. Settings: Add ability to override skip_org_role_sync with Env variables. * Update to version 9.5.3: Query: Prevent crash while executing concurrent mixed queries (bsc#1212099, CVE-2023-2801). Alerting: Require alert.notifications:write permissions to test receivers and templates (bsc#1212100, CVE-2023-2183). * Update to version 9.5.2: Alerting: Scheduler use rule fingerprint instead of version. Explore: Update table min height. DataLinks: Encoded URL fixed. TimeSeries: Fix leading null-fill for missing intervals. Dashboard: Revert fixed header shown on mobile devices in the new panel header. PostgreSQL: Fix TLS certificate issue by downgrading lib/pq. Provisioning: Fix provisioning issues with legacy alerting and data source permissions. Alerting: Fix misleading status code in provisioning API. Loki: Fix log samples using `instant` queries. Panel Header: Implement new Panel Header on Angular Panels. Azure Monitor: Fix bug that was not showing resources for certain locations. Alerting: Fix panic when reparenting receivers to groups following an attempted rename via Provisioning. Cloudwatch Logs: Clarify Cloudwatch Logs Limits. * Update to 9.5.1 Loki Variable Query Editor: Fix bug when the query is updated Expressions: Fix expression load with legacy UID -100 * Update to 9.5.0 (CVE-2023-1387, bsc#1210907, jsc#PED-3694) * Breaking changes * default named retention policies won't be used to query. Users who have a default named retention policy in their influxdb database, have to rename it to something else. Having default named retention policy is not breaking anything. We will make sure to use the actual default retention policy under the hood. To change the hardcoded retention policy in the dashboard.json, users must they select the right retention policy from dropdown and save the panel/dashboard. * Grafana Alerting rules with NoDataState configuration set to Alerting will now respect "For" duration. * Users who use LDAP role sync to only sync Viewer, Editor and Admin roles, but grant Grafana Server Admin role manually will not be able to do that anymore. After this change, LDAP role sync will override any manual changes to Grafana Server Admin role assignments. If grafana_admin is left unset in LDAP role mapping configuration, it will default to false. API keys: Add deprecation to api keys. API: Enable serving Swagger UI by default and add docs and guidelines. API: Permit Cache-Control (browser caching) for datasource resources. Accessibility: Make row actions keyboard accessible. Admin/Plugins: Set category filter in connections link. Alerting: Add CustomDetails field in PagerDuty contact point. Alerting: Add dashboard and panel links to rule and instance annotations. Alerting: Add filter and remove funcs for custom labels and Alerting: Add fuzzy search to alert list view. Alerting: Add metrics for active receiver and integrations. Alerting: Better printing of labels. Alerting: Create new state history "fanout" backend that dispatches to multiple other backends at once. Alerting: Enable preview for recording rules. Alerting: Fetch all applied alerting configurations. Alerting: Introduce proper feature toggles for common state history backend combinations. Alerting: Make time range query parameters not required when querying Loki. Alerting: New notification policies view. Alerting: No longer index state history log streams by instance labels. Alerting: Respect "For" Duration for NoData alerts. Alerting: Support filtering rules by multiple datasources. Alerting: Switch to snappy-compressed-protobuf for outgoing push requests to Loki. Angular: Prevent angular from loading when disabled. Auth: Add Generic oauth skip org role sync setting. Auth: Add feature flag to move token rotation to client. Auth: Show user sync external Authentication status. Backend: Use sdk version 0.148.0. Chore: Add stat for remote cache config. Chore: Replace short UID generation with more standard UUIDs. Chore: Use DOMPurify to sanitize strings rather than js-xss. CloudMonitoring: Add possibility to use path for private key. CloudWatch Logs: Update default timeout to 30m. CloudWatch: Add AWS/IotSiteWise namespace and metrics. CloudWatch: Add account support to variable queries. CloudWatch: Make deeplinks work for us-gov and china regions. Cloudwatch: Add MeteredIOBytes metric for EFS. Command Palette: Display dashboard location. Command palette: Enable folder searching. Connections: Turn on feature toggle by default. Cookies: Provide a mechanism for per user control over cookies. Dashboard Datasource: Update Query List & Improve UX. Dashboard: Add a feature that creates a table panel when a spreadsheet file is dropped on the dashboard. Dashboard: Add new visualization/row/library panel/pasted panel is now a dropdown menu. Dashboard: Add value format for requests per minute. Dashboard: Empty/No Panels dashboard with a new design. Dashboard: When dashboard is not found show message instead of empty page. Dashboards: Enable feature flag newPanelChromeUI by default. Dataplane: Support timeSeriesLong without transform. Datasources: Add user_agent header customization for outgoing HTTP requests. Datasources: Use getDefaultQuery in annotations editors. Docs: Add documentation on how to debug backend plugins. Docs: Deprecate dashboard previews. Elasticsearch: Detect Elasticsearch version. Elasticsearch: Run Explore queries trough data source backend. Explore: Add range option to internal data links. Explore: Add transformations to correlation data links. Explore: Support mixed data sources for supplementary query. Extensions: Expose an enum for available placements. Feat: Changing link destination for get more plugins. Feat: Linking to plugin details page rather than externally for new datasources. FieldMatchers: Add match by value (reducer). Flame graph: Add context menu. Flame graph: Add metadata above flame graph. Geomap: Improve tooltip url for photos layer. Geomap: Release night / day layer. InfluxDB: Move database information into jsondata. Jaeger and Zipkin: Config & docs upgrade. LDAP: Allow setting minimum TLS version and accepted ciphers. Live: Remove (alpha) ability to configure live pipelines. Logger: Add feature toggle for errors in HTTP request logs. Login: Allow custom name and icon for social providers. Logs Panel: Refactor style generation to improve rendering performance. Logs: Add millisecond to timestamp in log line. Logs: Rename dedup to deduplicate. Loki Query Editor: Make Monaco the default editor. Loki: Add unpack query builder hint. Loki: Add descriptions to query builder operations. Loki: Add placeholder to the loki query editor. Loki: Always fetch for new label keys in the QueryBuilder. Loki: Display error with label filter conflicts. Loki: Improve the display of loki query stats. MSSQL/Postgres: List views in table dropdown as well. MSSQL: Update forked go-mssqldb dependency. Metrics: Update comment to mention folders instead of dashboards. Navigation: Enable new navigation by default. NodeGraph: Support icons for nodes. Notifications: Enable display of trace ID by default. Packaging: Start Grafana service after InfluxDB. Panel Header: Add CancelQuery option to panel header. Panel: Show multiple errors info in the inspector. PanelChrome: Add option to show actions on the right side (actions = leftItems). Phlare: Allow variables in labelSelector (in query). Plugin: Skip preloading disabled app plugins. Plugins: Add optional logger for plugin requests sent to backend plugins. Plugins: Extend panel menu with commands from plugins. Plugins: Extend panel menu with links from plugins. Plugins: Improve instrumentation by adding metrics and tracing. Plugins: Support for distributed tracing in backend plugins SDK. Plugins: Support for link extensions. Profiling: Enable flame graph & Phlare/Parca data sources for all users. Prometheus Datasource: Improve Prom query variable editor. Prometheus Metrics: Add missing stat_total_teams metric. Prometheus/Loki: Run query explicitly instead of onblur in panel edit. Prometheus: Browser resource caching. Prometheus: Improve prometheus query variable editor. Prometheus: Use $__rate_interval for rate queries generated by metric browser. Pubdash: Email sharing handle dashboard deleted. PublicDashboards: Backfills share column with default value. PublicDashboards: Configuration modal redesign. PublicDashboards: Email sharing. PublicDashboards: Enable creation when dashboard has template variables. PublicDashboards: Paused or deleted public dashboard screen. QueryHistory: Improve handling of mixed datasource entries. Rendering: Experimental support to use JWTs as auth method. SQL Datasources: Add back help content. Schema: Remove exclusion for timeseries and update imports. Search: Improvements for starred dashboard search. Select: Show icon in the grafana/ui Select component. Service accounts: Creation logic simplification. Service accounts: Remove Add API keys buttons and remove one state of migrating for API keys tab. SplitOpen: Update API to accept multiple queries. Stat Panel: Add an option for a non-gradient/solid background. Stat: Add ability to remove default single-color background gradient. SupportBundles: Add OAuth bundle collectors. Table Panel: Add ability to use text color for value or hide value in gauge cell. Table: Introduce sparkline cell type. Tempo: Config and doc updates. Tempo: Update service graph view and docs. TraceView: Add key and url escaping of json tag values. TraceView: Reworked header. Tracing: Add more detail to HTTP Outgoing Request. Tracing: Docs and config improvements for Tempo/Jaeger/Zipkin. Tracing: Support multiple OTel propagators. Transformations: Support time format when converting time to strings. Transformers: Support adding the row index using calculate field transformer. Units: Format currency with negative before the symbol. API: Fix "Updated by" Column in dashboard versions table. AccessControl: Allow editors to access GET /api/datasources. Alerting: Add "backend" label to state history writes metrics. Alerting: Add alert instance labels to Loki log lines in addition to stream labels. Alerting: Elide requests to Loki if nothing should be recorded. Alerting: Fix DatasourceUID and RefID missing for DatasourceNoData alerts. Alerting: Fix ambiguous handling of equals in labels when bucketing Loki state history streams. Alerting: Fix attachment of external labels to Loki state history log streams. Alerting: Fix creating a recording rule when having multiple datasources. Alerting: Fix explore link in alert detail view. Alerting: Fix share URL for Prometheus rules on subpath. Alerting: Fix stats that display alert count when using unified alerting. Alerting: Hide mute timing actions when dealing with vanilla prometheus. Alerting: Paginate result previews. Alerting: Prometheus-compatible Alertmanager timings editor. Alerting: Update scheduler to get updates only from database. Alerting: Use a completely isolated context for state history writes. Alerting: Use displayNameFromDS if available in preview. Annotation List: Fix panel not updating when variable is changed. Annotations: Ignore unique constraint violations for tags. Auth: Fix orgrole picker disabled if isSynced user. AzureMonitor: Fix Log Analytics portal links. BrowseDashboards: Fix move to General folder not working. Catalog: Show install error with incompatible version. Chore: Update Grafana to use Alertmanager v0.25.1-0.20230308154952-78fedf89728b. CloudMonitoring: Add project selector for MQL editor[fix]. CloudWatch Logs: Fix running logs queries with expressions. CloudWatch Logs: Fix to make log queries use a relative time if available. CloudWatch Logs: Revert "Queries in an expression should run synchronously". CloudWatch: Fix cachedQueries insights not being updated for metric queries. Cloudwatch: Pass refId from query for expression queries. Dashboards: Evaluate provisioned dashboard titles in a backwards compatible way. Dashboards: Fix broken internal data links. Database: Don't sleep 10ms before every request. Elasticsearch: Fix processing of response with multiple group by for alerting. Elasticsearch: Handle multiple annotation structures. Email: Mark HTML comments as "safe" in email templates. ErrorHandling: Fixes issues with bad error messages. ErrorView: Better detection of no-data responses. Explore: Make DataSourcePicker visible on small screens. Fix: DataLinks from data sources override user defined data link. Fix: Top table rendering and update docs. Frontend: Fix broken links in /plugins when pathname has a trailing slash. Geomap: Fix route layer zoom behavior. Google Cloud Monitoring: Fix project variable. HeatMap: Sort y buckets when all bucket names are numeric. InfluxDB: Fix querying with hardcoded retention policy. InfluxDB: Fix sending retention policy with InfluxQL queries. KVStore: Include database field in migration. LDAP: Always synchronize Server Admin role through role sync if role sync is enabled. Library panels: Ensure pagination controls are always correctly displayed. Loki: Fix autocomplete situations with multiple escaped quotes. MegaMenu: Fixes mega menu showing scroll indicator when it shouldn't. Navigation: Redirect to root page when switching organization. Navigation: Scrolled hamburger menu links now navigate correctly in Safari. NestedFolders: Fix nested folder deletion. New Panel Header: Fix when clicking submenu item the parent menu item onClick get's triggered. Phlare: Fix error when there are no profileTypes to send from backend. PieChart: Show long labels properly. PluginExtensions: Fixed issue with incorrect type being exposed when configuring an extension. Plugins: Ensure proxy route bodies are valid JSON. Plugins: Fix width for README pages with tables. Plugins: Markdown fetch retry with lowercase. Plugins: Skip instrumenting plugin build info for core and bundled plugins. PublicDashboards: Query collapsed panels inside rows. Query Splitting: Fix for handling queries with no requestId. SQL Datasources: Fix variable throwing error if query returns no data. SQL Datasources: Prevent Call Stack Overflows with Large Numbers of Values for Variable. SQLStore: Fix SQLite error propagation if query retries are disabled. Stat Panel: Fix issue with clipping text values. Table Panel: Fix panel migration for options cell type. Table: Fix migrations from old angular table for cell color modes. Table: Fixes issue with pagination summary causing scrollbar. Table: Fixes table panel gauge alignment. TablePanel: Fix table cells overflowing when there are multiple data links. TablePanel: fix footer bug; no footer calculated values after "hidden" column override. Templating: Allow percent encoding of variable with custom all. Tempo: Set default limit if none is provided for traceql queries. TimeSeries: Don't extend stepped interpolation to graph edges. TimeSeries: Improve stacking direction heuristic. Trace View: Update the queryType to traceql for checking if same trace when clicking span link. TraceView: Don't require preferredVisualisationType to render. Utils: Reimplement util.GetRandomString to avoid modulo bias. XYChart: Add all dataset columns in tooltip. * Plugin development fixes & changes DateTimePicker: Can now select time correctly. Grafana UI: Fix tooltip prop of button component. DateTimePicker: Add min date support to calendar. GrafanaUI: Implement new component Toggletip. ContextMenu: Fix padding and show border based on items. * Update to 9.4.7 (2023-03-16) Alerting: Update scheduler to receive rule updates only from database. Influxdb: Re-introduce backend migration feature toggle. Security: Fixes for CVE-2023-1410. The InfluxDB backend migration feature toggle (influxdbBackendMigration) has been reintroduced in this version as issues were discovered with backend processing of InfluxDB data. Unless this feature toggle is enabled, all InfluxDB data will be parsed in the frontend. This frontend processing is the default behavior. In Grafana 9.4.4, InfluxDB data parsing started to be handled in the backend. If you have upgraded to 9.4.4 and then added new transformations on InfluxDB data, those panels will fail to render. To resolve this either: Remove the affected panel and re-create it or edit the `time` field as `Time` in `panel.json` or `dashboard.json` as the exporter toolkit has been updated by upstream * Install wrapper scripts under /usr/sbin * Install actual binaries under /usr/libexec/grafana (or /usr/lib under older distributions) and create a simlink for wrapper scripts and the service (which expect the binary to be under /usr/share/grafana/bin) * Update to 9.4.3 Alerting: Use background context for maintenance function. * Update to 9.4.2 Alerting: Fix boolean default in migration from false to 0. * Update to 9.4.0 Alerting: Add endpoint for querying state history. Alerting: Add label query parameters to state history endpoint. Alerting: Add static label to all state history entries. Alerting: Mark AM configuration as applied. Azure Monitor: Enable multiple resource queries. Query Caching: Add per-panel query caching TTL. Table: Add row number column option. Tempo: Remove tempoApmTable feature flag. Transformations: Selectively apply transformation to queries. AccessControl: Clear user permission cache for update org user role. Alerting: Fix handling of special floating-point cases when writing observed values to annotations. Auth: Rotate token patch. ContextMenu: Consider y coord when determining bottom collision. Elasticsearch: Fix consistent label order in alerting. Explore: Fix graph not updating when changing config. Heatmap: Support heatmap rows with non- timeseries X axis. Login: Fix panic when a user is upserted by a background process. MSSQL: Add support for macro function calls. MySQL: Quote identifiers that include special characters. Navigation: Sign in button now works correctly when served under a sub path. Nested Folder: Fix for SQLite not to overwrite the parent on restarts. PanelChrome: Adds display mode to support transparent option. Plugins: Case-sensitive routes for standalone pages. Plugins: Prefer to use the data source UID when querying. SQLStore: Fix folder migration for MySQL < 5.7. Search: Fix not being able to clear sort value. Tempo: Fix span name being dropped from the query. PanelChrome: Implement hover header. * Update to 9.3.7 Alerting: Validate that tags are 100 characters or less. Expressions: Fixes the issue showing expressions editor. Logs: Fix stats not being updated when log results change. Plugins: Fix circular reference in customOptions leading to MarshalJSON errors. Time Series Panel: Fix legend text selection in Firefox. * Update to 9.3.6 QueryEditorRow: Fixes issue loading query editor when data source variable selected. * Update to 9.3.4 Prometheus: Add default editor configuration. TextPanel: Refactor to functional component. Alerting: Fix webhook to use correct key for decrypting token. Alerting: Set error annotation on EvaluationError regardless of underlying error type. Datasources: Fix Proxy by UID Failing for UIDs with a Hyphen. Fix creating of span link with no tags. Elasticsearch: Fix failing requests when using SigV4. Elasticsearch: Fix toggle-settings are not shown correctly. Explore: Be sure time range key bindings are mounted after clear. Explore: Unsync time ranges when a pane is closed. Logs: Lines with long words do not break properly. Loki: Fix misaligned derived fields settings. Query Builder: Fix max width of input component to prevent overflows. Search: Auto focus input elements. Search: Fix empty folder message showing when by starred dashboards. Table Panel: Fix image of image cell overflowing table cell and cells ignoring text alignment setting when a data link is added. * Update to 9.3.2 Graphite: Process multiple queries to Graphite plugin. API: Fix delete user failure due to quota not enabled. Accessibility: Improved keyboard accessibility in BarGauge. Accessibility: Improved keyboard accessibility in BigValue. Alerting: Use the QuotaTargetSrv instead of the QuotaTarget in quota check. AzureMonitor: Automate location retrieval. AzureMonitor: Fix bad request when setting dimensions. BarChart: Fix value mappings. Build: Streamline and sync dockerfiles. Build: Unified dockerfile for all builds. CloudWatch: Fix - make sure dimensions are propagated to alert query editor. Cloudwatch: Fix deeplink with default region. Command Palette: Fix not being able to type if triggered whilst another modal is open. Command Palette: Maintain page state when changing theme. Dashboards: Fix 'Make Editable' button not working in Dashboard Settings. Dashboards: Show error when data source is missing. Datasource: Fix - apply default query also to queries in new panels. Dropdown: Menu now closes correctly when selecting options on touch devices. Influx: Query segment menus now position correctly near the bottom of the screen. Login: Fix failure to login a new user via an external provider if quota are enabled. Loki/Prometheus: Fix wrong queries executed in split view. Loki: Fix wrongly escaped label values when using LabelFilter. Navigation: Prevent app crash when importing a dashboard with a uid of `home`. Panel Edit: Fix data links edit icons being off screen when provided title is too long. Prometheus: Fix exemplar fill color to match series color in time series. Prometheus: Fix exemplars not respecting corresponding series display status. StateTimeline: Fix negative infinity legend/tooltip from thresholds. Table: Fixes row border style not showing and colored rows blending together. Tempo: Fix TraceQL autocomplete issues. TimePicker: Prevent TimePicker overflowing viewport on small screens. TimeRangePicker: Fix recently ranges only not showing all recent ranges. TimeZonePicker: Scroll menu correctly when using keyboard controls. * Update to 9.3.1 Connections: Update "Your connections/Data sources" page. Accessibility: Increase badge constrast to be WCAG AA compliant. * Update to 9.3.0 Alerting: Enable interpolation for notification policies in file provisioning. Azure Monitor Logs: Avoid warning when the response is empty. Azure Monitor: Add support to customized routes. Canvas: Add icon value mapping. CloudWatch: Cross-account querying support. Docs: Update `merge-pull-request.md` regarding backport policies. GaugePanel: Setting the neutral-point of a gauge. Geomap: Improve location editor. Internationalization: Enable internationalization by default. Logs: Add `Download logs` button to log log-browser. Loki: Add `gzip` compression to resource calls. Loki: Add improvements to loki label browser. Loki: Make label browser accessible in query builder. Loki: Remove raw query toggle. Middleware: Add CSP Report Only support. Navigation: Prevent viewer role accessing dashboard creation, import and folder creation. OAuth: Refactor OAuth parameters handling to support obtaining refresh tokens for Google OAuth. Oauth: Display friendly error message when role_attribute_strict=true and no valid role found. Preferences: Add confirmation modal when saving org preferences. PublicDashboards: Orphaned public dashboard deletion script added. Query Editor: Hide overflow for long query names. Solo Panel: Configurable timezone. TablePanel: Add support for Count calculation per column or per entire dataset. Tempo: Send the correct start time when making a TraceQL query. Various Panels: Remove beta label from Bar Chart, Candlestick, Histogram, State Timeline, & Status History Panels. Access Control: Clear user's permission cache after resource creation. Accessibility: Improve keyboard accessibility in `AnnoListPanel`. Accessibility: Improve keyboard accessibility in `Collapse`. `GettingStarted` panel. Accessibility: Improve keyboard accessibility of `FilterPill`. Admin: Fix broken links to image assets in email templates. Azure Monitor: Fix namespace selection for storageaccounts. Calcs: Fix difference percent in legend. DataLinks: Improve Data-Links AutoComplete Logic. Explore: Fix a11y issue with logs navigation buttons. Heatmap: Fix blurry text & rendering. Heatmap: Fix tooltip y range of top and bottom buckets in calculated heatmaps. Logs: Fix misalignment of LogRows. Navigation: Stop clearing search state when opening a result in a new tab. OptionsUI: SliderValueEditor does not get auto focused on slider change. PanelEdit: Fixes bug with not remembering panel options pane collapse/expand state. Quota: Fix failure in store due to missing scope parameters. Quota: Fix failure when checking session limits. StateTimeline: Prevent label text from overflowing state rects. Tempo: Fix search table duration unit. TraceView: Fix broken rendering when scrolling in Dashboard panel in Firefox. GrafanaUI: Add disabled option for menu items. * Update to 9.2.4 Access Control: Add an endpoint for setting several managed resource permissions. Accessibility: Increase `Select` placeholder contrast to be WCAG AA compliant. Alerting: Append org ID to alert notification URLs. Alerting: Make the Grouped view the default one for Rules. Build: Remove unnecessary alpine package updates. Google Cloud Monitoring: Set frame interval to draw null values. Instrumentation: Expose when the binary was built as a gauge. Loki: Preserve `X-ID-Token` header. Search: Reduce requests in folder view. TimeSeries: More thorough detection of negative values for auto-stacking direction. Alerting: Attempt to preserve UID from migrated legacy channel. Alerting: Fix response is not returned for invalid Duration in Provisioning API. Alerting: Fix screenshot is not taken for stale series. Auth: Fix admins not seeing pending invites. MSSQL/Postgres: Fix visual query editor filter disappearing. Tempo: Fix dropdown issue on tag field focus. Timeseries: Fix null pointer when matching fill below to field. Toolkit: Fix Webpack less-loader config. * Update to 9.2.3 Docs: Add information about DB version support to upgrade guide. Footer: Update footer release notes link to Github changelog. Prometheus: Do not drop errors in streaming parser. Prometheus: Flavor/version configuration. Prometheus: Provide label values match parameter API when supported prometheus instance is configured. Security: Upgrade x/text to version unaffected by CVE-2022-32149. Auth: Fix GF_AUTH_JWT_URL_LOGIN env variable doesn't work. Live: Explicitly reply with http 200. Prometheus: Fix builder operation mode changing multiselect to single select behaviour. Security: Fix vulnerabilities in webpack loader- utils. * Update to 9.2.2 Alerting: Add support for wecom apiapp. Canvas: Improve resource picker initialization. Canvas: Improve text element readability. CloudWatch: Make sure adoption tracking is done on valid, migrated queries. Dashboard: Alerts user to incorrect tag format for JSON import. MSSQL: Support tables from all schemas. Opentsdb: Allow template variables for filter keys. QueryEditor: Revert components from grafana-ui. Browse: Fix General folder not showing in FolderPicker. Elasticsearch: Fix calculation of trimEdges in alert mode. Elasticsearch: Fix trimEdges delete logic in alert mode. GoogleOAuth: Unlock User Admin UI. LogContext: Fix wrong color of `show context` icon in light theme. Loki: Fix adding of adhoc filters to stream selector when query with empty stream selector. Loki: Fix double stringified log-lines when copied via Copy button. Loki: Fix explain section about $__interval variable. Loki: Remove already selected options from next label filter options in builder. NodeGraph: Fix rendering issues when values of arc are over 1. PublicDashboards: Fix hidden queries execution. Tempo: Fix Node Graph visualization type in dashboard. TimeSeries: Fix stacking when first value is negative zero. TimeseriesPanel: Fix variables in data links. User: Fix externalUserId not being populated. We added some components a bit too early to @grafana/ui in 9.2 so we are moving them back to @grafana/experimental. If you used any of these components AccessoryButton EditorFieldGroup EditorHeader EditorField EditorRow EditorList EditorRows EditorSwitch FlexItem Stack InlineSelect InputGroup Space Please use them from grafana/experimental from now on. * Update to 9.2.1 Alerting: Improve notification policies created during migration. AzureAD: Add option to force fetch the groups from the Graph API. Docs: Note end of release notes publication. Inspect: Handle JSON tab crash when the provided object is too big to stringify. TablePanel: Footer now updates values on column filtering. Alerting: Fix email image embedding on Windows. Alerting: Fix mathexp.NoData for ConditionsCmd. Legacy Alerting: Fix duration calculation when testing a rule. Loki: Propagate additional headers from Grafana to Loki when querying data. Search: Sort alphabetically in the folder view, increase the limit of the folder search from 50 to 1000. TablePanel: Fix last table column to be centered. Grafana UI: Export prop types for queryfield, modal and field components. Toolkit: Fix `Cannot use import statement outside...` error in tests. * Update to 9.2.0 Alerting: Add Notification error feedback on contact points view. Alerting: Allow created by to be manually set when there's no creator for silences. Alerting: Expose info about notification delivery errors in a new /receivers endpoint. Alerting: Update imported prometheus alertmanager version. Alerting: Write and Delete multiple alert instances. Core: Implement aria attributes for query rows, improve a11y. DevEnv: Adds docker block for clickhouse. Docker: removes unneccesary use of edge repo. Explore: Revert split pane resize feature. Frontend: Make local storage items propagate to different tabs immediately. PublicDashboards: Allow disabling an existent public dashboard if it. QueryEditorRow: Only pass error to query editor if panel is not in a loading state. XYChart: Beta release. Alerting: Start ticker only when scheduler starts. Alerting: Fix pq: missing FROM- clause for table "a". AzureMonitor: Correctly update subscriptions value in ARG editor. Chore: Regenerate swagger specification and fix validation failures. Correlations: Only return correlation for which both source and target datasources exist. Explore: Prevent panes from disappearing when resizing window in split view. Links: Fix opening links from different orgs on the same tab. LogContext: Fix scroll position in upper context group. Logs: Show copy button independently from context. Loki/Prometheus: Fix adding of ad hoc filters when jumping from dashboard to explore. Loki: Add support for range aggregations with by grouping. Loki: Fix label-value escaping in context query. Loki: Fix redundant escaping in adhoc filter with regex match. PanelEdit: Fixes resize pane border and spacing issues. RBAC: Redirect to /login when forceLogin is set. Security: Fix CVE-2022-27664. StateTimeline: Fix tooltip showing erroneously in shared crosshair dashboards. Tempo: Fix unexpected trimming of leading zeroes in traceID. Tracing: Fix bug where errors are not reported to OpenTelemetry. * Update to 9.1.8 Alerting: Fix evaluation interval validation. Alerting: Fix migration to create rules with group index 1. Alerting: Fix migration to not add label "alertname". Azure Monitor: Fix empty Logs response for Alerting. Azure Monitor: Fix subscription selector when changing data sources. Google Cloud Monitoring: Fix bucket bound for distributions. * Update to 9.1.7 CloudWatch: Add missing AWS/Prometheus metrics. Explore: Add feature tracking events. Graphite: Add error information to graphite queries tracing. Prometheus: Restore FromAlert header. Search: Add search index configuration options. Thresholds: Add option for dashed line style. Alerting: Fix default query's data source when no default datasource specified. Alerting: Fix mathexp.NoData cannot be reduced. Alerting: Skip unsupported file types on provisioning. AzureMonitor: Ensure resourceURI template variable is migrated. Dashboard: Fix plugin dashboard save as button. Docs: Fix decimals: auto docs for panel edit. Fix: RBAC handle `error no resolver` found. LibraryPanelSearch: Refactor and fix hyphen issue. Live: Fix live streaming with `live-service-web-worker` feature flag enabled. QueryField: Fix wrong cursor position on autocomplete. * Update to 9.1.6 DataSource: Adding possibility to hide queries from the inspector. Inspect: Hide Actions tab when it is empty. PanelMenu: Remove hide legend action as it was showing on all panel types. Provisioning Contact points: Support disableResolveMessage via YAML. PublicDashboards: Support subpaths when generating pubdash url. Alerting: Fix legacy migration crash when rule name is too long. Alerting: Fix send resolved notifications. Azure Monitor: Fix migration issue with MetricDefinitionsQuery template variable query types. Browse: Hide dashboard actions if user does not have enough permission. ElasticSearch: Fix dispatching queries at a wrong time. Panel: Disable legends when showLegend is false prior to schema v37. Prometheus: Fix metadata requests for browser access mode. Search: Avoid requesting all dashboards when in Folder View. TablePanel/StatPanel: Fix values not being visible when background transparent. * Update to 9.1.5 Alerting: Sanitize invalid label/annotation names for external alertmanagers. Alerting: Telegram: Truncate long messages to avoid send error. DisplayProcessor: Handle reverse-ordered data when auto-showing millis. Heatmap: Add option to reverse color scheme. PluginLoader: Alias slate-react as @grafana/slate-react. Search: Add substring matcher, to bring back the old dashboard search behavior. Traces: More visible span colors. Alerting: Fix incorrect propagation of org ID and other fields in rule provisioning endpoints. Alerting: Resetting the notification policy tree to the default policy will also restore default contact points. AzureMonitor: Fix custom namespaces. AzureMonitor: Fix issue where custom metric namespaces are not included in the metric namespace list. CloudWatch: Fix display name of metric and namespace. Cloudwatch: Fix annotation query serialization issue. Dashboard: Fix issue where unsaved changes warning would appear even after save, and not being able to change library panels. Dashboard: Hide overflow content for single left pane. Loki: Fix a bug where adding adhoc filters was not possible. * Update to 9.1.4 GrafanaUI: Fixes Chrome issue for various query fields. * Update to 9.1.3 API: Do not expose user input in datasource error responses. Library Panel: Allow to delete them when deprecated. Plugins Catalog: Allow to filter plugins using special characters. Alerting: Fix UI bug when setting custom notification policy group by. AppRootPage: Fix issue navigating between two app plugin pages. Correlations: Use correct fallback handlers. RBAC: Fix deleting empty snapshots. LibraryElements: Fix inability to delete library panels under MySQL. Metrics: fix `grafana_database_conn_*` metrics, and add new `go_sql_stats_*` metrics as eventual replacement. TestData DB: Fix node graph not showing when the `Data type` field is set to `random`. * Deprecations The `grafana_database_conn_*` metrics are deprecated, and will be removed in a future version of Grafana. Use the `go_sql_stats_*` metrics instead. * Update to 9.1.2 AdHoc variable: Correctly preselect datasource when provisioning. AzureMonitor: Added ARG query function for template variables. Dashboards: Persist details message when navigating through dashboard save drawer's tabs. Dashboards: Correctly migrate mixed data source targets. Elasticsearch: Use millisecond intervals for alerting. Elasticsearch: Use millisecond intervals in frontend. Geomap: Local color range. Plugins Catalog: Use appSubUrl to generate plugins catalog urls. Rendering: Add support for renderer token. Alerting: Fix saving of screenshots uploaded with a signed url. AngularPanels: Fixing changing angular panel options not taking having affect when coming back from panel edit. Explore: Improve a11y of query row collapse button. Geomap: Fix tooltip display. QueryEditorRow: Filter data on mount. Search: Show all dashboards in the folder view. Tracing: Fix the event attributes in opentelemetry tracing. GrafanaUI: Fix styles for invalid selects & DataSourcePicker. * Update to 9.1.1 Cloud Monitoring: Support SLO burn rate. Schema: Restore "hidden" in LegendDisplayMode. Timeseries: Revert the timezone(s) property name change back to singular. Alerting: Fix links in Microsoft Teams notifications. Alerting: Fix notifications for Microsoft Teams. Alerting: Fix width of Adaptive Cards in Teams notifications. ColorPickerInput: Fix popover in disabled state. Decimals: Fixes auto decimals to behave the same for positive and negative values. Loki: Fix unique log row id generation. Plugins: Fix file extension in development authentication guide. TimeSeries: Fix jumping legend issue. TimeSeries: Fix memory leak on viz re-init caused by KeyboardPlugin. TimePicker: Fixes relative timerange of less than a day not displaying. GrafanaUI: Fixes ClipboardButton to always keep multi line content. * Update to 9.1.0 API: Allow creating teams with a user defined identifier. Alerting: Adds interval and For to alert rule details. Alerting: Extend PUT rule-group route to write the entire rule group rather than top-level fields only. Alerting: Use Adaptive Cards in Teams notifications. Azure Monitor: Add Network Insights Dashboard. Chore: Improve logging of unrecoverable errors. Correlations: Add UpdateCorrelation HTTP API. Dashboard: Reverted the changes of hiding multi-select and all variable in the datasource picker. Geomap: Add alpha day/night layer. Geomap: Add measuring tools. GrafanaUI: Add success state to ClipboardButton. Heatmap: Replace the heatmap panel with new implementation. KVStore: Allow empty value in kv_store. Prometheus: Promote Azure auth flag to configuration. Search: Display only dashboards in General folder of Search Folder View. Status history/State timeline: Support datalinks. Transform: Add a limit transform. Transformations: Add standard deviation and variance reducers. API: Fix snapshot responses. Access Control: Fix permission error during dashboard creation flow. Access Control: Set permissions for Grafana's test data source. Alerting: Fix migration failure. BarGauge: Show empty bar when value, minValue and maxValue are all equal. Dashboard: Fix color of bold and italics text in panel description tooltip. Loki: Fix passing of query with defaults to code mode. Loki: Fix producing correct log volume query for query with comments. Loki: Fix showing of unusable labels field in detected fields. Tracing: Fix OpenTelemetry Jaeger context propagation. Alerting: AlertingProxy to elevate permissions for request forwarded to data proxy when RBAC enabled. Plugins: Only pass `rootUrls` field in request when not empty. Alert notifications to Microsoft Teams now use Adaptive Cards instead of Office 365 Connector Cards. Starting at 9.1.0, existing heatmap panels will start using a new implementation. This can be disabled by setting the `useLegacyHeatmapPanel` feature flag to true. It can be tested on a single dashbobard by adding `?__feature.useLegacyHeatmapPanel=true` to any dashboard URL. The most notable changes are: Significantly improved rendering performance When calculating heatmaps, the buckets are now placed on reasonable borders (1m, 5m, 30s etc) Round cells are no longer supported * Update to 9.0.9 AuthNZ: Security fixes for CVE-2022-35957 and CVE-2022-36062. * Update to 9.0.8 Alerting: Hide "no rules" message when we are fetching from data sources. Alerting: AlertingProxy to elevate permissions for request forwarded to data proxy when RBAC enabled. * Update to 9.0.7 CloudMonitoring: Remove link setting for SLO queries. GrafanaUI: Render PageToolbar's leftItems regardless of title's presence. * Update to 9.0.6 Access Control: Allow org admins to invite new users to their organization. Grafana/toolkit: Fix incorrect image and font generation for plugin builds. Prometheus: Fix adding of multiple values for regex operator. UI/Card: Fix card items always having pointer cursor. * Update to 9.0.5 Access control: Show dashboard settings to users who can edit dashboard. Alerting: Allow the webhook notifier to support a custom Authorization header. Plugins: Add signature wildcard globbing for dedicated private plugin type. Prometheus: Don't show errors from unsuccessful API checks like rules or exemplar checks. Access control: Allow organisation admins to add existing users to org. Alerting: Fix alert panel instance- based rules filtering. Apps: Fixes navigation between different app plugin pages. Cloudwatch: Upgrade grafana-aws-sdk to fix auth issue with secret keys. Loki: Fix `show context` not working in some occasions. RBAC: Fix permissions on dashboards and folders created by anonymous users. * Update to 9.0.4 Browse/Search: Make browser back work properly when visiting Browse or search. Logs: Improve getLogRowContext API. Loki: Improve handling of empty responses. Plugins: Always validate root URL if specified in signature manfiest. Preferences: Get home dashboard from teams. SQLStore: Support Upserting multiple rows. Traces: Add more template variables in Tempo & Zipkin. Traces: Remove serviceMap feature flag. Access Control: Fix missing folder permissions. Access control: Fix org user removal for OSS users. Alerting: Fix Slack notifications. Alerting: Preserve new-lines from custom email templates in rendered email. Log: Fix text logging for unsupported types. Loki: Fix incorrect TopK value type in query builder. * Update to 9.0.3 Access Control: Allow dashboard admins to query org users. Alerting: Add method to provisioning API for obtaining a group and its rules. Alerting: Allow filtering of contact points by name. Alerting: Disable /api/admin/pause-all-alerts with Unified Alerting. Annotations: Use point marker for short time range annotations. AzureMonitor: Update UI to experimental package. AzureMonitor: Update resource and namespace metadata. CloudWatch: Remove simplejson in favor of 'encoding/json'. DashboardRow: Collapse shortcut prevent to move the collapsed rows. Navigation: Highlight active nav item when Grafana is served from subpath. Plugins: InfluxDB datasource - set epoch query param value as "ms". Plugins: InfluxDB update time range query. StateTimeline: Try to sort time field. API: Do not validate/save legacy alerts when saving a dashboard if legacy alerting is disabled. Alerting: Add method to reset notification policy tree back to the default. Alerting: Fix Teams notifier not failing on 200 response with error. Alerting: Fix bug where state did not change between Alerting and Error. Alerting: Fix consistency errors in OpenAPI documentation. Alerting: Fix normalization of alert states for panel Alerting: Provisioning API respects global rule quota. CSRF: Fix additional headers option. Chore: Bump parse-url to 6.0.2 to fix security vulnerabilities. Chore: Fix CVE-2020-7753. Chore: Fix CVE-2021-3807. Chore: Fix CVE-2021-3918. Chore: Fix CVE-2021-43138. Chore: Fix CVE-2022-0155. Dashboard: Fixes tooltip issue with TimePicker and Setting buttons. Dashboard: Prevent unnecessary scrollbar when viewing single panel. Logs: Fixed wrapping log lines from detected fields. Loki: Add missing operators in label filter expression. Loki: Fix error when changing operations with different parameters. Loki: Fix suggesting of correct operations in query builder. Plugins: InfluxDB variable interpolation fix for influxdbBackendMigration feature flag. SQLstore: Fix fetching an inexistent playlist. Security: Fixes for CVE-2022-31107 and CVE-2022-31097. Snapshots: Fix deleting external snapshots when using RBAC. Table: Fix scrollbar being hidden by pagination. Templating: Changing between variables with the same name now correctly triggers a dashboard refresh. Time series panel: Fix an issue with stacks being not complete due to the incorrect data frame length. * Update to 9.0.2 Alerting: Add support for images in Pushover alerts. Alerting: Don't stop the migration when alert rule tags are invalid. Alerting: Skip the default data source if incompatible. AzureMonitor: Parse non-fatal errors for Logs. OAuth: Restore debug log behavior. Plugins: Improved handling of symlinks. Alerting: Code-gen parsing of URL parameters and fix related bugs. Annotations: Fix annotation autocomplete causing panels to crash. Barchart: Fix warning not showing. CloudWatch: Enable custom session duration in AWS plugin auth. Dashboards: Fixes issue with the initial panel layout counting as an unsaved change. Plugins: Use a Grafana specific SDK logger implementation for core plugins. Search: Fix pagination in the new search page. * Update to 9.0.1 Alerting: Add support for image annotation in Alertmanager alerts. Alerting: Add support for images in SensuGo alerts. Alerting: Add support for images in Threema alerts. Alerting: Adds Mimir to Alertmanager data source implementation. Alerting: Invalid setting of enabled for unified alerting should return error. AzureMonitor: Clean namespace when changing the resource. AzureMonitor: Update supported namespaces and filter resources by the right type. CLI: Allow relative symlinks in zip archives when installing plugins. Dashboard: Don't show unsaved changes modal for automatic schema changes. Dashboard: Unsaved changes warning should not trigger when only pluginVersion has changed. Expression: Execute hidden expressions. Geomap: Support showing tooltip content on click (not just hover). Heatmap: Remove alpha flag from new heatmap panel. Instrumentation: Define handlers for requests that are not handled with named handlers. Log Panel: Improve log row hover contrast and visibility. Logs: Handle backend- mode errors in histogram. Loki: Do not show histogram for instant queries. Loki: Handle data source configs with path in the url. Loki: Handle invalid query type values. OAuth: Redirect to login if no oauth module is found or if module is not configured. OptionsUI: Move internal options editors out of @grafana/ui. Prometheus: Don't show undefined for step in collapsed options in query editor when value is "auto". Prometheus: Show query patterns in all editor modes for Prometheus and Loki. Tempo: Add link to Tempo Search with node service selected. Time Series Panel: Add Null Filling and "No Value" Support. TimeSeries: Add an option to set legend width. Timeseries: Improve cursor Y sync behavior. Traces: Do not use red in span colors as this looks like an error. Alerting: Fix AM config overwrite when SQLite db is locked during sync. Alerting: Fix alert instances filtering for prom rules. Alerting: Fix alert rule page crashing when datasource contained URL unsafe characters. Alerting: Fix automatically select newly created folder option. Alerting: Fix removal of notification policy without labels matchers. CloudWatch: Allow hidden queries to be executed in case an ID is provided. Dashboard: Prevent non-repeating panels being dropped from repeated rows when collapsed/expanded. Dashboards: Fix folder picker not showing correct results when typing too fast. Datasource: Prevent panic when proxying for non-existing data source. Explore: Fix log context scroll to bottom. Explore: Revert "Remove support for compact format URLs". Expressions: Fixes dashboard schema migration issue that casued Expression datasource to be set on panel level. Formatting: Fixes valueFormats for a value of 0. GrafanaData: Fix week start for non-English browsers. LibraryPanel: Resizing a library panel to 6x3 no longer crashes the dashboard on startup. LogRow: Fix placement of icon. Loki: Fix bug in labels framing. Loki: Fix issues with using query patterns. Loki: Fix showing of duplicated label values in dropdown in query builder. MSSQL: Fix ParseFloat error. Panels: Fixes issue with showing 'Cannot visualize data' when query returned 0 rows. Playlists: Disable Create Playlist buttons for users with viewer role. Plugins: Fix typo in plugin data frames documentation. Prometheus: Fix body not being included in resource calls if they are POST. RolePicker: Fix submenu position on horizontal space overflow. Tracing: Fix trace links in traces panel. Support for compact Explore URLs is deprecated and will be removed in a future release. Until then, when navigating to Explore using the deprecated format the URLs are automatically converted. If you have existing links pointing to Explore update them using the format generated by Explore upon navigation. You can identify a compact URL by its format. Compact URLs have the left (and optionally right) url parameter as an array of strings, for example `&left=["now-1h","now"...]`. The standard explore URLs follow a key/value pattern, for example `&left={"datasource":"test"...}`. Please be sure to check your dashboards for any hardcoded links to Explore and update them to the standard URL pattern. * Update to 9.0.0 API: Add GET /api/annotations/:annotationId endpoint. API: Add endpoint for updating a data source by its UID. AccessControl: Add enterprise only setting for rbac permission cache. AccessControl: Document basic roles changes and provisioning V2. AccessControl: Enable RBAC by default. AddDataSourceConfig: Remove deprecated checkHealth prop. Alerting: Add Image URLs to Microsoft Teams notifier. Alerting: Add RBAC actions and role for provisioning API routes. Alerting: Add Screenshot URLs to Pagerduty Notifier. Alerting: Add a "Reason" to Alert Instances to show underlying cause of state. Alerting: Add a general screenshot service and alerting- specific image service. Alerting: Add image url or file attachment to email notifications. Alerting: Add image_urls to OpsGenie notification details. Alerting: Add notification policy flow chart. Alerting: Attach image URL to alerts in Webhook notifier format. Alerting: Attach image URLs or upload files to Discord Alerting: Attach image URLs to Google Chat notifications. Alerting: Attach screenshot data to Unified Alerting Alerting: Create folder for alerting when start from the scratch. Alerting: Modify alertmanager endpoints for proxying using the datasource UID. Alerting: Modify endpoint for testing a datasource rule using the UID. Alerting: Modify prometheus endpoints for proxying using the datasource UID. Alerting: State Manager takes screenshots. Alerting: Use UID scope for folders authorization. Alerting: modify ruler endpoints for proxying using the datasource UID. Angular: Adds back two angular directives that are still used by remaining angular bits and plugins. Azure Monitor: Add Resource Picker to Metrics Queries. Azure Monitor: Add search feature to resource picker. AzureMonitor: Add support for selecting multiple options when using the equals and not equals dimension filters. AzureMonitor: Remove deprecated code. Build: Change names to PascalCase to match. Chore: Remove deprecated DataSourceAPI methods. Chore: Upgrade typescript to 4.6.4. Cloud Monitoring: Use new annotation API. CloudMonitoring: Allow to set a custom value or disable graph_period. CloudWatch: Add generic filter component to variable editor. CloudWatch: Added missing AWS/AppRunner metrics. CloudWatch: Enable support for dynamic labels with migrated alias patterns. Cloudwatch: Pass label in deep link. Cloudwatch: Use new annotation API. Dashboard: Validate dashboards against schema on save. DashboardPickerByID: Add option to exclude dashboards. DashboardPickerById: Add optionLabel prop. Dashboards: Display values of 0 with the configured decimal places. Data: Remove deprecated types and functions from valueMappings. Elasticsearch: Remove browser access mode. Elasticsearch: Remove support for versions after their end of the life (<7.10.0). Encryption: Add support for multiple data keys per day. Encryption: Enable envelope encryption by default. Explore: Remove support for legacy, compact format URLs. Explore: Skip Angular error handling when Angular support is disabled. Explore: simplify support for multiple query editors. FeatureToggles: Support changing feature toggles with URL parameters. FileUpload: Make component accessible by keyboard navigation. Formatting: Make SI number formats more robust. Graph: Deprecate Graph (old) and make it no longer a visualization option for new panels. IconButton: IconButtons are now correctly aligned in Safari. Logger: Enable new logging format by default. Loki: Add more query patterns. Loki: Enable new visual query builder by default. Loki: use the same dataframe-format for both live and normal queries. OAuth: Make allowed email domain case insensitive. Panels: Use the No value option when showing the no data message. Plugins: Remove plugin list panel. Query History: Enable new query history by default. QueryEditorRow: Show query errors next to query in a consistent way across Grafana. SAML: Implement Name Templates for assertion_attribute_name option. Service accounts: Do not display service accounts assigned to team. Settings: Use Grafana Azure SDK to pass Azure env vars for external plugins. Shortcuts: Add shortcut to show shortcuts to the list of shortcuts. Traces Panel: Add new Traces Panel visualization. Traces: Filter by service/span name and operation in Tempo and Jaeger. Transformations: Allow more complex regex expressions in `Rename by regex`. grafana/ui: Add default type="button" to

References

* bsc#1172110

* bsc#1176460

* bsc#1180816

* bsc#1180942

* bsc#1181119

* bsc#1181935

* bsc#1183684

* bsc#1187725

* bsc#1188061

* bsc#1188571

* bsc#1189520

* bsc#1191454

* bsc#1192154

* bsc#1192383

* bsc#1192696

* bsc#1192763

* bsc#1193492

* bsc#1193686

* bsc#1193688

* bsc#1197507

* bsc#1198903

* bsc#1199810

* bsc#1200142

* bsc#1200480

* bsc#1200591

* bsc#1200968

* bsc#1200970

* bsc#1201003

* bsc#1201059

* bsc#1201535

* bsc#1201539

* bsc#1202614

* bsc#1202945

* bsc#1203283

* bsc#1203596

* bsc#1203597

* bsc#1203599

* bsc#1204032

* bsc#1204126

* bsc#1204302

* bsc#1204303

* bsc#1204304

* bsc#1204305

* bsc#1204501

* bsc#1205207

* bsc#1205225

* bsc#1205227

* bsc#1205599

* bsc#1205759

* bsc#1207352

* bsc#1207749

* bsc#1207750

* bsc#1207830

* bsc#1208046

* bsc#1208049

* bsc#1208060

* bsc#1208062

* bsc#1208065

* bsc#1208270

* bsc#1208293

* bsc#1208298

* bsc#1208612

* bsc#1208692

* bsc#1208719

* bsc#1208819

* bsc#1208821

* bsc#1208965

* bsc#1209113

* bsc#1209645

* bsc#1210458

* bsc#1210640

* bsc#1210907

* bsc#1211525

* bsc#1212099

* bsc#1212100

* bsc#1212279

* bsc#1212641

* bsc#1218843

* bsc#1218844

* jsc#MSQA-718

* jsc#PED-2145

* jsc#PED-2617

* jsc#PED-3576

* jsc#PED-3694

* jsc#PED-4556

* jsc#PED-5405

* jsc#PED-5406

* jsc#SLE-23422

* jsc#SLE-23439

* jsc#SLE-23631

* jsc#SLE-24133

* jsc#SLE-24565

* jsc#SLE-24791

Cross-

* CVE-2020-7753

* CVE-2021-20178

* CVE-2021-20180

* CVE-2021-20191

* CVE-2021-20228

* CVE-2021-3447

* CVE-2021-3583

* CVE-2021-3620

* CVE-2021-36222

* CVE-2021-3711

* CVE-2021-3807

* CVE-2021-3918

* CVE-2021-41174

* CVE-2021-41244

* CVE-2021-43138

* CVE-2021-43798

* CVE-2021-43813

* CVE-2021-43815

* CVE-2022-0155

* CVE-2022-23552

* CVE-2022-27664

* CVE-2022-29170

* CVE-2022-31097

* CVE-2022-31107

* CVE-2022-31123

* CVE-2022-31130

* CVE-2022-32149

* CVE-2022-35957

* CVE-2022-36062

* CVE-2022-39201

* CVE-2022-39229

* CVE-2022-39306

* CVE-2022-39307

* CVE-2022-39324

* CVE-2022-41715

* CVE-2022-41723

* CVE-2022-46146

* CVE-2023-0507

* CVE-2023-0594

* CVE-2023-1387

* CVE-2023-1410

* CVE-2023-2183

* CVE-2023-2801

* CVE-2023-3128

CVSS scores:

* CVE-2020-7753 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-20178 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

* CVE-2021-20178 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-20180 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

* CVE-2021-20180 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-20191 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

* CVE-2021-20191 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-20228 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

* CVE-2021-20228 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-3447 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

* CVE-2021-3447 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-3583 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2021-3583 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

* CVE-2021-3620 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

* CVE-2021-3620 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-36222 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-36222 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3711 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-3711 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-3807 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3807 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3807 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3918 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-3918 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-41174 ( SUSE ): 6.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:N

* CVE-2021-41174 ( NVD ): 6.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:N

* CVE-2021-41244 ( SUSE ): 9.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

* CVE-2021-41244 ( NVD ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-43138 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2021-43138 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2021-43798 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-43798 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-43813 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

* CVE-2021-43813 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

* CVE-2021-43815 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

* CVE-2021-43815 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

* CVE-2022-0155 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

* CVE-2022-23552 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2022-23552 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2022-27664 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-27664 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-29170 ( SUSE ): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:L

* CVE-2022-29170 ( NVD ): 8.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N

* CVE-2022-31097 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2022-31097 ( NVD ): 8.7 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N

* CVE-2022-31107 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L

* CVE-2022-31107 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-31123 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L

* CVE-2022-31123 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2022-31130 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

* CVE-2022-31130 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

* CVE-2022-32149 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-32149 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-35957 ( SUSE ): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-35957 ( NVD ): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-36062 ( SUSE ): 6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L

* CVE-2022-36062 ( NVD ): 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

* CVE-2022-39201 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

* CVE-2022-39201 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

* CVE-2022-39229 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

* CVE-2022-39229 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

* CVE-2022-39306 ( SUSE ): 6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2022-39306 ( NVD ): 6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2022-39307 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

* CVE-2022-39307 ( NVD ): 6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

* CVE-2022-39324 ( SUSE ): 6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

* CVE-2022-39324 ( NVD ): 6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

* CVE-2022-41715 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-41715 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-41723 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-41723 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2022-46146 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-46146 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-0507 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2023-0507 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2023-0594 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2023-0594 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

* CVE-2023-1387 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N

* CVE-2023-1387 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N

* CVE-2023-1410 ( SUSE ): 5.7 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N

* CVE-2023-1410 ( NVD ): 6.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:N

* CVE-2023-2183 ( SUSE ): 4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N

* CVE-2023-2183 ( NVD ): 4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N

* CVE-2023-2801 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2023-2801 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2023-3128 ( SUSE ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

* CVE-2023-3128 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Affected Products:

* openSUSE Leap 15.3

* openSUSE Leap 15.4

* openSUSE Leap 15.5

* SUSE Linux Enterprise Desktop 15

* SUSE Linux Enterprise Desktop 15 SP1

* SUSE Linux Enterprise Desktop 15 SP2

* SUSE Linux Enterprise Desktop 15 SP3

* SUSE Linux Enterprise Desktop 15 SP4

* SUSE Linux Enterprise Desktop 15 SP5

* SUSE Linux Enterprise High Performance Computing 15

* SUSE Linux Enterprise High Performance Computing 15 SP1

* SUSE Linux Enterprise High Performance Computing 15 SP2

* SUSE Linux Enterprise High Performance Computing 15 SP3

* SUSE Linux Enterprise High Performance Computing 15 SP4

* SUSE Linux Enterprise High Performance Computing 15 SP5

* SUSE Linux Enterprise Micro 5.0

* SUSE Linux Enterprise Micro 5.1

* SUSE Linux Enterprise Micro 5.2

* SUSE Linux Enterprise Micro 5.3

* SUSE Linux Enterprise Micro 5.4

* SUSE Linux Enterprise Micro 5.5

* SUSE Linux Enterprise Real Time 15 SP1

* SUSE Linux Enterprise Real Time 15 SP2

* SUSE Linux Enterprise Real Time 15 SP3

* SUSE Linux Enterprise Real Time 15 SP4

* SUSE Linux Enterprise Real Time 15 SP5

* SUSE Linux Enterprise Server 15

* SUSE Linux Enterprise Server 15 SP1

* SUSE Linux Enterprise Server 15 SP2

* SUSE Linux Enterprise Server 15 SP3

* SUSE Linux Enterprise Server 15 SP4

* SUSE Linux Enterprise Server 15 SP5

* SUSE Linux Enterprise Server for SAP Applications 15

* SUSE Linux Enterprise Server for SAP Applications 15 SP1

* SUSE Linux Enterprise Server for SAP Applications 15 SP2

* SUSE Linux Enterprise Server for SAP Applications 15 SP3

* SUSE Linux Enterprise Server for SAP Applications 15 SP4

* SUSE Linux Enterprise Server for SAP Applications 15 SP5

* SUSE Manager Client Tools Beta for SLE 15

* SUSE Manager Client Tools Beta for SLE Micro 5

An update that solves 44 vulnerabilities, contains 14 features and has 35

security fixes can now be installed.

##

* https://www.suse.com/security/cve/CVE-2020-7753.html

* https://www.suse.com/security/cve/CVE-2021-20178.html

* https://www.suse.com/security/cve/CVE-2021-20180.html

* https://www.suse.com/security/cve/CVE-2021-20191.html

* https://www.suse.com/security/cve/CVE-2021-20228.html

* https://www.suse.com/security/cve/CVE-2021-3447.html

* https://www.suse.com/security/cve/CVE-2021-3583.html

* https://www.suse.com/security/cve/CVE-2021-3620.html

* https://www.suse.com/security/cve/CVE-2021-36222.html

* https://www.suse.com/security/cve/CVE-2021-3711.html

* https://www.suse.com/security/cve/CVE-2021-3807.html

* https://www.suse.com/security/cve/CVE-2021-3918.html

* https://www.suse.com/security/cve/CVE-2021-41174.html

* https://www.suse.com/security/cve/CVE-2021-41244.html

* https://www.suse.com/security/cve/CVE-2021-43138.html

* https://www.suse.com/security/cve/CVE-2021-43798.html

* https://www.suse.com/security/cve/CVE-2021-43813.html

* https://www.suse.com/security/cve/CVE-2021-43815.html

* https://www.suse.com/security/cve/CVE-2022-0155.html

* https://www.suse.com/security/cve/CVE-2022-23552.html

* https://www.suse.com/security/cve/CVE-2022-27664.html

* https://www.suse.com/security/cve/CVE-2022-29170.html

* https://www.suse.com/security/cve/CVE-2022-31097.html

* https://www.suse.com/security/cve/CVE-2022-31107.html

* https://www.suse.com/security/cve/CVE-2022-31123.html

* https://www.suse.com/security/cve/CVE-2022-31130.html

* https://www.suse.com/security/cve/CVE-2022-32149.html

* https://www.suse.com/security/cve/CVE-2022-35957.html

* https://www.suse.com/security/cve/CVE-2022-36062.html

* https://www.suse.com/security/cve/CVE-2022-39201.html

* https://www.suse.com/security/cve/CVE-2022-39229.html

* https://www.suse.com/security/cve/CVE-2022-39306.html

* https://www.suse.com/security/cve/CVE-2022-39307.html

* https://www.suse.com/security/cve/CVE-2022-39324.html

* https://www.suse.com/security/cve/CVE-2022-41715.html

* https://www.suse.com/security/cve/CVE-2022-41723.html

* https://www.suse.com/security/cve/CVE-2022-46146.html

* https://www.suse.com/security/cve/CVE-2023-0507.html

* https://www.suse.com/security/cve/CVE-2023-0594.html

* https://www.suse.com/security/cve/CVE-2023-1387.html

* https://www.suse.com/security/cve/CVE-2023-1410.html

* https://www.suse.com/security/cve/CVE-2023-2183.html

* https://www.suse.com/security/cve/CVE-2023-2801.html

* https://www.suse.com/security/cve/CVE-2023-3128.html

* https://bugzilla.suse.com/show_bug.cgi?id=1172110

* https://bugzilla.suse.com/show_bug.cgi?id=1176460

* https://bugzilla.suse.com/show_bug.cgi?id=1180816

* https://bugzilla.suse.com/show_bug.cgi?id=1180942

* https://bugzilla.suse.com/show_bug.cgi?id=1181119

* https://bugzilla.suse.com/show_bug.cgi?id=1181935

* https://bugzilla.suse.com/show_bug.cgi?id=1183684

* https://bugzilla.suse.com/show_bug.cgi?id=1187725

* https://bugzilla.suse.com/show_bug.cgi?id=1188061

* https://bugzilla.suse.com/show_bug.cgi?id=1188571

* https://bugzilla.suse.com/show_bug.cgi?id=1189520

* https://bugzilla.suse.com/show_bug.cgi?id=1191454

* https://bugzilla.suse.com/show_bug.cgi?id=1192154

* https://bugzilla.suse.com/show_bug.cgi?id=1192383

* https://bugzilla.suse.com/show_bug.cgi?id=1192696

* https://bugzilla.suse.com/show_bug.cgi?id=1192763

* https://bugzilla.suse.com/show_bug.cgi?id=1193492

* https://bugzilla.suse.com/show_bug.cgi?id=1193686

* https://bugzilla.suse.com/show_bug.cgi?id=1193688

* https://bugzilla.suse.com/show_bug.cgi?id=1197507

* https://bugzilla.suse.com/show_bug.cgi?id=1198903

* https://bugzilla.suse.com/show_bug.cgi?id=1199810

* https://bugzilla.suse.com/show_bug.cgi?id=1200142

* https://bugzilla.suse.com/show_bug.cgi?id=1200480

* https://bugzilla.suse.com/show_bug.cgi?id=1200591

* https://bugzilla.suse.com/show_bug.cgi?id=1200968

* https://bugzilla.suse.com/show_bug.cgi?id=1200970

* https://bugzilla.suse.com/show_bug.cgi?id=1201003

* https://bugzilla.suse.com/show_bug.cgi?id=1201059

* https://bugzilla.suse.com/show_bug.cgi?id=1201535

* https://bugzilla.suse.com/show_bug.cgi?id=1201539

* https://bugzilla.suse.com/show_bug.cgi?id=1202614

* https://bugzilla.suse.com/show_bug.cgi?id=1202945

* https://bugzilla.suse.com/show_bug.cgi?id=1203283

* https://bugzilla.suse.com/show_bug.cgi?id=1203596

* https://bugzilla.suse.com/show_bug.cgi?id=1203597

* https://bugzilla.suse.com/show_bug.cgi?id=1203599

* https://bugzilla.suse.com/show_bug.cgi?id=1204032

* https://bugzilla.suse.com/show_bug.cgi?id=1204126

* https://bugzilla.suse.com/show_bug.cgi?id=1204302

* https://bugzilla.suse.com/show_bug.cgi?id=1204303

* https://bugzilla.suse.com/show_bug.cgi?id=1204304

* https://bugzilla.suse.com/show_bug.cgi?id=1204305

* https://bugzilla.suse.com/show_bug.cgi?id=1204501

* https://bugzilla.suse.com/show_bug.cgi?id=1205207

* https://bugzilla.suse.com/show_bug.cgi?id=1205225

* https://bugzilla.suse.com/show_bug.cgi?id=1205227

* https://bugzilla.suse.com/show_bug.cgi?id=1205599

* https://bugzilla.suse.com/show_bug.cgi?id=1205759

* https://bugzilla.suse.com/show_bug.cgi?id=1207352

* https://bugzilla.suse.com/show_bug.cgi?id=1207749

* https://bugzilla.suse.com/show_bug.cgi?id=1207750

* https://bugzilla.suse.com/show_bug.cgi?id=1207830

* https://bugzilla.suse.com/show_bug.cgi?id=1208046

* https://bugzilla.suse.com/show_bug.cgi?id=1208049

* https://bugzilla.suse.com/show_bug.cgi?id=1208060

* https://bugzilla.suse.com/show_bug.cgi?id=1208062

* https://bugzilla.suse.com/show_bug.cgi?id=1208065

* https://bugzilla.suse.com/show_bug.cgi?id=1208270

* https://bugzilla.suse.com/show_bug.cgi?id=1208293

* https://bugzilla.suse.com/show_bug.cgi?id=1208298

* https://bugzilla.suse.com/show_bug.cgi?id=1208612

* https://bugzilla.suse.com/show_bug.cgi?id=1208692

* https://bugzilla.suse.com/show_bug.cgi?id=1208719

* https://bugzilla.suse.com/show_bug.cgi?id=1208819

* https://bugzilla.suse.com/show_bug.cgi?id=1208821

* https://bugzilla.suse.com/show_bug.cgi?id=1208965

* https://bugzilla.suse.com/show_bug.cgi?id=1209113

* https://bugzilla.suse.com/show_bug.cgi?id=1209645

* https://bugzilla.suse.com/show_bug.cgi?id=1210458

* https://bugzilla.suse.com/show_bug.cgi?id=1210640

* https://bugzilla.suse.com/show_bug.cgi?id=1210907

* https://bugzilla.suse.com/show_bug.cgi?id=1211525

* https://bugzilla.suse.com/show_bug.cgi?id=1212099

* https://bugzilla.suse.com/show_bug.cgi?id=1212100

* https://bugzilla.suse.com/show_bug.cgi?id=1212279

* https://bugzilla.suse.com/show_bug.cgi?id=1212641

* https://bugzilla.suse.com/show_bug.cgi?id=1218843

* https://bugzilla.suse.com/show_bug.cgi?id=1218844

* https://jira.suse.com/browse/MSQA-718

* https://jira.suse.com/browse/PED-2145

* https://jira.suse.com/browse/PED-2617

* https://jira.suse.com/browse/PED-3576

* https://jira.suse.com/browse/PED-3694

* https://jira.suse.com/browse/PED-4556

* https://jira.suse.com/browse/PED-5405

* https://jira.suse.com/browse/PED-5406

* https://jira.suse.com/browse/SLE-23422

* https://jira.suse.com/browse/SLE-23439

* https://jira.suse.com/browse/SLE-23631

* https://jira.suse.com/browse/SLE-24133

* https://jira.suse.com/browse/SLE-24565

* https://jira.suse.com/browse/SLE-24791

Severity
Announcement ID: SUSE-SU-2024:0196-1
Rating: moderate

Related News

News

Powered By

Footer Logo

Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.

Powered By

Footer Logo