v11.6.3+security-01
📦 grafanaView on GitHub →
✨ 1 features🐛 3 fixes🔧 1 symbols
Summary
This release introduces an enhancement to Profiles by stopping the passing of response headers for specific datasources and includes several bug fixes, notably addressing security vulnerabilities (CVE-2025-6023, CVE-2025-6197).
✨ New Features
- Profiles: Stop passing response headers for Grafana-Pyroscope and parca datasources.
🐛 Bug Fixes
- FlameGraph: Fix bug for function names that conflict with JavaScript object prototype properties.
- Security: Fixed CVE-2025-6023.
- Security: Fixed CVE-2025-6197.