Does Grafana support all the CVE fixes in Security Support

sonalasharma · May 11, 2026, 7:44am

Does Grafana support all the CVE fixes in Security Support. 13.x is the latest release but security support is only till Jan’27 while 12.4.3 is the old release with no active support but only secuirty support till May’27.

jangaraj · May 11, 2026, 9:52am

Correct:

And if you have Grafana Cloud then you have release channels:

paid (enteprise) version customer has early access to security releases

infofcc3 · May 11, 2026, 10:02am

Hi @sonalasharma,
Yes grafana versions that are in “Security Support” still receive security/CVE fixes even if they are no longer under full active support.

You can refer to the documentation below for more details -

Topic		Replies	Views
Support policy for previous releases Grafana legacy-grafana , policy	2	3498	September 28, 2021
Security maintenance policy Grafana release	11	1341	February 24, 2021
Clarifications on Grafana Release/Support lifecycle Releases release , policy	11	5726	April 18, 2023
Grafana 6.7.x end of support Grafana	1	1107	June 14, 2021
Grafana version 6.7.3 Grafana	1	358	November 12, 2020

Does Grafana support all the CVE fixes in Security Support

Related topics