ALSA-2025:16046

[ALSA-2025:16046] Moderate: mysql:8.4 security update

Type:

security

Severity:

moderate

Release date:

2025-09-18

Description:

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.  

Security Fix(es):  

  * openssl: Timing side-channel in ECDSA signature computation (CVE-2024-13176)
  * mysql: mysqldump unspecified vulnerability (CPU Apr 2025) (CVE-2025-30722)
  * mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30688)
  * mysql: Stored Procedure unspecified vulnerability (CPU Apr 2025) (CVE-2025-30699)
  * mysql: UDF unspecified vulnerability (CPU Apr 2025) (CVE-2025-30721)
  * mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30682)
  * mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30683)
  * mysql: Components Services unspecified vulnerability (CPU Apr 2025) (CVE-2025-30715)
  * mysql: Parser unspecified vulnerability (CPU Apr 2025) (CVE-2025-21574)
  * mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-21585)
  * mysql: DML unspecified vulnerability (CPU Apr 2025) (CVE-2025-21588)
  * mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30681)
  * mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-21577)
  * mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30687)
  * mysql: DML unspecified vulnerability (CPU Apr 2025) (CVE-2025-21580)
  * mysql: PS unspecified vulnerability (CPU Apr 2025) (CVE-2025-30696)
  * mysql: PS unspecified vulnerability (CPU Apr 2025) (CVE-2025-30705)
  * mysql: Parser unspecified vulnerability (CPU Apr 2025) (CVE-2025-21575)
  * mysql: Options unspecified vulnerability (CPU Apr 2025) (CVE-2025-21579)
  * mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30685)
  * mysql: Components Services unspecified vulnerability (CPU Apr 2025) (CVE-2025-30704)
  * mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-21581)
  * mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30689)
  * mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30695)
  * mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30703)
  * mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30693)
  * mysql: DDL unspecified vulnerability (CPU Apr 2025) (CVE-2025-21584)
  * mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30684)
  * curl: libcurl: WebSocket endless loop (CVE-2025-5399)
  * mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50092)
  * mysql: mysqldump unspecified vulnerability (CPU Jul 2025) (CVE-2025-50081)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50079)
  * mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50077)
  * mysql: DML unspecified vulnerability (CPU Jul 2025) (CVE-2025-50078)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50091)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50101)
  * mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50093)
  * mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50099)
  * mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50085)
  * mysql: Components Services unspecified vulnerability (CPU Jul 2025) (CVE-2025-50086)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50082)
  * mysql: Encryption unspecified vulnerability (CPU Jul 2025) (CVE-2025-50097)
  * mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50104)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50087)
  * mysql: Stored Procedure unspecified vulnerability (CPU Jul 2025) (CVE-2025-50080)
  * mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50088)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50083)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50084)
  * mysql: Thread Pooling unspecified vulnerability (CPU Jul 2025) (CVE-2025-50100)
  * mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50094)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50098)
  * mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50096)
  * mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50102)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

CVE-2024-13176
CVE-2025-21574
CVE-2025-21575
CVE-2025-21577
CVE-2025-21579
CVE-2025-21580
CVE-2025-21581
CVE-2025-21584
CVE-2025-21585
CVE-2025-21588
CVE-2025-30681
CVE-2025-30682
CVE-2025-30683
CVE-2025-30684
CVE-2025-30685
CVE-2025-30687
CVE-2025-30688
CVE-2025-30689
CVE-2025-30693
CVE-2025-30695
CVE-2025-30696
CVE-2025-30699
CVE-2025-30703
CVE-2025-30704
CVE-2025-30705
CVE-2025-30715
CVE-2025-30721
CVE-2025-30722
CVE-2025-50077
CVE-2025-50078
CVE-2025-50079
CVE-2025-50080
CVE-2025-50081
CVE-2025-50082
CVE-2025-50083
CVE-2025-50084
CVE-2025-50085
CVE-2025-50086
CVE-2025-50087
CVE-2025-50088
CVE-2025-50091
CVE-2025-50092
CVE-2025-50093
CVE-2025-50094
CVE-2025-50096
CVE-2025-50097
CVE-2025-50098
CVE-2025-50099
CVE-2025-50100
CVE-2025-50101
CVE-2025-50102
CVE-2025-50104
CVE-2025-5399
RHSA-2025:16046
ALSA-2025:16046

Updated packages listed below:

Architecture	Package	Checksum
aarch64	mysql-8.4.6-1.module_el9.6.0+180+a4e757e5.aarch64.rpm	021a5be0446264c9e7ab6756be112f9e2446ffe74760fc2fc1ba372e09ecca9a
aarch64	mecab-ipadic-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.aarch64.rpm	31e5af0c4a5e89ba13cb458fd92281a77a6bc98b6dbfe6adbdba5f3538433feb
aarch64	mecab-devel-0.996-3.module_el9.6.0+152+8cbce00c.4.aarch64.rpm	484d4d74f37d5795c25880b1dc12f4a58e10e4b9a3d9de464f2cfd4fa853e02a
aarch64	mysql-libs-8.4.6-1.module_el9.6.0+180+a4e757e5.aarch64.rpm	7d1d89d1c6b389206406b44c28924f05708675b16b53d4dfb3d96b686f8f784d
aarch64	mecab-ipadic-EUCJP-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.aarch64.rpm	89bf856f41080bb4333cdfeb7e623d35b5579f52e3d4f9a26280f1f6d82b788e
aarch64	rapidjson-devel-1.1.0-19.module_el9.6.0+152+8cbce00c.aarch64.rpm	957fce0da06a1d8d813e42855ec7242b71db9cd7a772877d46a9380bee744eae
aarch64	mysql-devel-8.4.6-1.module_el9.6.0+180+a4e757e5.aarch64.rpm	b3efcb44a044cee658daabb9bf7437f7b0744352c8a5d4e002984e9bb8602a6a
aarch64	mysql-test-8.4.6-1.module_el9.6.0+180+a4e757e5.aarch64.rpm	c00bd2aa28250e3facd79c74d8bd4e50601231b272daf611cdcdb10173c25ff7
aarch64	mecab-0.996-3.module_el9.6.0+152+8cbce00c.4.aarch64.rpm	c974134c8d9335d62a0ebfe18ff2537e667419a5b85d2289335ed48fef9d8e4d
aarch64	mysql-server-8.4.6-1.module_el9.6.0+180+a4e757e5.aarch64.rpm	d6464d6081355e22334bd74cfe8bd4ecbb8647aa135fbb292e8b6554332a9564
noarch	mysql-errmsg-8.4.6-1.module_el9.6.0+180+a4e757e5.noarch.rpm	321197f9d190ca05280a2668fd97836928925ecf0eea8c2688b8b3c68a7e8264
noarch	mysql-common-8.4.6-1.module_el9.6.0+180+a4e757e5.noarch.rpm	4efc97279a47c73709b3d728fa707714260e15242037235fb0bd9ab6e05edb31
noarch	mysql-test-data-8.4.6-1.module_el9.6.0+180+a4e757e5.noarch.rpm	e1e88dcf6959c62bf9ed1994a84293a3b5d0666380b0ceef5e23c91b3d085b85
noarch	rapidjson-doc-1.1.0-19.module_el9.6.0+152+8cbce00c.noarch.rpm	f8ffc9a3a68b1ff128217cd41887db70007c1f69467c915cb92a8c754102e0d5
ppc64le	rapidjson-devel-1.1.0-19.module_el9.6.0+152+8cbce00c.ppc64le.rpm	44d0157c1725e03706ef3e1db87e9c1033557817715a7b9c53c7eaca8c49714c
ppc64le	mysql-server-8.4.6-1.module_el9.6.0+180+a4e757e5.ppc64le.rpm	5d790ef05dffa196382f24a76207503573824d8eecfbcb4da54f59eb51d14180
ppc64le	mecab-ipadic-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.ppc64le.rpm	8940abdfa5655a91b7ff182c05cee459d8fef8e73dbf2f1a594c7e6bef9a7cdc
ppc64le	mysql-test-8.4.6-1.module_el9.6.0+180+a4e757e5.ppc64le.rpm	aa78cc4fdb4c6333add241f73d74e5a174211da743782d9e39740f1142c07e84
ppc64le	mysql-8.4.6-1.module_el9.6.0+180+a4e757e5.ppc64le.rpm	c311519c615e4357c173808b8d3cb4a6f8e874653357d61e031a1da4d488cc0e
ppc64le	mecab-ipadic-EUCJP-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.ppc64le.rpm	c731998bc6d27b51fb15a399ced5b1913f16a4d7e9f886e9a286b223f11183c6
ppc64le	mecab-0.996-3.module_el9.6.0+152+8cbce00c.4.ppc64le.rpm	c82a91704fe1b0095fcb2d9786b8f27cb202f12fd20b75b0853868b130f6272c
ppc64le	mysql-devel-8.4.6-1.module_el9.6.0+180+a4e757e5.ppc64le.rpm	c9e7d0c7a493c64b0242d58e109ca85d756f0704b2a51a828b1b716ad36e2ac2
ppc64le	mecab-devel-0.996-3.module_el9.6.0+152+8cbce00c.4.ppc64le.rpm	eb0917777164aa13a014a8e91bf7cbb82a452e89d1ab005a18162d1e681aabc3
ppc64le	mysql-libs-8.4.6-1.module_el9.6.0+180+a4e757e5.ppc64le.rpm	f8945073e42e70fc821e8e0d6e2ee1638da6971a01ab69df78823930cdbd014b
s390x	mysql-devel-8.4.6-1.module_el9.6.0+180+a4e757e5.s390x.rpm	1ea43775a7def6359265d4a82924b97d16fb422ea25dbf11205742cff3351250
s390x	mysql-server-8.4.6-1.module_el9.6.0+180+a4e757e5.s390x.rpm	63009b0195e8e3d09ac0294913423e86b7f803fb392f1460ddc140579be14252
s390x	mecab-0.996-3.module_el9.6.0+152+8cbce00c.4.s390x.rpm	69e976d54c4bc862ea946aa1957a4af06ba625136f6734651e78787b4180585a
s390x	mysql-8.4.6-1.module_el9.6.0+180+a4e757e5.s390x.rpm	78610de9fc29fcf1fab0978ab5b6aedc6f7f3fac5e1160246fbcee062e886b90
s390x	mysql-test-8.4.6-1.module_el9.6.0+180+a4e757e5.s390x.rpm	7fd3b032506e0eea88473c0619f11310cbd2b6800b1acd4422a4d4c5ee0af6c9
s390x	rapidjson-devel-1.1.0-19.module_el9.6.0+152+8cbce00c.s390x.rpm	8c0a757ea82924ecf340e621f29cb6d7322ebd996c0b7e05116c51486e2b6c37
s390x	mecab-ipadic-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.s390x.rpm	a6a291c26e1b08f26ceec3afe3bb4650cb21e203ce04cff2350db34cbd12e24d
s390x	mecab-ipadic-EUCJP-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.s390x.rpm	bad50cf06e6ea4327ddfa8063a98361e493a8fe7dcf921be55ba12177dac540e
s390x	mecab-devel-0.996-3.module_el9.6.0+152+8cbce00c.4.s390x.rpm	ce7c078f962fd614387a5a86f7b229eb57758d44e95f0f1ad2cd522019019b61
s390x	mysql-libs-8.4.6-1.module_el9.6.0+180+a4e757e5.s390x.rpm	d4544f4f6c7cabe1b1a998be3e7a95910ead5f5f68bd046e20b23480d8f4cc69
x86_64	mysql-server-8.4.6-1.module_el9.6.0+180+a4e757e5.x86_64.rpm	0f33d9cd220d6d62faad0f0f44b92db8f9126b50ff84aa9e6d45a2b5b0f734b2
x86_64	rapidjson-devel-1.1.0-19.module_el9.6.0+152+8cbce00c.x86_64.rpm	15d11f3dd227603b75ea55ec5e5d58e48a85816370b46beaf974cdd4ecdb74b8
x86_64	mysql-libs-8.4.6-1.module_el9.6.0+180+a4e757e5.x86_64.rpm	394e519ced4be8e4589f42dd9d793d7d3a1293d476a81f7b1f738a94a7d4db22
x86_64	mecab-ipadic-EUCJP-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.x86_64.rpm	5ac91bd521f27ff2898650b81f3c9955990a7c1611d7c24df1109ee306cfe85d
x86_64	mecab-0.996-3.module_el9.6.0+152+8cbce00c.4.x86_64.rpm	67f9944422a6aee33d336ad9718cc8bcdb1ee47386bf22c3b2b482ce8e60f8b7
x86_64	mecab-ipadic-2.7.0.20070801-24.module_el9.6.0+152+8cbce00c.x86_64.rpm	6af7ca5e430c3de27c47755ee182d363a208ee94a4550a502365026a3adef496
x86_64	mysql-test-8.4.6-1.module_el9.6.0+180+a4e757e5.x86_64.rpm	80faed6d4d03862e1d3c11628281faf88e519ac18f2f70219acc91f8dbc34b26
x86_64	mecab-devel-0.996-3.module_el9.6.0+152+8cbce00c.4.x86_64.rpm	cde7f7ad433817f56a1963dc6f951f5ce54fbffa0b81b588ad4b43c5d751b0e9
x86_64	mysql-8.4.6-1.module_el9.6.0+180+a4e757e5.x86_64.rpm	db55c9870a319736cd07c1e700ecf55ec5cc6251dc98e6cef6552a8c3ce87a17
x86_64	mysql-devel-8.4.6-1.module_el9.6.0+180+a4e757e5.x86_64.rpm	e1a13dff2090fc518f53961e7530a0e202d80c8518191d41b062b4df16a13335

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.