ALSA-2025:15699

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/10/ALSA-2025-15699.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2025:15699.json

JSON Data

https://api.test.osv.dev/v1/vulns/ALSA-2025:15699

Related

CVE-2024-13176
CVE-2025-21574
CVE-2025-21575
CVE-2025-21577
CVE-2025-21579
CVE-2025-21580
CVE-2025-21581
CVE-2025-21584
CVE-2025-21585
CVE-2025-21588
CVE-2025-30681
CVE-2025-30682
CVE-2025-30683
CVE-2025-30684
CVE-2025-30685
CVE-2025-30687
CVE-2025-30688
CVE-2025-30689
CVE-2025-30693
CVE-2025-30695
CVE-2025-30696
CVE-2025-30699
CVE-2025-30703
CVE-2025-30704
CVE-2025-30705
CVE-2025-30715
CVE-2025-30721
CVE-2025-30722
CVE-2025-50077
CVE-2025-50078
CVE-2025-50079
CVE-2025-50080
CVE-2025-50081
CVE-2025-50082
CVE-2025-50083
CVE-2025-50084
CVE-2025-50085
CVE-2025-50086
CVE-2025-50087
CVE-2025-50088
CVE-2025-50091
CVE-2025-50092
CVE-2025-50093
CVE-2025-50094
CVE-2025-50096
CVE-2025-50097
CVE-2025-50098
CVE-2025-50099
CVE-2025-50100
CVE-2025-50101
CVE-2025-50102
CVE-2025-50104
CVE-2025-5399

Published

2025-09-11T00:00:00Z

Modified

2025-09-12T10:30:09Z

Summary

Moderate: mysql-selinux and mysql8.4 security update

Details

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files.

Security Fix(es):

openssl: Timing side-channel in ECDSA signature computation (CVE-2024-13176)
mysql: mysqldump unspecified vulnerability (CPU Apr 2025) (CVE-2025-30722)
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30688)
mysql: Stored Procedure unspecified vulnerability (CPU Apr 2025) (CVE-2025-30699)
mysql: UDF unspecified vulnerability (CPU Apr 2025) (CVE-2025-30721)
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30682)
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30683)
mysql: Components Services unspecified vulnerability (CPU Apr 2025) (CVE-2025-30715)
mysql: Parser unspecified vulnerability (CPU Apr 2025) (CVE-2025-21574)
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-21585)
mysql: DML unspecified vulnerability (CPU Apr 2025) (CVE-2025-21588)
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30681)
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-21577)
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30687)
mysql: DML unspecified vulnerability (CPU Apr 2025) (CVE-2025-21580)
mysql: PS unspecified vulnerability (CPU Apr 2025) (CVE-2025-30696)
mysql: PS unspecified vulnerability (CPU Apr 2025) (CVE-2025-30705)
mysql: Parser unspecified vulnerability (CPU Apr 2025) (CVE-2025-21575)
mysql: Options unspecified vulnerability (CPU Apr 2025) (CVE-2025-21579)
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30685)
mysql: Components Services unspecified vulnerability (CPU Apr 2025) (CVE-2025-30704)
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-21581)
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30689)
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30695)
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30703)
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30693)
mysql: DDL unspecified vulnerability (CPU Apr 2025) (CVE-2025-21584)
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30684)
curl: libcurl: WebSocket endless loop (CVE-2025-5399)
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50092)
mysql: mysqldump unspecified vulnerability (CPU Jul 2025) (CVE-2025-50081)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50079)
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50077)
mysql: DML unspecified vulnerability (CPU Jul 2025) (CVE-2025-50078)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50091)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50101)
mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50093)
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50099)
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50085)
mysql: Components Services unspecified vulnerability (CPU Jul 2025) (CVE-2025-50086)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50082)
mysql: Encryption unspecified vulnerability (CPU Jul 2025) (CVE-2025-50097)
mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50104)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50087)
mysql: Stored Procedure unspecified vulnerability (CPU Jul 2025) (CVE-2025-50080)
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50088)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50083)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50084)
mysql: Thread Pooling unspecified vulnerability (CPU Jul 2025) (CVE-2025-50100)
mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50094)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50098)
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50096)
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50102)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:10 / mysql-selinux

Package

Name: mysql-selinux
Purl: pkg:rpm/almalinux/mysql-selinux

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.14-1.el10_0

AlmaLinux:10 / mysql8.4

Package

Name: mysql8.4
Purl: pkg:rpm/almalinux/mysql8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-common

Package

Name: mysql8.4-common
Purl: pkg:rpm/almalinux/mysql8.4-common

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-devel

Package

Name: mysql8.4-devel
Purl: pkg:rpm/almalinux/mysql8.4-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-errmsg

Package

Name: mysql8.4-errmsg
Purl: pkg:rpm/almalinux/mysql8.4-errmsg

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-libs

Package

Name: mysql8.4-libs
Purl: pkg:rpm/almalinux/mysql8.4-libs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-server

Package

Name: mysql8.4-server
Purl: pkg:rpm/almalinux/mysql8.4-server

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-test

Package

Name: mysql8.4-test
Purl: pkg:rpm/almalinux/mysql8.4-test

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0

AlmaLinux:10 / mysql8.4-test-data

Package

Name: mysql8.4-test-data
Purl: pkg:rpm/almalinux/mysql8.4-test-data

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.4.6-2.el10_0