RLSA-2026:0136

MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon (mariadbd) and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs and utilities.

Security Fix(es):

• mysql: High Privilege Denial of Service Vulnerability in MySQL Server (CVE-2025-21490)

• mariadb: MariaDB Server Crash Due to Empty Backtrace Log (CVE-2023-52969)

• mariadb: MariaDB Server Crash (CVE-2023-52971)

• mariadb: MariaDB Server Crash via Itemdirectview_ref (CVE-2023-52970)

• mysql: mysqldump unspecified vulnerability (CPU Apr 2025) (CVE-2025-30722)

• mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30693)

• mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation (CVE-2025-13699)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.