{"id":"RLSA-2025:1671","summary":"Important: mysql security update","details":"MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.\n\nSecurity Fix(es):\n\n* openssl: SSL_select_next_proto buffer overread (CVE-2024-5535)\n\n* krb5: GSS message token handling (CVE-2024-37371)\n\n* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)\n\n* mysql: Thread Pooling unspecified vulnerability (CPU Oct 2024) (CVE-2024-21238)\n\n* mysql: X Plugin unspecified vulnerability (CPU Oct 2024) (CVE-2024-21196)\n\n* mysql: Optimizer unspecified vulnerability (CPU Oct 2024) (CVE-2024-21241)\n\n* mysql: Client programs unspecified vulnerability (CPU Oct 2024) (CVE-2024-21231)\n\n* mysql: Information Schema unspecified vulnerability (CPU Oct 2024) (CVE-2024-21197)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2024) (CVE-2024-21218)\n\n* mysql: Optimizer unspecified vulnerability (CPU Oct 2024) (CVE-2024-21201)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2024) (CVE-2024-21236)\n\n* mysql: Group Replication GCS unspecified vulnerability (CPU Oct 2024) (CVE-2024-21237)\n\n* mysql: FTS unspecified vulnerability (CPU Oct 2024) (CVE-2024-21203)\n\n* mysql: Health Monitor unspecified vulnerability (CPU Oct 2024) (CVE-2024-21212)\n\n* mysql: DML unspecified vulnerability (CPU Oct 2024) (CVE-2024-21219)\n\n* mysql: Optimizer unspecified vulnerability (CPU Oct 2024) (CVE-2024-21230)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2024) (CVE-2024-21213)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2024) (CVE-2024-21194)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2024) (CVE-2024-21199)\n\n* mysql: PS unspecified vulnerability (CPU Oct 2024) (CVE-2024-21193)\n\n* mysql: DDL unspecified vulnerability (CPU Oct 2024) (CVE-2024-21198)\n\n* mysql: mysqldump unspecified vulnerability (CPU Oct 2024) (CVE-2024-21247)\n\n* mysql: InnoDB unspecified vulnerability (CPU Oct 2024) (CVE-2024-21239)\n\n* curl: curl netrc password leak (CVE-2024-11053)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2025) (CVE-2025-21497)\n\n* mysql: MySQL Server Options Vulnerability (CVE-2025-21520)\n\n* mysql: High Privilege Denial of Service Vulnerability in MySQL Server (CVE-2025-21490)\n\n* mysql: Information Schema unspecified vulnerability (CPU Jan 2025) (CVE-2025-21529)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2025) (CVE-2025-21531)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2025) (CVE-2025-21504)\n\n* mysql: Privileges unspecified vulnerability (CPU Jan 2025) (CVE-2025-21540)\n\n* mysql: MySQL Server InnoDB Denial of Service and Unauthorized Data Modification Vulnerability (CVE-2025-21555)\n\n* mysql: Packaging unspecified vulnerability (CPU Jan 2025) (CVE-2025-21543)\n\n* mysql: MySQL Server InnoDB Denial of Service and Unauthorized Data Modification Vulnerability (CVE-2025-21491)\n\n* mysql: DDL unspecified vulnerability (CPU Jan 2025) (CVE-2025-21525)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2025) (CVE-2025-21536)\n\n* mysql: Thread Pooling unspecified vulnerability (CPU Jan 2025) (CVE-2025-21521)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2025) (CVE-2025-21501)\n\n* mysql: Performance Schema unspecified vulnerability (CPU Jan 2025) (CVE-2025-21534)\n\n* mysql: Privileges unspecified vulnerability (CPU Jan 2025) (CVE-2025-21494)\n\n* mysql: Privileges unspecified vulnerability (CPU Jan 2025) (CVE-2025-21519)\n\n* mysql: Parser unspecified vulnerability (CPU Jan 2025) (CVE-2025-21522)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2025) (CVE-2025-21503)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2025) (CVE-2025-21518)\n\n* mysql: MySQL Server InnoDB Denial of Service and Unauthorized Data Modification Vulnerability (CVE-2025-21559)\n\n* mysql: Privilege Misuse in MySQL Server Security Component (CVE-2025-21546)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2025) (CVE-2025-21500)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2025) (CVE-2025-21523)\n\n* mysql: Components Services unspecified vulnerability (CPU Jan 2025) (CVE-2025-21505)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.","modified":"2025-10-09T06:18:53.285992Z","published":"2025-03-17T20:16:45.510776Z","upstream":["CVE-2024-11053","CVE-2024-21193","CVE-2024-21194","CVE-2024-21196","CVE-2024-21197","CVE-2024-21198","CVE-2024-21199","CVE-2024-21201","CVE-2024-21203","CVE-2024-21212","CVE-2024-21213","CVE-2024-21218","CVE-2024-21219","CVE-2024-21230","CVE-2024-21231","CVE-2024-21236","CVE-2024-21237","CVE-2024-21238","CVE-2024-21239","CVE-2024-21241","CVE-2024-21247","CVE-2024-37371","CVE-2024-5535","CVE-2024-7264","CVE-2025-21490","CVE-2025-21491","CVE-2025-21494","CVE-2025-21497","CVE-2025-21500","CVE-2025-21501","CVE-2025-21503","CVE-2025-21504","CVE-2025-21505","CVE-2025-21518","CVE-2025-21519","CVE-2025-21520","CVE-2025-21521","CVE-2025-21522","CVE-2025-21523","CVE-2025-21525","CVE-2025-21529","CVE-2025-21531","CVE-2025-21534","CVE-2025-21536","CVE-2025-21540","CVE-2025-21543","CVE-2025-21546","CVE-2025-21555","CVE-2025-21559"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2025:1671"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2294581"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2294676"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2301888"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318857"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318858"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318870"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318873"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318874"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318876"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318882"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318883"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318884"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318885"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318886"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318897"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318900"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318905"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318914"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318922"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318923"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318925"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318926"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2318927"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2331191"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339218"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339220"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339221"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339226"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339231"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339236"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339238"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339243"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339247"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339252"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339259"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339266"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339270"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339271"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339275"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339277"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339281"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339284"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339291"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339293"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339295"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339299"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339300"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339304"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2339305"}],"affected":[{"package":{"name":"mysql","ecosystem":"Rocky Linux:9","purl":"pkg:rpm/rocky-linux/mysql?distro=rocky-linux-9&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.0.41-2.el9_5"}],"database_specific":{"yum_repository":"CRB"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2025:1671.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}