Описание
Moderate: mysql-selinux and mysql8.4 security update
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files.
Security Fix(es):
-
openssl: Timing side-channel in ECDSA signature computation (CVE-2024-13176)
-
mysql: mysqldump unspecified vulnerability (CPU Apr 2025) (CVE-2025-30722)
-
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30688)
-
mysql: Stored Procedure unspecified vulnerability (CPU Apr 2025) (CVE-2025-30699)
-
mysql: UDF unspecified vulnerability (CPU Apr 2025) (CVE-2025-30721)
-
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30682)
-
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30683)
-
mysql: Components Services unspecified vulnerability (CPU Apr 2025) (CVE-2025-30715)
-
mysql: Parser unspecified vulnerability (CPU Apr 2025) (CVE-2025-21574)
-
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-21585)
-
mysql: DML unspecified vulnerability (CPU Apr 2025) (CVE-2025-21588)
-
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30681)
-
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-21577)
-
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30687)
-
mysql: DML unspecified vulnerability (CPU Apr 2025) (CVE-2025-21580)
-
mysql: PS unspecified vulnerability (CPU Apr 2025) (CVE-2025-30696)
-
mysql: PS unspecified vulnerability (CPU Apr 2025) (CVE-2025-30705)
-
mysql: Parser unspecified vulnerability (CPU Apr 2025) (CVE-2025-21575)
-
mysql: Options unspecified vulnerability (CPU Apr 2025) (CVE-2025-21579)
-
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30685)
-
mysql: Components Services unspecified vulnerability (CPU Apr 2025) (CVE-2025-30704)
-
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-21581)
-
mysql: Optimizer unspecified vulnerability (CPU Apr 2025) (CVE-2025-30689)
-
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30695)
-
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30703)
-
mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30693)
-
mysql: DDL unspecified vulnerability (CPU Apr 2025) (CVE-2025-21584)
-
mysql: Replication unspecified vulnerability (CPU Apr 2025) (CVE-2025-30684)
-
curl: libcurl: WebSocket endless loop (CVE-2025-5399)
-
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50092)
-
mysql: mysqldump unspecified vulnerability (CPU Jul 2025) (CVE-2025-50081)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50079)
-
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50077)
-
mysql: DML unspecified vulnerability (CPU Jul 2025) (CVE-2025-50078)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50091)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50101)
-
mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50093)
-
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50099)
-
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50085)
-
mysql: Components Services unspecified vulnerability (CPU Jul 2025) (CVE-2025-50086)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50082)
-
mysql: Encryption unspecified vulnerability (CPU Jul 2025) (CVE-2025-50097)
-
mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50104)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50087)
-
mysql: Stored Procedure unspecified vulnerability (CPU Jul 2025) (CVE-2025-50080)
-
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50088)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50083)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50084)
-
mysql: Thread Pooling unspecified vulnerability (CPU Jul 2025) (CVE-2025-50100)
-
mysql: DDL unspecified vulnerability (CPU Jul 2025) (CVE-2025-50094)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50098)
-
mysql: InnoDB unspecified vulnerability (CPU Jul 2025) (CVE-2025-50096)
-
mysql: Optimizer unspecified vulnerability (CPU Jul 2025) (CVE-2025-50102)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Затронутые продукты
Rocky Linux 10
Связанные CVE
Ссылки на источники
Исправления
- Red Hat - 2338999
- Red Hat - 2359885
- Red Hat - 2359888
- Red Hat - 2359892
- Red Hat - 2359894
- Red Hat - 2359895
- Red Hat - 2359899
- Red Hat - 2359900
- Red Hat - 2359902
- Red Hat - 2359903
- Red Hat - 2359911
- Red Hat - 2359918
- Red Hat - 2359920
- Red Hat - 2359924
- Red Hat - 2359928
- Red Hat - 2359930
- Red Hat - 2359932
- Red Hat - 2359934
- Red Hat - 2359938
- Red Hat - 2359940
Связанные уязвимости
ELSA-2025-16046: mysql:8.4 security update (MODERATE)
ELSA-2025-15699: mysql-selinux and mysql8.4 security update (MODERATE)
Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDSA signature computations could allow recovering the private key by an attacker. However, measuring the timing would require either local access to the signing application or a very fast network connection with low latency. There is a timing signal of around 300 nanoseconds when the top word of the inverted ECDSA nonce value is zero. This can happen with significant probability only for some of the supported elliptic curves. In particular the NIST P-521 curve is affected. To be able to measure this leak, the attacker process must either be located in the same physical computer or must have a very fast network connection with low latency. For that reason the severity of this vulnerability is Low. The FIPS modules in 3.4, 3.3, 3.2, 3.1 and 3.0 are affected by this issue.