{"id":"ALSA-2026:0136","summary":"Important: mariadb10.11 security update","details":"MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon (mariadbd) and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs and utilities.  \n\nSecurity Fix(es):  \n\n  * mysql: High Privilege Denial of Service Vulnerability in MySQL Server (CVE-2025-21490)\n  * mariadb: MariaDB Server Crash Due to Empty Backtrace Log (CVE-2023-52969)\n  * mariadb: MariaDB Server Crash (CVE-2023-52971)\n  * mariadb: MariaDB Server Crash via Item_direct_view_ref (CVE-2023-52970)\n  * mysql: mysqldump unspecified vulnerability (CPU Apr 2025) (CVE-2025-30722)\n  * mysql: InnoDB unspecified vulnerability (CPU Apr 2025) (CVE-2025-30693)\n  * mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation (CVE-2025-13699)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n","modified":"2026-01-30T00:53:42.448787Z","published":"2026-01-06T00:00:00Z","related":["CVE-2023-52969","CVE-2023-52970","CVE-2023-52971","CVE-2025-13699","CVE-2025-21490","CVE-2025-30693","CVE-2025-30722"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:0136"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-52969"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-52970"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-52971"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-13699"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-21490"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-30693"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-30722"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2339221"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2350916"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2350917"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2350918"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2359885"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2359963"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2417693"},{"type":"ADVISORY","url":"https://errata.almalinux.org/10/ALSA-2026-0136.html"}],"affected":[{"package":{"name":"mariadb","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-backup","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-client-utils","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-client-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-common","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-devel","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-embedded","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-embedded"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-embedded-devel","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-embedded-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-errmsg","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-gssapi-server","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-gssapi-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-oqgraph-engine","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-oqgraph-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-pam","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-pam"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-server","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-server-galera","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-server-galera"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-server-utils","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-server-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}},{"package":{"name":"mariadb-test","ecosystem":"AlmaLinux:10","purl":"pkg:rpm/almalinux/mariadb-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3:10.11.15-1.el10_1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:0136.json"}}],"schema_version":"1.7.3"}