{"id":"RHSA-2026:25052","summary":"Red Hat Security Advisory: mysql:8.4 security update","modified":"2026-06-11T10:16:53.056924856Z","published":"2026-06-11T10:09:06Z","upstream":["CVE-2026-21998","CVE-2026-22001","CVE-2026-22002","CVE-2026-22004","CVE-2026-22005","CVE-2026-22009","CVE-2026-22015","CVE-2026-22017","CVE-2026-34270","CVE-2026-34271","CVE-2026-34276","CVE-2026-34303","CVE-2026-34304","CVE-2026-34308","CVE-2026-35236","CVE-2026-35237","CVE-2026-35238","CVE-2026-35239","CVE-2026-35240"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:25052"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460274"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460275"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460276"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460279"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460295"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460312"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460315"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460316"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460323"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460324"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460325"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460326"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460329"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460335"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460342"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460344"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460348"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460356"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2460358"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/RHEL-153202"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_25052.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-21998"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-21998"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-21998"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpuapr2026.html"},{"type":"ARTICLE","url":"https://www.oracle.com/security-alerts/cpuapr2026.html#AppendixMSQL"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22001"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22001"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22001"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22002"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22002"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22002"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22004"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22004"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22004"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22005"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22005"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22005"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22009"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22009"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22009"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22015"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22015"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22015"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-22017"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-22017"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-22017"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-34270"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-34270"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-34270"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-34271"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-34271"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-34271"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-34276"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-34276"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-34276"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-34303"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-34303"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-34303"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-34304"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-34304"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-34304"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-34308"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-34308"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-34308"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-35236"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-35236"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35236"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-35237"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-35237"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35237"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-35238"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-35238"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35238"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-35239"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-35239"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35239"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-35240"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-35240"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35240"}],"affected":[{"package":{"name":"mecab","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mecab"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.996-3.module+el9.8.0+24348+9b27f387.4"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mecab-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mecab-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.996-3.module+el9.8.0+24348+9b27f387.4"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mecab-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mecab-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.996-3.module+el9.8.0+24348+9b27f387.4"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mecab-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mecab-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.996-3.module+el9.8.0+24348+9b27f387.4"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mecab-ipadic","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mecab-ipadic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.0.20070801-24.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mecab-ipadic-EUCJP","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mecab-ipadic-EUCJP"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.0.20070801-24.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-common","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-devel-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-errmsg","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-errmsg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-libs","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-server","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-server-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-test","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-test-data","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-test-data"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"mysql-test-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/mysql-test-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.4.9-1.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"perl-DBD-MySQL","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/perl-DBD-MySQL"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.053-3.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"perl-DBD-MySQL-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/perl-DBD-MySQL-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.053-3.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"perl-DBD-MySQL-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/perl-DBD-MySQL-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.053-3.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"rapidjson","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/rapidjson"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.0-19.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"rapidjson-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/rapidjson-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.0-19.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}},{"package":{"name":"rapidjson-doc","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/rapidjson-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.0-19.module+el9.8.0+24348+9b27f387"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:25052.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}