Bug 2360700

Summary: CVE-2025-21574 CVE-2025-21575 CVE-2025-21577 CVE-2025-21579 CVE-2025-21580 CVE-2025-21581 CVE-2025-21584 CVE-2025-21585 CVE-2025-30681 CVE-2025-30682 CVE-2025-30683 CVE-2025-30684 CVE-2025-30685 CVE-2025-30687 ... mysql8.0: various flaws [fedora-all]
Product: [Fedora] Fedora Reporter: Michal Findra <mfindra>
Component: mysql8.0Assignee: Pavol Sloboda <psloboda>
Status: CLOSED RAWHIDE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 42CC: fjanus, ljavorsk, mcascell, mschorm, zmiklank
Target Milestone: ---Keywords: Security, SecurityTracking
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: {"flaws": ["fcecb01c-f373-4c5f-ac78-000d6eee4724", "f674980c-6597-4956-8077-5da9814a2331", "df66806c-3163-4559-aa4c-267c234387bc", "93ce9ed9-0f6f-4929-949c-74f78a75ae65", "9ef3bd6c-236b-470b-b34f-c46d1d37a073", "aa933259-1ea2-4351-b315-6b5c953225b5", "844a2b6e-4661-437b-b18e-ad2c82d99791", "02539667-9495-4c42-8c0c-1f3a469eee84", "1f0a2520-39da-4c89-8ef3-b67033d035a6", "6868ad5a-5010-4833-9ff0-50eea61f604f", "659d34a6-9ba0-4555-ad22-0b10630ff22a", "0bf602bb-0138-49e0-8742-1dcb67ae3b08", "ae7fe10a-e038-41da-90a4-b1808816c311", "5ea5ee0b-cb43-42c4-b007-73828454c39e", "daa76f42-fda0-4839-98c0-1ff52075c550", "57f92c0f-e097-48a3-a9bc-08be486f12c1", "c9d8c791-16e2-4fef-8664-32ea3fd9fd09", "b6e5fbf0-9941-459d-b0de-6b1ed6fca7e7", "af1c171a-ff39-4753-9c3e-9be4b20487a2", "f0439344-9bd6-4a00-befd-ebc68f2fd987", "aad2dc16-f05d-47e8-9260-2a434281bbb6", "068d7138-7a35-443f-b2ef-61c5ca560b8c", "f726bff4-efc8-4e91-b466-7bb2e932a321", "afabe52f-951f-46f8-b0ad-195da1d32e23", "ec69511b-8c37-486b-8227-5a2802b4c1d5", "bc81aff7-e8bf-4b81-8d8d-04864dfdae27"]}
Fixed In Version: Doc Type: ---
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2025-05-19 14:49:17 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2333871, 2338999, 2359885, 2359888, 2359892, 2359894, 2359895, 2359899, 2359900, 2359902, 2359903, 2359918, 2359920, 2359924, 2359928, 2359930, 2359932, 2359934, 2359938, 2359940, 2359943, 2359944, 2359945, 2359947, 2359950, 2359963, 2359964, 2359972    

Description Michal Findra 2025-04-17 14:15:26 UTC 
More information about these security flaws is available in the following bugs:

https://bugzilla.redhat.com/show_bug.cgi?id=2359902
https://bugzilla.redhat.com/show_bug.cgi?id=2359934
https://bugzilla.redhat.com/show_bug.cgi?id=2359920
https://bugzilla.redhat.com/show_bug.cgi?id=2359938
https://bugzilla.redhat.com/show_bug.cgi?id=2359928
https://bugzilla.redhat.com/show_bug.cgi?id=2359944
https://bugzilla.redhat.com/show_bug.cgi?id=2359964
https://bugzilla.redhat.com/show_bug.cgi?id=2359903
https://bugzilla.redhat.com/show_bug.cgi?id=2359918
https://bugzilla.redhat.com/show_bug.cgi?id=2359895
https://bugzilla.redhat.com/show_bug.cgi?id=2359899
https://bugzilla.redhat.com/show_bug.cgi?id=2359972
https://bugzilla.redhat.com/show_bug.cgi?id=2359940
https://bugzilla.redhat.com/show_bug.cgi?id=2359924
https://bugzilla.redhat.com/show_bug.cgi?id=2359888
https://bugzilla.redhat.com/show_bug.cgi?id=2359945
https://bugzilla.redhat.com/show_bug.cgi?id=2359963
https://bugzilla.redhat.com/show_bug.cgi?id=2359947
https://bugzilla.redhat.com/show_bug.cgi?id=2359930
https://bugzilla.redhat.com/show_bug.cgi?id=2359892
https://bugzilla.redhat.com/show_bug.cgi?id=2359950
https://bugzilla.redhat.com/show_bug.cgi?id=2359943
https://bugzilla.redhat.com/show_bug.cgi?id=2359932
https://bugzilla.redhat.com/show_bug.cgi?id=2359900
https://bugzilla.redhat.com/show_bug.cgi?id=2359894
https://bugzilla.redhat.com/show_bug.cgi?id=2359885

Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Comment 1 Mauro Matteo Cascella 2025-04-22 14:54:35 UTC 
This tracking bug is for CVEs fixed upstream in MySQL 8.0.42 (Oracle CPU Apr 2025):
https://www.oracle.com/security-alerts/cpuapr2025.html#AppendixMSQL
Comment 2 Michal Schorm 2025-05-19 14:49:17 UTC 
https://bodhi.fedoraproject.org/updates/FEDORA-2025-138abd246b