{"schema_version": "1.7.0", "id": "RLSA-2026:5640", "modified": "2026-03-24T18:09:23.914015Z", "published": "2026-03-24T18:03:46.961393Z", "upstream": ["CVE-2026-21936", "CVE-2026-21937", "CVE-2026-21941", "CVE-2026-21948", "CVE-2026-21964", "CVE-2026-21968"], "summary": "Moderate: mysql:8.4 security update", "details": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.\n\nSecurity Fix(es):\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21941)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21948)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2026) (CVE-2026-21936)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21968)\n\n* mysql: DDL unspecified vulnerability (CPU Jan 2026) (CVE-2026-21937)\n\n* mysql: Thread Pooling unspecified vulnerability (CPU Jan 2026) (CVE-2026-21964)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "severity": [{"type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}], "affected": [{"package": {"ecosystem": "Rocky Linux:9", "name": "mecab", "purl": "pkg:rpm/rocky-linux/mecab?distro=rocky-linux-9&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.996-3.module+el9.7.0+40027+0df0d4e0.4"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:9", "name": "mecab-ipadic", "purl": "pkg:rpm/rocky-linux/mecab-ipadic?distro=rocky-linux-9&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:2.7.0.20070801-24.module+el9.7.0+40027+0df0d4e0"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:9", "name": "rapidjson", "purl": "pkg:rpm/rocky-linux/rapidjson?distro=rocky-linux-9&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:1.1.0-19.module+el9.7.0+40027+0df0d4e0"}], "database_specific": {"yum_repository": "AppStream"}}]}], "references": [{"type": "ADVISORY", "url": "https://errata.rockylinux.org/RLSA-2026:5640"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431384"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431385"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431402"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431409"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431413"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431431"}], "credits": [{"name": "Rocky Enterprise Software Foundation"}, {"name": "Red Hat"}]}