{"schema_version": "1.7.0", "id": "RLSA-2026:6391", "modified": "2026-04-02T00:08:51.944089Z", "published": "2026-04-02T00:01:11.507303Z", "upstream": ["CVE-2026-21936", "CVE-2026-21937", "CVE-2026-21941", "CVE-2026-21948", "CVE-2026-21964", "CVE-2026-21968"], "summary": "Moderate: mysql:8.4 security update", "details": "MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.\n\nSecurity Fix(es):\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21941)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21948)\n\n* mysql: InnoDB unspecified vulnerability (CPU Jan 2026) (CVE-2026-21936)\n\n* mysql: Optimizer unspecified vulnerability (CPU Jan 2026) (CVE-2026-21968)\n\n* mysql: DDL unspecified vulnerability (CPU Jan 2026) (CVE-2026-21937)\n\n* mysql: Thread Pooling unspecified vulnerability (CPU Jan 2026) (CVE-2026-21964)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "severity": [{"type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}], "affected": [{"package": {"ecosystem": "Rocky Linux:8", "name": "mecab", "purl": "pkg:rpm/rocky-linux/mecab?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.996-2.module+el8.10.0+1937+28fbbc83"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "mecab", "purl": "pkg:rpm/rocky-linux/mecab?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.996-2.module+el8.10.0+1676+9b4b6e24"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "mecab", "purl": "pkg:rpm/rocky-linux/mecab?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.996-2.module+el8.10.0+2091+db4d14f6"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "mecab-ipadic", "purl": "pkg:rpm/rocky-linux/mecab-ipadic?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:2.7.0.20070801-17.module+el8.10.0+1937+28fbbc83"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "mecab-ipadic", "purl": "pkg:rpm/rocky-linux/mecab-ipadic?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6"}], "database_specific": {"yum_repository": "AppStream"}}]}], "references": [{"type": "ADVISORY", "url": "https://errata.rockylinux.org/RLSA-2026:6391"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431384"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431385"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431402"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431409"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431413"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431431"}], "credits": [{"name": "Rocky Enterprise Software Foundation"}, {"name": "Red Hat"}]}