ALAS2023-2025-1071

Amazon Linux 2023 Security Advisory: ALAS2023-2025-1071
Advisory Released Date: 2025-07-10
Advisory Updated Date: 2025-07-10
Severity: Medium
Issue Overview:

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Client accessible data as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N). (CVE-2025-30722)


Affected Packages:

mariadb1011


Issue Correction:
Run dnf update mariadb1011 --releasever 2023.8.20250707 to update your system.

New Packages:
aarch64:
    mariadb1011-connect-engine-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-gssapi-server-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-common-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-errmsg-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-server-utils-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-pam-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-cracklib-password-check-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-server-utils-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-sphinx-engine-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-gssapi-server-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-backup-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-pam-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-oqgraph-engine-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-test-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-backup-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-oqgraph-engine-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-server-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-devel-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-connect-engine-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-debugsource-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-sphinx-engine-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-client-utils-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-cracklib-password-check-debuginfo-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-server-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-10.11.13-1.amzn2023.0.1.aarch64
    mariadb1011-test-10.11.13-1.amzn2023.0.1.aarch64

src:
    mariadb1011-10.11.13-1.amzn2023.0.1.src

x86_64:
    mariadb1011-rocksdb-engine-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-gssapi-server-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-pam-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-devel-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-client-utils-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-oqgraph-engine-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-sphinx-engine-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-connect-engine-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-server-utils-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-test-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-cracklib-password-check-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-rocksdb-engine-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-connect-engine-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-sphinx-engine-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-cracklib-password-check-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-backup-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-gssapi-server-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-pam-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-oqgraph-engine-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-server-utils-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-server-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-server-debuginfo-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-errmsg-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-backup-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-common-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-debugsource-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-10.11.13-1.amzn2023.0.1.x86_64
    mariadb1011-test-10.11.13-1.amzn2023.0.1.x86_64

Additional References

Release Notes:  Amazon Linux 2023 Release Notes

Red Hat: CVE-2025-30722

Mitre: CVE-2025-30722