CVE-2026-34304 Affecting mecab-devel package, versions <0:0.996-2.module+el8.10.0+1676+9b4b6e24


Severity

Recommended
0.0
medium
0
10

Based on Rocky Linux security rating.

Threat Intelligence

EPSS
0.32% (24th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-ROCKY8-MECABDEVEL-17342243
  • published16 Jun 2026
  • disclosed21 Apr 2026

Introduced: 21 Apr 2026

CVE-2026-34304  (opens in a new tab)

How to fix?

Upgrade Rocky-Linux:8 mecab-devel to version 0:0.996-2.module+el8.10.0+1676+9b4b6e24 or higher.
This issue was patched in RLSA-2026:25919.

NVD Description

Note: Versions mentioned in the description apply only to the upstream mecab-devel package and not the mecab-devel package as distributed by Rocky-Linux. See How to fix? for Rocky-Linux:8 relevant fixed versions and status.

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVSS Base Scores

version 3.1