[Buildroot] [PATCH 1/1] package/mariadb: bump version to 10.3.13

Peter Korsgaard peter at korsgaard.com
Wed Mar 20 14:42:58 UTC 2019


>>>>> "Ryan" == Ryan Coe <bluemrp9 at gmail.com> writes:

 > Release notes:
 > https://mariadb.com/kb/en/library/mariadb-10313-release-notes/

 > Changelog:
 > https://mariadb.com/kb/en/mariadb-10313-changelog/

 > Fixes the following security vulnerabilities:

 > CVE-2019-2510 - Vulnerability in the MySQL Server component of Oracle MySQL
 > (subcomponent: InnoDB). Supported versions that are affected are 5.7.24 and
 > prior and 8.0.13 and prior. Easily exploitable vulnerability allows high
 > privileged attacker with network access via multiple protocols to compromise
 > MySQL Server. Successful attacks of this vulnerability can result in
 > unauthorized ability to cause a hang or frequently repeatable crash
 > (complete DOS) of MySQL Server.

 > CVE-2019-2537 - Vulnerability in the MySQL Server component of Oracle MySQL
 > (subcomponent: Server: DDL). Supported versions that are affected are 5.6.42
 > and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable
 > vulnerability allows high privileged attacker with network access via
 > multiple protocols to compromise MySQL Server. Successful attacks of this
 > vulnerability can result in unauthorized ability to cause a hang or
 > frequently repeatable crash (complete DOS) of MySQL Server.

 > Note that the hash for README.md changed due to Travis CI and Appveyor CI
 > updates.

Committed after changing subject to make it clear that this is a
security bump, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list