MariaDB 5.5.29, 5.3.12, 5.2.14, 5.1.67
MariaDB 项目发布了多个版本分支的更新,包括:
- MariaDB 5.5.29 — Release Notes, Changelog, Downloads
- MariaDB 5.3.12 — Release Notes, Changelog, Downloads
- MariaDB 5.2.14 — Release Notes, Changelog, Downloads
- MariaDB 5.1.67 — Release Notes, Changelog, Downloads
这些版本都是 bugfix 版本,同时修复了以下安全漏洞:
- A buffer overflow that can cause a server crash or arbitrary code execution (a variant of CVE-2012-5611)
- CVE-2012-5627/MDEV-3915 fast password brute-forcing using the “change user” command
- CVE-2012-5615/MDEV-3909 information leakage about existing user accounts via the protocol handshake
- fixes for DoS attacks – crashes and server lockups
- These releases of MariaDB also include all applicable upstream security fixes from MySQL, such as fix for a CVE-2012-5612/MDEV-3908 and other crashes.
详情请看 MariaDB 官方博客。
