Discussion:
MySQL 8.0 package
Tilly
2021-05-24 09:56:34 UTC
Permalink
Dear team,
I noticed that the current mysql80-server-8.0.23_1 is due to
vulnerabilities for quite some time.

mysql80-server-8.0.23 is vulnerable:
  MySQL -- Multiple vulnerabilities
  CVE: CVE-2021-2232
  CVE: CVE-2021-2308
  CVE: CVE-2021-2301
  CVE: CVE-2021-2162
  CVE: CVE-2021-2171
  CVE: CVE-2021-2174

Have notified the package maintainer, but so far no response read yet.

Can you tell us when the package update will be released?
Thanks and keep up the good work.

Best, Tilly
Tilly
2021-05-27 12:27:08 UTC
Permalink
Post by Tilly
Dear team,
I noticed that the current mysql80-server-8.0.23_1 is due to
vulnerabilities for quite some time.
pkg update received, thanks for this.

Best, Tilly
Benjamin Connelly
2021-06-03 16:47:12 UTC
Permalink
Post by Tilly
Post by Tilly
Dear team,
I noticed that the current mysql80-server-8.0.23_1 is due to vulnerabilities for quite some time.
pkg update received, thanks for this.
mysql57-server port has the patched version: 5.7.34
but the quarterly pkg repo is still on 5.7.33. . . Can anybody help get the patched version built into the quarterly pkg repo?

Thanks in advance.

Ben

Loading...