MariaDB security vulnerabilities

To: debian-lts <debian-lts@lists.debian.org>
Cc: otto@debian.org
Subject: MariaDB security vulnerabilities
From: Markus Koschany <apo@debian.org>
Date: Mon, 14 Feb 2022 13:04:05 +0100
Message-id: <[🔎] ccf3e0c1ebeb1c84e4109afa03cee0d1aedf4661.camel@debian.org>

Hello,

Just a heads-up. New CVE have been reported for MariaDB 10.3. It is likely that
10.1 in Stretch is affected as well. Otto Kekäläinen (maintainer) is currently
investigating if it is feasible to backport a newer MariaDB version to Stretch
because 10.1 is no longer supported upstream. Do we have any past experiences
how to handle MySQL/MariaDB updates if they are no longer supported?

Regards,

Markus

[1] https://security-tracker.debian.org/tracker/source-package/mariadb-10.3
[2] https://security-tracker.debian.org/tracker/source-package/mariadb-10.1

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: MariaDB security vulnerabilities
  - From: Otto Kekäläinen <otto@debian.org>

Prev by Date: (E)LTS report for January
Next by Date: Regionales Landesamt für Schule und Bildung Braunschweig
Previous by thread: (E)LTS report for January
Next by thread: Re: MariaDB security vulnerabilities
Index(es):
- Date
- Thread