MySQL Forums
Forum List  »  Connector/ODBC

Re: Oracle MySQL Connectors (October 2024 CPU)
Posted by: Bogdan Degtyariov
Date: November 24, 2024 07:58PM

Hi Jarod,

The next CPU should contain information about 8.0.40) receiving the same security updates as 9.1.0. From that moment on the information about 8.0.X will be included the future publications. It is not so much about 32 or 64 bit versions, but the product versions that happen to be 32-bit for 8.0.40.

The patches included in ODBC Driver 8.0.40 cover the following CVE:

CVE-2024-5535
CVE-2024-21262
CVE-2023-45853

There is no separate patch for CVE-2024-6119 because as mentioned in the note on CPU page the patch for CVE-2024-5535 also addresses CVE-2024-6119

Regarding CVE-2024-21272: it is related to Connector/Python. We are clarifying its status at the moment. However, it can be omitted if you are only concerned about ODBC.

--
Best regards,
Bogdan Degtyariov

Options: ReplyQuote


Subject
Written By
Posted
Re: Oracle MySQL Connectors (October 2024 CPU)
November 24, 2024 07:58PM


Sorry, only registered users may post in this forum.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.