Context Navigation

← Previous Ticket
Next Ticket →

#16103 closed enhancement (fixed)

mariadb-10.6.7

Reported by:	Douglas R. Reno	Owned by:	Douglas R. Reno
Priority:	elevated	Milestone:	11.1
Component:	BOOK	Version:	git
Severity:	normal	Keywords:
Cc:

Description

New point version found at Arch, but not on their homepage. I did find it here: https://mariadb.com/resources/blog/mariadb-q1-2022-maintenance-releases-2/

Change History (5)

comment:1 by Douglas R. Reno, 2 years ago

Priority:	normal → elevated

Release notes mention security fixes

comment:2 by Douglas R. Reno, 2 years ago

Owner:	changed from blfs-book to Douglas R. Reno
Status:	new → assigned

comment:3 by Douglas R. Reno, 2 years ago

10.6.7

Thanks, and enjoy MariaDB!

    This release fixes a blocking problem with the MariaDB 10.6.6 release when manually running mariadb-upgrade. (MDEV-27789)
    See MariaDB 10.6.6 for other changes since the previous release. 

InnoDB

    Set innodb_change_buffering=none by default (MDEV-27734) 

Security

    Fixes for the following security vulnerabilities:
        CVE-2021-46665
        CVE-2021-46664
        CVE-2021-46661
        CVE-2021-46668
        CVE-2021-46663

Back to 10.6.6 we go...

Notable Items
InnoDB

    --skip-symbolic-links does not disallow .isl file creation (MDEV-26870)
    Indexed CHAR columns are broken with NO_PAD collations (MDEV-25440)
    insert-intention lock conflicts with waiting ORDINARY lock (MDEV-27025)
    Crash recovery improvements (MDEV-26784, MDEV-27022, MDEV-27183, MDEV-27610)
    mariabackup skips valid .ibd file (MDEV-26326)
    Allow seamless upgrade despite ROW_FORMAT=COMPRESSED (MDEV-27736) 

Galera

    Galera updated to 26.4.11
    Galera SST scripts should use ssl_capath (not ssl_ca) for CA directory (MDEV-27181)
    Alter Sequence do not replicate to another nodes with in Galera Cluster (MDEV-19353)
    Galera crash - Assertion. Possible parallel writeset problem (MDEV-26803)
    CREATE TABLE with FOREIGN KEY constraint fails to apply in parallel (MDEV-27276)
    Galera cluster node consider old server_id value even after modification of server_id [wsrep_gtid_mode=ON] (MDEV-26223) 

Replication

    Seconds behind master corrected from artificial spikes at relay-log rotation (MDEV-16091)
    Statement rollback in binlog when transaction creates or drop temporary table is set right (MDEV-26833)
    CREATE-or-REPLACE SEQUENCE is made to binlog with the DDL flag to stabilize its parallel execution on slave (MDEV-27365) 

Packaging & Misc

    prohibition running two upgrades in parallel (MDEV-27068, MDEV-27107, MDEV-27279)
    As per the MariaDB Deprecation Policy, this will be the last release of MariaDB 10.6 for Ubuntu 21.04 Hirsute, CentOS 8, and Fedora 33
    mariadb_repo_setup script updated to version 2022-02-08, with the following fixes and enhancements:
        Default location of the script has been moved to: https://r.mariadb.com/downloads/mariadb_repo_setup (old location is deprecated, but still works)
        The GPG keyring file, used with Debian and Ubuntu repositories, has moved to: https://supplychain.mariadb.com/mariadb-keyring-2019.gpg and the checksum for the file can be found at: https://supplychain.mariadb.com/mariadb-keyring-2019.gpg.sha256
        Support for RHEL and SLES aarch64 repositories added
        New function added to verify that the MariaDB Server version, if specified on the command line, follows the correct naming and that a corresponding repository actually exists.
        Fixed repository pinning for Ubuntu and Debian repositories
        MariaDB Server 10.7 is now the default server version 

Docker Library

    Faster initialization by disabling binary logging during initialization (MDEV-27074)
    mysql_upgrade can be run if needed using the environment variable MARIADB_AUTO_UPGRADE=1 (MDEV-25670)
    A healthcheck script /usr/local/bin/healthcheck.sh is installed in the container with various checking options (MDEV-25434)
    mysql@localhost user is created with the environment variable MARIADB_MYSQL_LOCALHOST_USER=1 and additional grants (beyond USAGE) with MARIADB_MYSQL_LOCALHOST_GRANTS={global grant list} (MDEV-27732)
    skip innodb buffer pool loads/dumps on temporary startup/shutdown for faster startup/initialization, and accurate "healthcheck.sh --innodb_buffer_pool_loaded"
    change group ownership on datadir/socket dir (issue #401)
    log note about note on Securing system users, mysql_secure_installation not required (reddit suggestion)
    speed up Docker Library initialization of timezones (MDEV-27608, MDEV-23326)
    MariaDB names of executable programs and scripts used instead of historical mysql ones 

Security

    Fixes for the following security vulnerabilities:
        CVE-2022-24052
        CVE-2022-24051
        CVE-2022-24050
        CVE-2022-24048
        CVE-2021-46659

That's 10 CVEs total

comment:4 by Douglas R. Reno, 2 years ago

The openssl3 patch has not been applied upstream, and needs to be rediffed

comment:5 by Douglas R. Reno, 2 years ago

Resolution:	→ fixed
Status:	assigned → closed

Fixed at 17817c82bb47cc48099a912e32ad98889c4338a7

Note: See TracTickets for help on using tickets.

Download in other formats: