13 Sep
2016
13 Sep
'16
7:17 a.m.
Hi, Alex! On Sep 13, Alex wrote:
From what i noticed , centos6 hosts that were on mysql 5.6 , or mariadb 10.1.17 is using the mysqld_safe. Upgraded centos7 hosts , and mysqld_safe is no longer a running process for mariadb 10.1.17.
Would this mean that only the hosts that do not run the mysqld_safe are safe ?
No, that could be a coincidence. It is true that the necessary part of the exploit is to run mysqld_safe. If you use systemd - this particular exploit won't work. But the vulnerability was fixed in 10.1.17, so even if you'd run mysqld_safe in 10.1.17 - you would've been safe. Regards, Sergei Chief Architect MariaDB and security@mariadb.org