9 Apr
2014
9 Apr
'14
3:25 p.m.
Am 09.04.2014 15:21, schrieb Peter Laursen:
A far as I understand MariaDB uses OpenSSL (unlike Oracle-MySQL that uses YaSSL).
Now what about the heartbleed bug: http://heartbleed.com/
Will all still suported MariaDB versions (5.1, 5.2, 5.3, 5.5 and 10.0 are all still suported I think?) need a release for this bug in OpenSSL?
why should they? update openssl and restart all daemons which are linking the library and consider replace your certificates / private keys if a service using openssl was reachable from the internet that's the idea behind shared libraries