[Bug 263591] databases/mysql57-server:

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 26 Apr 2022 17:59:40 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=263591

            Bug ID: 263591
           Summary: databases/mysql57-server:
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: joneum@FreeBSD.org
          Reporter: jcfyecrayz@liamekaens.com
             Flags: maintainer-feedback?(joneum@FreeBSD.org)
          Assignee: joneum@FreeBSD.org

According to
https://www.oracle.com/us/support/library/lifetime-support-technology-069183.pdf,
mysql 5.7 is EOL in Oct 2023 (presumably that means Oct 1?).

The latest 5.7 (5.7.37) has vulnerabilities
(https://vuxml.FreeBSD.org/freebsd/add683be-bd76-11ec-a06f-d4c9ef517024.html). 
No newer 5.7.* release is currently available (see
https://downloads.mysql.com/archives/community/).

The git repo shows some activity on the 5.7 branch:
https://github.com/mysql/mysql-server/commits/5.7.  But no new release.  I did
not investigate if the vulnerabilities (some of which mention possible remote
code execution) have been fully addressed.

We should probably at least mark the mysql57* ports with a deprecation notice.

-- 
You are receiving this mail because:
You are the assignee for the bug.