By cloudnine
It seems there’s a nasty MySQL zero day flaw that needs to be fixed on all servers running MySQL 5.7.13 and below, including MariaDB and PerconaDB: http://seclists.org/oss-sec/2016/q3/481
Does anyone know how to apply the patch to fix this vulnerability ? A quick D.O tutorial would be pretty handy.
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
It appears that this vulnerability requires the attacker to already have a valid MySQL user account on your server before they can escalate privileges.
While concerning this should not provide a new attack vector unless you are running a shared hosting environment for other users. I would recommend ensuring you have updates running automatically so when an updated version is released your copy of MySQL will be updated automatically.
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and AI-native businesses
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.