From nobody Mon Feb  2 19:57:57 2026
X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4f4cqD2sh4z6QS8C
	for <freebsd-questions@mlmmj.nyi.freebsd.org>; Mon, 02 Feb 2026 19:58:00 +0000 (UTC)
	(envelope-from dale@dalescott.net)
Received: from relay.b.hostedemail.com (smtprelay0244.b.hostedemail.com [64.98.42.244])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mx1.freebsd.org (Postfix) with ESMTPS id 4f4cqC6Cwtz3wZh;
	Mon, 02 Feb 2026 19:57:59 +0000 (UTC)
	(envelope-from dale@dalescott.net)
Authentication-Results: mx1.freebsd.org;
	none
Received: from omf13.b.hostedemail.com (omf13 [10.200.6.76])
	by unirelay03.b.hostedemail.com (Postfix) with ESMTP id A8802739C0;
	Mon,  2 Feb 2026 19:57:58 +0000 (UTC)
Received: from [HIDDEN] (Authenticated sender: dale@dalescott.net) by omf13.b.hostedemail.com (Postfix) with ESMTPA id 69292120004;
	Mon,  2 Feb 2026 19:57:57 +0000 (UTC)
List-Id: User questions <freebsd-questions.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-questions
List-Help: <mailto:questions+help@freebsd.org>
List-Post: <mailto:questions@freebsd.org>
List-Subscribe: <mailto:questions+subscribe@freebsd.org>
List-Unsubscribe: <mailto:questions+unsubscribe@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
Sender: owner-freebsd-questions@FreeBSD.org
MIME-Version: 1.0
Date: Mon, 02 Feb 2026 12:57:57 -0700
From: Dale Scott <dale@dalescott.net>
To: =?UTF-8?Q?Fernando_Apestegu=C3=ADa?= <fernape@freebsd.org>
Cc: Jos Chrispijn <bsdpollux@cloudzeeland.nl>, FreeBSD Mailing List
 <freebsd-questions@freebsd.org>
Subject: Re: Mysql audit vs MariaDB
In-Reply-To: <CAGwOe2ZZQfNV4dE58GJi4mB9MnwZ59JmvgcETwyXviXWUefA3g@mail.gmail.com>
References: <c92fdbc4-1f08-4ee6-8a7e-0faab1992815@cloudzeeland.nl>
 <CAGwOe2ZZQfNV4dE58GJi4mB9MnwZ59JmvgcETwyXviXWUefA3g@mail.gmail.com>
Message-ID: <e8f58cd53803178b05e37b65f97046ae@dalescott.net>
X-Sender: dale@dalescott.net
Organization: dalescott.net
Content-Type: text/plain; charset=UTF-8;
 format=flowed
Content-Transfer-Encoding: 8bit
X-Stat-Signature: mxet475qnunnup6z5k4m87n7u6hosjr4
X-Rspamd-Server: rspamout06
X-Spam-Status: No, score=0.10
X-Session-Marker: 64616C654064616C6573636F74742E6E6574
X-Session-ID: U2FsdGVkX1/s1KdoFQDQp2FYoaFDIsmaANQxP0oUB/s=
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dalescott.net; h=mime-version:date:from:to:cc:subject:in-reply-to:references:message-id:content-type:content-transfer-encoding; s=noips1; bh=u0QOLH2dIvMTBzSqNXU0Qj4CxN+27+jOL9evk+w4pZk=; b=euaOcXO2VQPwQHpBnYMYRXD262HCWxKNJnmRF2ojqhSXtreF7b8I327lP+p5EUo6dVow0boQJcbhr9qA6O8Zs6GpOYNPQ2KCHua8lnpABjmN4RAZEb3LU5FD3yEJS6/n3yVkSteJ/i1MA71/aadXHbPXPW9QWjDyt2CpOy+axlU9aWY+qvsMYW2SUoafVRXOBQ9vnP9UGDHRmYsN0WyoHjYSEu6R+JhxDADyzTI1RG5UwZJs3zicVBp2pei+nmRrE2rr3FxcH9zRW8TlCtXgQfDqg6Ytp2IcfD1AGY5Tu7p30PhJ1gea2OnfNlJ2LOrLEDRbKzeW/SRkBlF7BcSiIw==
X-HE-Tag: 1770062277-441915
X-HE-Meta: U2FsdGVkX1+qY/GkzmBaO2bEIgdcGfZG1JO/0quL+OkT27Vy/7NGFl/qAmLOhHobm2cpJ6SYFeJ/MN+jwV29xRtFp0o3fkVDIYp6Cq5aDxPnV5nDcXGGuffh2D7L0EMQ9eBg+fZo1Q+yjKk9WSKybsMs8gT//UokBjVnFl6qaNQbCc5jiIDLfJxDTn9edxzN5Hl9SyFOhIoWqJ11mFZIZor52To+0mfRoLW/q8lpclJgu3LlvZVZdcAXgqL7KqAXYcrDut0ULxlU6zBqbq9cDomXN7Qm78cd7aAAGnULdKA3Q9etB4/Ymb1zKfgXPw/w9JOUdvUAdmKPNeSINWNkuUNKAC0TJ8gJCgGqrewEwljCqlyIvwPYk8GmNm8ul7STp1cks6ADDojwFvpOHyXyLrPbHwZsL17x
X-Rspamd-Pre-Result: action=no action;
	module=replies;
	Message is reply to one we originated
X-Spamd-Result: default: False [-4.00 / 15.00];
	REPLY(-4.00)[];
	ASN(0.00)[asn:32491, ipnet:64.98.32.0/20, country:CA]
X-Rspamd-Queue-Id: 4f4cqC6Cwtz3wZh
X-Spamd-Bar: ----

On 2026-02-02 11:27, Fernando Apesteguía wrote:

> On Mon, Feb 2, 2026 at 5:25 PM Jos Chrispijn 
> <bsdpollux@cloudzeeland.nl> wrote:
> 
>> As this is still actual
>> 
>> mysql84-server-8.4.7 is vulnerable:
>> MySQL -- Multiple vulnerabilities
>> CVE: CVE-2026-21965
>> CVE: CVE-2026-21964
>> CVE: CVE-2026-21952
>> CVE: CVE-2026-21948
>> CVE: CVE-2026-21941
>> CVE: CVE-2026-21937
>> CVE: CVE-2026-21936
>> CVE: CVE-2026-21929
>> CVE: CVE-2026-21968
>> CVE: CVE-2026-21950
>> CVE: CVE-2026-21949
>> WWW: 
>> https://vuxml.FreeBSD.org/freebsd/ab01cb11-f911-11f0-b194-8447094a420f.html
>> 
>> I am thinking of using MariaDB instead (a good combination with 
>> Wordpress).
>> As MariaDB is a fork of MySQL would that mean that this audit goes for 
>> MariaDB too?
> 
> As a general rule, assume yes.
> 
>> Thanks, Jos
>> 
>> -- with both feet on the ground you cannot make any step forward

That would be conservative, but MariaDb has seen many changes and the 
CVEs against MySQL 8.4 may not apply to MariaDb 11.8 (iiuc the latest, 
although I'm still using 10.6).