Mysql audit vs MariaDB

[Jos Chrispijn]

As this is still actual

mysql84-server-8.4.7 is vulnerable:
  MySQL -- Multiple vulnerabilities
  CVE: CVE-2026-21965
  CVE: CVE-2026-21964
  CVE: CVE-2026-21952
  CVE: CVE-2026-21948
  CVE: CVE-2026-21941
  CVE: CVE-2026-21937
  CVE: CVE-2026-21936
  CVE: CVE-2026-21929
  CVE: CVE-2026-21968
  CVE: CVE-2026-21950
  CVE: CVE-2026-21949
  WWW: https://vuxml.FreeBSD.org/freebsd/ab01cb11-f911-11f0-b194-8447094a420f.html

I am thinking of using MariaDB instead (a good combination with Wordpress).
As MariaDB is a fork of MySQL would that mean that this audit goes for MariaDB too?

Thanks, Jos

-- with both feet on the ground you cannot make any step forward

[Fernando Apesteguía]

On Mon, Feb 2, 2026 at 5:25 PM Jos Chrispijn <bsdp...@cloudzeeland.nl> wrote:

As this is still actual

mysql84-server-8.4.7 is vulnerable:
  MySQL -- Multiple vulnerabilities
  CVE: CVE-2026-21965
  CVE: CVE-2026-21964
  CVE: CVE-2026-21952
  CVE: CVE-2026-21948
  CVE: CVE-2026-21941
  CVE: CVE-2026-21937
  CVE: CVE-2026-21936
  CVE: CVE-2026-21929
  CVE: CVE-2026-21968
  CVE: CVE-2026-21950
  CVE: CVE-2026-21949
  WWW: https://vuxml.FreeBSD.org/freebsd/ab01cb11-f911-11f0-b194-8447094a420f.html

I am thinking of using MariaDB instead (a good combination with Wordpress).
As MariaDB is a fork of MySQL would that mean that this audit goes for MariaDB too?

As a general rule, assume yes.

[Dale Scott]

That would be conservative, but MariaDb has seen many changes and the
CVEs against MySQL 8.4 may not apply to MariaDb 11.8 (iiuc the latest,
although I'm still using 10.6).