MySQL Connector/ODBC Release Notes

4.1 Changes in MySQL Connector/ODBC 5.2.8 (2015-05-06, General Availability)

Security Notes

  • Connector/ODBC 5.2 Commercial has been updated to use OpenSSL version 1.0.1m, which has been publicly reported as not vulnerable to CVE-2015-0286.

    Since the only change in Connector/ODBC 5.2.8 is the inclusion of OpenSSL libraries publicly reported as unaffected by CVE-2015-0286, and since Oracle-produced MySQL Community builds use YaSSL libraries which have been reported as not affected by CVE-2015-0286, Oracle will not produce builds for Connector/ODBC Community for version 5.2.8. This means the Community edition of Connector/ODBC will skip version 5.2.8. (Bug #20747740)