CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2012-5613 — MEDIUM severity vulnerability | Release Alert
CVE-2012-5613
6
MEDIUMCVSS v2
Published
December 3, 2012
Affected
1 project
Assigned by
Red Hat
Severity scale
010
Description
MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a and possibly other versions, when configured to assign the FILE privilege to users who should not have administrative privileges, allows remote authenticated users to gain privileges by leveraging the FILE privilege to create files as the MySQL administrator. NOTE: the vendor disputes this issue, stating that this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation. NOTE: it could be argued that this should not be included in CVE because it is a configuration issue.
ChocolateyMariaDB is designed as a drop-in replacement of [MySQL](https://community.chocolatey.org/packages/mysql) with more features, new storage engines, fewer bugs, and better performance. MariaDB server is a community developed fork of MySQL server started by core members of the original MySQL team.
MariaDB strives to be the logical choice for database professionals looking for a robust, scalable, and reliable SQL server. To accomplish this, the MariaDB Foundation work closely and cooperatively with the larger community of users and developers in the true spirit of Free and open source software, and release software in a manner that balances predictability with reliability.
#### MariaDB comparison to MySQL
* [Features](https://mariadb.com/kb/en/mariadb/mariadb-vs-mysql-features/)
* [Compatibility](https://mariadb.com/kb/en/mariadb/mariadb-vs-mysql-compatibility/)
#### Community
* [Facebook](https://www.facebook.com/MariaDB.dbms)
* [Google+](https://plus.google.com/+mariadb)
* [Twitter](https://twitter.com/mariadb)
**Please Note**: This is an automatically updated package. If you find it is
out of date by more than a day or two, please contact the maintainer(s) and
let them know [here](https://github.com/mkevenaar/chocolatey-packages/issues) that the package is no longer updating correctly.