Release Notes for MariaDB Enterprise Server 10.4.7-2

Overview

This second release of MariaDB Enterprise Server 10.4 is a maintenance release, addressing security vulnerabilities and including a variety of fixes.

MariaDB Enterprise Server 10.4.7-2 was released on 2019-08-19.

Fixed Security Vulnerabilities

CVE (with cve.mitre.org link)

CVSS base score

CVE-2019-2737

4.9

CVE-2019-2739

5.1

CVE-2019-2740

6.5

CVE-2019-2758

5.5

CVE-2019-2805

6.5

CVE-2020-2922

3.7

CVE-2021-2007

3.7

Notable Changes

  • Merge upstream changes from MyRocks (MDEV-19795)

  • DISKS plugin now requires the FILE privilege to display information in the disks table in the information schema, the table will otherwise be empty (MDEV-18328)

  • Merge relevant InnoDB changes from MySQL 5.7.27

  • Spider now maintains sql_mode between Spider Node and Data Nodes

  • Adjust spin loops to the x86 PAUSE instruction latency

  • Compatibility change: Change innodb_log_optimize_ddl to OFF by default

  • Compatibility change: Change innodb_adaptive_hash_index to OFF by default

Issues Fixed

  • SERVER_AUDIT v2 does not work with PS protocol

  • DROP TABLE IF EXISTS killed on master but was replicated (MDEV-20348)

  • Post-merge fixes for rocksdb.group_min_max test (MDEV-20113)

  • Replication hangs with "preparing" and never starts (MDEV-20247)

  • Failing assertion when REDO log files reach 512Gb while preparing backup (MDEV-20060)

  • Removed --rsync legacy option from enterprise build of MariaDB Backup

  • Changes to mysql_install_db script text

  • Test change: innodb.trx_id_future fails on 10.3+ (MDEV-20138)

  • Encrypted temporary tables cannot be read with full_crc32 (MDEV-20340)

  • Temporary tables created with data-at-rest encryption are not fully encrypted (MDEV-17228)

  • InnoDB bugs related to creating tables (MDEV-19292, MDEV-20102)

  • ALTER TABLE for InnoDB can result in a crash in some cases (MDEV-15641)

  • Change of COLLATE with InnoDB unnecessarily requires ALGORITHM=COPY (MDEV-17301)

  • Changing an index comment unnecessarily rebuilds index (MDEV-18266)

  • Possible foreign key corruption for ALTER TABLE ADD COLUMN with InnoDB (MDEV-19630)

  • Corruption after instant ADD or DROP when the index tree shrinks (MDEV-19916)

  • Cannot load compressed BLOB with InnoDB (MDEV-19974)

  • Bug in versioned tables when deleting history (MDEV-19814)

  • Compressed columns cannot be restored from dump (MDEV-17363)

  • Bugs in InnoDB related to indexed virtual columns (MDEV-16222, MDEV-17005, MDEV-19870)

  • Failing tests in buildbot related to FULLTEXT INDEX (MDEV-14154)

  • Server startup bug with encrypted InnoDB table (MDEV-19914)

  • Possible crash when Galera and foreign key is used, if the referenced record is deleted at the same time (MDEV-19660)

  • Recovery with mariabackup crash related to InnoDB with custom innodb_data_file_path (MDEV-19978)

  • Add page-id matching check in innochecksum tool (MDEV-19871)

  • DROP TEMPORARY table is logged despite no CREATE was logged in binary log (MDEV-20091)

  • mysql_upgrade_service throws exception upgrading from 10.0 to 10.3 (MDEV-19427)

  • Loading the Audit plugin causes performance regression (MDEV-18661)

  • REPLACE on table with virtual_field can cause crash (MDEV-19771)

  • Fix Aria ER_CRASHED_ON_USAGE and Assertion (MDEV-19595)

  • Server hangs on shutdown during installation of Spider (MDEV-20179)

Platforms

In alignment to the enterprise lifecycle, MariaDB Enterprise Server 10.4.7-2 is provided for:

  • CentOS 7

  • CentOS 6

  • Debian 9

  • Debian 8

  • Red Hat Enterprise Linux 7

  • Red Hat Enterprise Linux 6

  • Ubuntu 18.04

  • Ubuntu 16.04

  • Microsoft Windows

Some components of MariaDB Enterprise Server might not support all platforms. For additional information, see "MariaDB Corporation Engineering Policies".

Note

CentOS 6, Debian 8, and Red Hat Enterprise Linux 6 are no longer supported as per the MariaDB Engineering Policy. Older releases are available from the MariaDB Downloads page. Instructions for installation are included as a README file within the download.