Back to search

MariaDB

MariaDB

See the latest tracked release, confirm when it was published, and subscribe for update emails.

12.3 (LTS) Current train 12.2 EOL Switch to this train 11.8 (LTS) Switch to this train 11.4 (LTS) Switch to this train 10.11 (LTS) Switch to this train 10.6 (LTS) Switch to this train
Current version
Last checked: 2026-06-03

12.3.2

Release date
May 28, 2026
Security status
1 high-severity CVE tracked in the last 90 days. Current version not affected.

Source

endoflife.date

Public release notes are linked for the latest stored release.

View release notes Subscribe to updates

Release history

See the latest published releases stored for this product.

Version Published Notes
12.3.2 2026-05-28 Release Notes

Vulnerability tracking

versionPing monitors CVEs for this product. Matching CVEs are listed below. We only display CVEs with a CVSS score of 7.0 or higher that were published within the last 90 days.

Affected status is inferred from published affected version ranges where available. Always verify against the vendor advisory before making production decisions.

CVE Severity Published Status Summary
CVE-2026-32710 CRITICAL (9.9) 2026-03-20 Current versionnot affected

MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSON_SCHEMA_VALID() function. Under certain conditions it might be possible to turn the crash into a remote code execution. These conditions require tight control over memory layout which is generally only attainable in a lab environment. This issue is fixed in MariaDB 11.4.10, MariaDB 11.8.6, and MariaDB 12.2.2.

Affected versions
  • From (including) 11.4.1 - Up to (excluding) 11.4.10
  • From (including) 11.8.1 - Up to (excluding) 11.8.6
versionPing is an unofficial free service that tracks software releases and notifies you when CVEs and updates are available. Built by an engineer for engineers.ImprintPrivacy Notice