Vulnerability Fixing Policies

Vulnerability Fixing SLA

• High-risk vulnerabilities

  After the MySQL community detects vulnerabilities and releases fixing solutions, RDS for MySQL analyzes all the vulnerabilities. If any high-risk vulnerability is identified, RDS for MySQL will proactively release warnings and upgrade the version within one month.

• Other vulnerabilities

  Other vulnerabilities can be fixed through a normal upgrade.

Fixing Statement

To prevent customers from being exposed to unexpected risks, RDS does not provide other information about vulnerabilities except vulnerability background, details, technical analysis, affected functions/versions/scenarios, solutions, and reference information.