Releases: sidorares/node-mysql2
Releases · sidorares/node-mysql2
v3.9.8
3.9.8 (2024-05-26)
Bug Fixes
- security: sanitize fields and tables when using nestTables (#2702) (efe3db5)
- support deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (#2704) (2e03694)
- typings: typo from
jonServerPublicKey to onServerPublicKey (#2699) (8b5f691)
v3.9.7
3.9.7 (2024-04-21)
Bug Fixes
- security: sanitize timezone parameter value to prevent code injection - report by zhaoyudi (Nebulalab) (#2608) (7d4b098)
v3.9.6
3.9.6 (2024-04-18)
Bug Fixes
- binary parser sometimes reads out of packet bounds when results contain null and typecast is false (#2601) (705835d)
v3.9.5
3.9.5 (2024-04-17)
Bug Fixes
- revert breaking change in results creation (#2591) (f7c60d0)
v3.9.4
3.9.4 (2024-04-09)
Bug Fixes
- SSL: separate each certificate into an individual item #2542 (63f1055)
- security: improve supportBigNumbers and bigNumberStrings sanitization (#2572) (74abf9e)
- Fixes a potential RCE attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- security: improve results object creation (#2574) (4a964a3)
- Fixes a potential Prototype Pollution attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- docs: improve the contribution guidelines (#2552) (8a818ce)
v3.9.3
3.9.3 (2024-03-26)
Bug Fixes
- security: improve cache key formation (#2424) (0d54b0c)
- Fixes a potential parser cache poisoning attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- update Amazon RDS SSL CA cert (#2131) (d9dccfd)
v3.9.2
3.9.2 (2024-02-26)
Bug Fixes
v3.9.1
3.9.1 (2024-01-29)
Bug Fixes
- types: support encoding for string type cast (#2407) (1dc2011)
v3.9.0
3.9.0 (2024-01-26)
Features
v3.8.0
3.8.0 (2024-01-23)
Features
Bug Fixes
- stream: premature close when using
for await (#2389) (af47148)
- types: add missing types to TypeCast (#2390) (78ce495)
- removeIdleTimeoutConnectionsTimer isn't cleared on pool close (#2384) (18a44f6)
