Connector/ODBC 5.3 Commercial has been updated to use
OpenSSL version 1.0.1g, which has been
publicly reported as not vulnerable to
Note #1645479.1 for further details.
Since the only change in Connector/ODBC 5.3.3 is the inclusion
OpenSSL libraries publicly reported as
unaffected by CVE-2014-0160, and since Oracle-produced MySQL
Community builds use
yaSSL libraries, which
have been reported as not affected by CVE-2014-0160, Oracle will
not produce builds for Connector/ODBC Community for version
5.3.3. This means the Community edition of Connector/ODBC will
skip version 5.3.3.
(Bug #18533200, CVE-2014-0160)