Important Change: The linked OpenSSL library for MySQL Server has been updated to version 1.1.1t. Issues fixed in OpenSSL version 1.1.1t are described at https://www.openssl.org/news/cl111.txt. (Bug #35092429)

The linked curl library for MySQL Server (Enterprise Edition) has been updated to version 7.88.1. (Bug #34828111)

InnoDB: Prevent online DDL operations from accessing out-of-bounds memory. (Bug #34750489, Bug #108925)

Replication: Some binary log events were not always handled correctly. (Bug #34617506)

Replication: Setting binlog_order_commits to OFF could lead to a missed GTID in the next binary log file's Previous_gtids event.

Our thanks to Yewei Xu and the Tencent team for the contribution. (Bug #109485, Bug #34930969)

A client setting the character set to an impermissible client character set (ucs2, utf16, utf16le, or utf32) could cause unexpected behavior when the client used an authentication plugin. (Bug #35054579)

The scope of the connect_timeout limit was extended to full-packet reads. (Bug #33723597)

References: See also: Bug #34574013.

Using --single-transaction with mysqldump version 5.7.41 required either the RELOAD or FLUSH_TABLES privilege. This requirement now applies only when both gtid_mode=ON (default OFF) and with --set-gtid-purged = ON|AUTO (default AUTO). (Bug #109685, Bug #109701, Bug #34993824, Bug #34998910, Bug #35020512)

References: This issue is a regression of: Bug #105761, Bug #33630199.