Important Information Regarding MariaDB Vulnerability (CVE-2016-6662)
A vulnerability of MariaDB (CVE-2016-6662) has been revealed that the remote code execution can be performed via SQL injection. However, after further investigation, it has been confirmed that Synology NAS is not affected by this vulnerability because of its strict permission control design. Synology NAS will remain unaffected as long as no manual modification was done to the configuration file of MariaDB.
However, for precautionary purposes, a newer version of MariaDB has been released to address this issue.
To fix the security issues, please go to DSM > Package Center, install the latest version 5.5.52 of MariaDB to protect your Synology NAS from malicious attacks.