]> granicus.if.org Git - postgresql/commit
projects / postgresql / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 230d5cf) | patch
The original patch to disallow non-passworded connections to non-superusers
authorTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:28:55 +0000 (21:28 +0000)
committerTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:28:55 +0000 (21:28 +0000)
commit1f42e1cb68e6bdd2b65620cd57c797a848d9be8c
treecd10da60a1b11f9a2d2493e9f158bad836cde049tree | snapshot
parent230d5cfc4739bc4963c8d67e4a7cd84abe53ef93commit | diff
The original patch to disallow non-passworded connections to non-superusers
failed to cover all the ways in which a connection can be initiated in dblink.
Plug the remaining holes.  Also, disallow transient connections in functions
for which that feature makes no sense (because they are only sensible as
part of a sequence of operations on the same connection).  Joe Conway

Security: CVE-2007-6601
contrib/dblink/dblink.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.