]> granicus.if.org Git - postgresql/commit
projects / postgresql / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 004d2be) | patch
Fix to prevent SQL injection attacks when calling setObject(int,Object,int)
authorBarry Lind <barry@xythos.com>
Tue, 22 Jul 2003 05:13:05 +0000 (05:13 +0000)
committerBarry Lind <barry@xythos.com>
Tue, 22 Jul 2003 05:13:05 +0000 (05:13 +0000)
commit5d882f78aed1fb24e3d3a7a83c9a6b8e50bd99fc
tree1c1b20311b35a53621b4af23538bca9099f5546etree | snapshot
parent004d2be5d939693da2bf650e5abe4a0293d121d1commit | diff
Fix to prevent SQL injection attacks when calling setObject(int,Object,int)
where the Object is a String and the type is numeric (i.e. INTEGER,LONG,etc).
The fix applies the standard escaping for these values.

 Modified Files:
  Tag: REL7_3_STABLE
  jdbc/org/postgresql/Driver.java.in
  jdbc/org/postgresql/jdbc1/AbstractJdbc1Statement.java
src/interfaces/jdbc/org/postgresql/Driver.java.in diff | blob | history
src/interfaces/jdbc/org/postgresql/jdbc1/AbstractJdbc1Statement.java diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.