projects / users / bernd / postgres.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 740d603) | patch
The original patch to disallow non-passworded connections to non-superusers
authorTom Lane <[email protected]>
Thu, 3 Jan 2008 21:28:30 +0000 (21:28 +0000)
committerTom Lane <[email protected]>
Thu, 3 Jan 2008 21:28:30 +0000 (21:28 +0000)
commite7cec43880299d097863e4c31c0b2051ff430d53
treed41e5b7273981f28c8cf2fecdd0218e6d2e18790tree
parent740d603d3dcf43f3eeec9be580a44c35b80cec26commit | diff
The original patch to disallow non-passworded connections to non-superusers
failed to cover all the ways in which a connection can be initiated in dblink.
Plug the remaining holes.  Also, disallow transient connections in functions
for which that feature makes no sense (because they are only sensible as
part of a sequence of operations on the same connection).  Joe Conway

Security: CVE-2007-6601
contrib/dblink/dblink.c diff | blob | blame | history
Bernd Helmle's repository