]> git.ipfire.org Git - thirdparty/postgresql.git/commit
projects / thirdparty / postgresql.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 46cf9c2) | patch
The original patch to disallow non-passworded connections to non-superusers
authorTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:28:30 +0000 (21:28 +0000)
committerTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:28:30 +0000 (21:28 +0000)
commit148bd52da47daa998d5d9ceb545c33e232729f80
tree0c7133c9e109a414a7bcc30cfdd3566a79a705b3tree | snapshot
parent46cf9c260d11d7288769de4917aa1d86b52d1e91commit | diff
The original patch to disallow non-passworded connections to non-superusers
failed to cover all the ways in which a connection can be initiated in dblink.
Plug the remaining holes.  Also, disallow transient connections in functions
for which that feature makes no sense (because they are only sensible as
part of a sequence of operations on the same connection).  Joe Conway

Security: CVE-2007-6601
contrib/dblink/dblink.c diff | blob | blame | history
Mirror of https://git.postgresql.org/git/postgresql.git