projects / users / bernd / postgres.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 50be46a) | patch
The original patch to disallow non-passworded connections to non-superusers
authorTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:29:07 +0000 (21:29 +0000)
committerTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:29:07 +0000 (21:29 +0000)
commit2993de16d679897017525c9ac69f1880ab148d11
tree9b4705ee05af6924eb8cb5a1f6e874bf155198adtree
parent50be46a28eb1686d52f094c43e75197da1a76fd2commit | diff
The original patch to disallow non-passworded connections to non-superusers
failed to cover all the ways in which a connection can be initiated in dblink.
Plug the remaining holes.  Also, disallow transient connections in functions
for which that feature makes no sense (because they are only sensible as
part of a sequence of operations on the same connection).  Joe Conway

Security: CVE-2007-6601
contrib/dblink/dblink.c diff | blob | blame | history
Bernd Helmle's repository