projects / users / bernd / postgres.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c1525f0) | patch
The original patch to disallow non-passworded connections to non-superusers
authorTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:28:42 +0000 (21:28 +0000)
committerTom Lane <tgl@sss.pgh.pa.us>
Thu, 3 Jan 2008 21:28:42 +0000 (21:28 +0000)
commitf5a7fd37c06f527e67d7ee40ee92055b3c08082c
tree1a02077cdf2d0aceb1f6e278a29f5ececc2a1028tree
parentc1525f039cde21b821ffda511b487be332cd6aa3commit | diff
The original patch to disallow non-passworded connections to non-superusers
failed to cover all the ways in which a connection can be initiated in dblink.
Plug the remaining holes.  Also, disallow transient connections in functions
for which that feature makes no sense (because they are only sensible as
part of a sequence of operations on the same connection).  Joe Conway

Security: CVE-2007-6601
contrib/dblink/dblink.c diff | blob | blame | history
Bernd Helmle's repository