REL42.7.2
版本发布时间: 2024-02-21 21:51:49
pgjdbc/pgjdbc最新发布版本:REL42.7.4(2024-08-23 00:47:06)
Security
CVE-2024-1597 and Security Advisory addressed. The vulnerability occurs only in non-default preferQueryMode=simple
mode and only if a negative place holder -?
is used. See the security advisory for details
What's Changed
- perf: avoid autoboxing bind indexes by @bokken in https://github.com/pgjdbc/pgjdbc/pull/1244
- add: Add PasswordUtil for encrypting passwords client side by @sehrope in https://github.com/pgjdbc/pgjdbc/pull/3082
- refactor: document that encodePassword will zero out the password array, and remove driver's default encodePassword by @vlsi in https://github.com/pgjdbc/pgjdbc/pull/3084
- change: Use simple query for isValid. Using Extended query sends two messages by @davecramer in https://github.com/pgjdbc/pgjdbc/pull/3101
Full Changelog: https://github.com/pgjdbc/pgjdbc/compare/REL42.7.1...REL42.7.2
1、 postgresql-42.7.2.jar 1.04MB