Import Debian changes 42.2.5-2+deb10u4
libpgjava (42.2.5-2+deb10u4) buster-security; urgency=high
.
* Non-maintainer upload by the LTS team.
* Fix CVE-2024-1597:
A possible SQL injection vulnerability was found in libpgjava, the
PostgreSQL JDBC Driver. It allows an attacker to inject SQL if using
PreferQueryMode=SIMPLE which is not the default mode. In the default mode
there is no vulnerability.
Showing
- debian/changelog 11 additions, 0 deletionsdebian/changelog
- debian/patches/CVE-2024-1597-part1.patch 264 additions, 0 deletionsdebian/patches/CVE-2024-1597-part1.patch
- debian/patches/CVE-2024-1597-part2.patch 307 additions, 0 deletionsdebian/patches/CVE-2024-1597-part2.patch
- debian/patches/series 2 additions, 0 deletionsdebian/patches/series
Loading
Please register or sign in to comment