Overview
Request 1153496 accepted
- Upgrade to upstream version 42.7.2
* Security fix:
+ CVE-2024-1597 (bsc#1220644) postgresql vulnerable to SQL
Injection via line comment generation
* Other changes:
+ perf: avoid autoboxing bind indexes
+ add: Add PasswordUtil for encrypting passwords client side
+ refactor: document that encodePassword will zero out the
password array, and remove driver's default encodePassword
+ change: Use simple query for isValid. Using Extended query
sends two messages
- Removed patches:
* CVE-2022-26520.patch
* fix-SQL-Injection-CVE-2022-31197.patch
* fix-createTempFile-vulnerability-CVE-2022-41946.patch
+ issues fixed by upstream before this version
Request History
fstrba created request
- Upgrade to upstream version 42.7.2
* Security fix:
+ CVE-2024-1597 (bsc#1220644) postgresql vulnerable to SQL
Injection via line comment generation
* Other changes:
+ perf: avoid autoboxing bind indexes
+ add: Add PasswordUtil for encrypting passwords client side
+ refactor: document that encodePassword will zero out the
password array, and remove driver's default encodePassword
+ change: Use simple query for isValid. Using Extended query
sends two messages
- Removed patches:
* CVE-2022-26520.patch
* fix-SQL-Injection-CVE-2022-31197.patch
* fix-createTempFile-vulnerability-CVE-2022-41946.patch
+ issues fixed by upstream before this version
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
staging-bot added as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:96"
staging-bot accepted review
Picked "openSUSE:Factory:Staging:adi:96"
dimstar accepted review
dimstar_suse accepted review
Staging Project openSUSE:Factory:Staging:adi:96 got accepted.
dimstar_suse approved review
Staging Project openSUSE:Factory:Staging:adi:96 got accepted.
dimstar_suse accepted request
Staging Project openSUSE:Factory:Staging:adi:96 got accepted.
