Embedded SQL vulnerability - Mailing list pgsql-general

From Glen Eustace
Subject Embedded SQL vulnerability
Date
Msg-id 01090111123403.01171@agree-6
Whole thread Raw
Responses Re: Embedded SQL vulnerability
List pgsql-general
Has anyone added anything into the client library along the lines of the
suggestion made in

http://cert.uni-stuttgart.de/advisories/apache_auth.php

I have just upgraded to 7.1.3 on RH7.1, I wasn't going to bother with the
source.  But we do use our database for authentication and consequently are
vulnerable.
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Glen and Rosanne Eustace,
GodZone Internet Services, a division of AGRE Enterprises Ltd.,
P.O. Box 8020, Palmerston North, New Zealand 5301
Ph/Fax: +64 6 357 8168, Mob: +64 21 424 015

pgsql-general by date:

Previous
From: "Robert J. Sanford, Jr."
Date:
Subject: Re: PL/java?
Next
From: Doug McNaught
Date:
Subject: Re: Embedded SQL vulnerability