/ 
DBD-Pg-1.43
River stage three • 83 direct dependents • 164 total dependents
Security Advisories (2)
CVE-2009-1341 (2009-04-30)

Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.

CVE-2012-1151 (2012-09-09)

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the pg_warn function or (2) a crafted DBD statement to the dbd_st_prepare function.

Changes for version 1.43

  • Added README.dev file. [GSM]
  • Fix statement-name related core dump. [GSM]
  • Ensure state() returns an empty string, not 00000 on success. (CPAN bug #13237) [michael.bell@web.de of OpenCA] [GSM]
  • Fix rare core dump when $sth still in scope after disconnect [GSM]
  • Enhancements to README.win32 [fenlisesi@gmail.com]
  • Fix incorrect sprintf calls (CPAN bug #12204)
    • Jakub Jelinek
  • Fix get_info(18) ("ODBCVERSION") (CPAN bug #12968) [thanks to szinger@lanl.gov] [GSM]

Modules

DBD::Pg
PostgreSQL database driver for the DBI module

Provides

DBD::Pg::db
in Pg.pm
DBD::Pg::dr
in Pg.pm
DBD::Pg::st
in Pg.pm

Other files