/ 
DBD-Pg-0.96
River stage three • 83 direct dependents • 164 total dependents
Security Advisories (2)
CVE-2009-1341 (2009-04-30)

Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.

CVE-2012-1151 (2012-09-09)

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the pg_warn function or (2) a crafted DBD statement to the dbd_st_prepare function.

Changes for version 0.96

  • remove memory-leak in ping function, bug-fix from Doug Perham <dperham@wgate.com>
  • correct the recognition of primary keys in table_attributes(). Patch from Brian Powell <brian@nicklebys.com>.
  • applied patch from David D. Kilzer <ddkilzer@lubricants-oil.com> which fixes a segmentation fault in DBD::pg::blob_read() when reading LOBs that required perl to reallocate space for the variable holding the scalar value
  • updated test.pl to create a test blob larger than 256 bytes (now 128 Kbytes)
  • apply patch from Tom Lane, which fixes a seg-fault when inserting large amounts of text.
  • apply patch from Peter Haworth pmh@edison.ioppublishing.com, which removes the newlines from the error messages and which quotes date placeholders.

Documentation

DBD::Pg
PostgreSQL database driver for the DBI module

Modules

DBD::Pg
PostgreSQL database driver for the DBI module

Provides

DBD::Pg::db
in Pg.pm
DBD::Pg::dr
in Pg.pm
DBD::Pg::st
in Pg.pm

Examples

Other files