diff options
author | Markus Koschany <apo@debian.org> | 2022-05-20 22:31:58 +0200 |
---|---|---|
committer | Markus Koschany <apo@debian.org> | 2022-05-20 22:36:30 +0200 |
commit | 05096d601ed9bfc22df4ae02a0c0e71cb8328938 (patch) | |
tree | f92d526e3568f11fb53ee1af3d9076af1a4d7c1f /data/DLA | |
parent | 015e54390e4402a9b4a9516f65ff48dce35edb2c (diff) |
CVE-2022-26520,libpgjava: Mark as no-dsa for all distributions.
This issue requires access to connection properties only authenticated users
should have. Upstream does not consider this to be a security vulnerability
with the driver, instead application developers must take care of validating
the contents of any JDBC URLs.
Just removing the loggerFile and loggerLevel connection properties may break
existing applications. This should be tested in unstable and testing first.
Diffstat (limited to 'data/DLA')
0 files changed, 0 insertions, 0 deletions