Quick Links

Re: [Plperlng-devel] plperl security

From:	Andrew Dunstan <andrew(at)dunslane(dot)net>
To:	"Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
Cc:	PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>, plperlng-devel(at)pgfoundry(dot)org
Subject:	Re: [Plperlng-devel] plperl security
Date:	2004-07-05 18:12:50
Message-ID:	40E99A22.5060503@dunslane.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Joshua D. Drake wrote:

>
>> Currently we have this in plperl.c:
>> "require Safe;"
>>
>> I am thinking of submitting a patch to replace this with "use Safe
>> 2.09;" to enforce use of a version without the known vulnerability.
>>
>> Any objections?
>
>
> I have none, except will 2.09 work with 5.00503?

I will see about getting a test done, unless someone on one of those
systems with an older perl can try upgrading the Safe module from CPAN
for us.

cheers

andrew

In response to

Re: [Plperlng-devel] plperl security at 2004-07-05 17:55:02 from Joshua D. Drake

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Tom Lane	2004-07-05 18:20:08	Re: plperl security
Previous Message	Joshua D. Drake	2004-07-05 17:55:02	Re: [Plperlng-devel] plperl security