Release Announcement EDB JDBC Connector version 42.5.0.1

Customer Portal
Customer Portal

This article was originally published on September 06, 2022

WHAT’S NEW

This update is notifying you of a new software release of EDB JDBC Connector version 42.5.0.1, which supports EDB Postgres Advanced Server v10 - v14 and requires Java 8 or later.

Highlights of this release:

 

Type

Highlights

Upstream Merge

Merge with Community JDBC Driver v42.5.0

(https://jdbc.postgresql.org/index.html).

Security Fix

As part of community merge security fix: CVE-2022-31197 

 

Fixes SQL generated in PgResultSet.refresh() to escape column identifiers so as to prevent SQL injection.

 

Previously, the column names for both key and data columns in the table were copied as-is into the generated SQL. This allowed a malicious table with column names that include statement terminator to be parsed and executed as multiple separate commands.

 

Also adds a new test class ResultSetRefreshTest to verify this change.

Change

Migrated build to Gradle.

Enhancement

changeServerName - new property

 

If the value for changeServerName is set to true, getServerName() call in PgConnection.java will return a value as PostgreSQL. The default value is false.  

Enhancement

forceBinaryTransfer  - new property

 

If the value is set to true, the driver will force the  transfer of all binary types from the PostgreSQL server to the JDBC driver in their binary form. The default value is false.

TELL ME MORE

For more details, please review the EDB JDBC Connector documentation.


IS THIS FOR ME?

This announcement is for EDB customers that have a subscription plan purchased for:

  • Enterprise

HOW TO GET THE SOFTWARE

This update is available from the EDB downloads website https://www.enterprisedb.com/downloads/edb-connectors or via Stack Builder Plus for Windows (64bit and 32bit).

This update is also available as an RPM package that can be downloaded from the http://yum.enterprisedb.com repository. 

Native packages are also available for Debian 9 & 10, and Ubuntu 18 & 20 hosts.  To request the credentials required to access EDB repositories, please visit https://www.enterprisedb.com/repository-access-request


TROUBLESHOOTING 

If you experience any problems around the installation, migration, upgrade or general use of your EDB software please contact our Technical Support teams.

Customers may reach us at the EDB Customer Support Portal, and we’re also available 24x7 via email and phone at the details below:

techsupport@enterprisedb.com

trial-help@enterprisedb.com

US +1-732-331-1320 / 1-800-235-5891

UK +44-2033719820

Brazil +55-2139581371

India +91-20-66449612

 


 

Was this article helpful?

0 out of 0 found this helpful