Skip to content

v42.7.2
Compare
Choose a tag to compare
@davecramer davecramer released this 21 Feb 13:51
· 44 commits to master since this release
REL42.7.2
06abfb7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Security

CVE-2024-1597 and Security Advisory addressed. The vulnerability occurs only in non-default preferQueryMode=simple mode and only if a negative place holder -? is used. See the security advisory for details

What's Changed

  • perf: avoid autoboxing bind indexes by @bokken in #1244
  • add: Add PasswordUtil for encrypting passwords client side by @sehrope in #3082
  • refactor: document that encodePassword will zero out the password array, and remove driver's default encodePassword by @vlsi in #3084
  • change: Use simple query for isValid. Using Extended query sends two messages by @davecramer in #3101

Full Changelog: REL42.7.1...REL42.7.2

Contributors

vlsi, davecramer, and 2 other contributors
Assets 3