Fix to prevent SQL injection attacks when calling setObject(int,Object,int)

Barry Lind <barry@xythos.com>

Commit: 5d882f78aed1fb24e3d3a7a83c9a6b8e50bd99fc
Author: Barry Lind <barry@xythos.com>
Date: 2003-07-22T05:13:05Z
Releases: 7.3.4
Fix to prevent SQL injection attacks when calling setObject(int,Object,int)
where the Object is a String and the type is numeric (i.e. INTEGER,LONG,etc).
The fix applies the standard escaping for these values.

 Modified Files:
  Tag: REL7_3_STABLE
 	jdbc/org/postgresql/Driver.java.in
 	jdbc/org/postgresql/jdbc1/AbstractJdbc1Statement.java

Files