The PostgreSQL Global Development Group today released versions 8.1.4, 8.0.8, 7.4.13 and 7.3.15. This is an urgent update to close a security hole which can permit a SQL injection attack on some applications running PostgreSQL.
Users are urged to apply the update as soon as reasonably possible. Since the update affects client functionality, most driver projects will be updating this week as well. Because the security issue involved is complex, we have added a section in Techdocs to explain it: http://www.postgresql.org/docs/techdocs.52. Please read this first before applying the updates. Downloads are available on the download page: http://www.postgresql.org/download. Binaries for some platforms should be already available. ---------------------------(end of broadcast)--------------------------- TIP 9: In versions below 8.0, the planner will ignore your desire to choose an index scan if your joining column's datatypes do not match
