PostgreSQL JDBC 42.2.5 发布，修复潜在的安全问题

PostgreSQL JDBC 42.2.5 发布了 ，本次更新修复了潜在的安全问题(CVE-2018-10936)，并为非默认 SSL factories 添加了服务器主机名验证。

更新亮点包括：

Changed

• ssl=true implies sslmode=verify-full , that is it requires valid server certificate  cdeeaca4

Added

• Support for sslmode=allow/prefer/require cdeeaca4

Fixed

• Security: added server hostname verification for non-default SSL factories in sslmode=verify-full (CVE-2018-10936)  cdeeaca4

• Updated documentation on SSL configuration fa032732

• Updated Japanese translations PR 1275

• IndexOutOfBounds on prepared multistatement with insert values c2885dd0

点此查看完整更新内容

下载地址：

• https://jdbc.postgresql.org/download.html