Close the security hole by making it escape all of the untrusted input

before passing it to the SQL  server. The code in the added pqescape.c
is going to be in the next PostgreSQL release, but it is not there yet
and this port will use its own private copy for now.

No REVISION  bump since  the port  was forbidden  ever since  the last
upgrade. Submitter reviewed  my tweaks of his patch  and approved them
authorizing (as one of the SOs) the removal of the FORBIDDEN flag.

Submitted by:	nectar
Reviewed by:	nectar
Approved by:	nectar
Obtained from:	http://CERT.uni-stuttgart.de/doc/postgresql/escape/

0 files changed, 0 insertions, 0 deletions