Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

org.postgresql:postgresql

Ecosystem:
maven
Package URL:
pkg:maven/org.postgresql:postgresql
Total PRs:
2,548 Dependabot PRs
Latest PR:
8 days ago
Unique Repositories:
1,084 repositories
Unique Repos (30 days):
22 repositories
Security Advisories
org.postgresql:postgresql vulnerable to SQL Injection via line comment generation
GHSA-24rp-q3w6-vc56 CVE-2024-1597 CRITICAL published almost 2 years ago • updated about 13 hours ago
# Impact SQL injection is possible when using the non-default connection property `preferQueryMode=simple` in combination with application code tha...
TemporaryFolder on unix-like systems does not limit access to created files
GHSA-562r-vg33-8x8h CVE-2022-41946 MODERATE published about 3 years ago • updated about 6 hours ago
**Vulnerability** `PreparedStatement.setText(int, InputStream)` and `PreparedStatemet.setBytea(int, InputStream)` will create a temporary file i...
Unescaped parameters in the PostgreSQL JDBC driver
GHSA-h86w-m5rm-xr33 CVE-2012-1618 HIGH published over 3 years ago • updated 3 days ago
Interaction error in the PostgreSQL JDBC driver before 8.2, when used with a PostgreSQL server with the "standard_conforming_strings" option enable...
PostgreSQL JDBC Driver SQL Injection in ResultSet.refreshRow() with malicious column names
GHSA-r38f-c4h4-hqq2 CVE-2022-31197 HIGH published over 3 years ago • updated 3 days ago
### Impact _What kind of vulnerability is it? Who is impacted?_ The PGJDBC implementation of the `java.sql.ResultRow.refreshRow()` method is not p...
Path traversal in org.postgresql:postgresql
GHSA-727h-hrw8-jg8q CVE-2022-26520 LOW published over 3 years ago • updated 3 days ago
In pgjdbc before 42.3.3, an attacker (who controls the jdbc URL or properties) can call java.util.logging.FileHandler to write to arbitrary files t...
View all 9 advisories
Recent PRs (filtered by: Closed , Patch PRs )
RSS Feed Clear filter
deps(deps): bump the maven-dependencies group across 1 directory with 61 updates

QRun-IO/qqq #266

42.7.4 → 42.7.8 Patch PR
Closed 8 days ago 1 comment
QRun-IO
Bump the all-minor-patch group across 1 directory with 14 updates

ehrbase/ehrbase #1563

42.7.4 → 42.7.8 Patch PR
Closed 8 days ago 1 comment
ehrbase
Bump the all-minor-patch group across 1 directory with 11 updates

ehrbase/ehrbase #1561

42.7.4 → 42.7.8 Patch PR
Closed 15 days ago 1 comment
ehrbase
Bump the maven-deps group across 1 directory with 9 updates

starwit/observatory-config #344

42.7.7 → 42.7.8 Patch PR
Closed 20 days ago 1 comment
starwit
Bump the maven-deps group across 1 directory with 10 updates

starwit/observatory #91

42.7.7 → 42.7.8 Patch PR
Closed 21 days ago 1 comment
starwit
Bump the klass-shared group across 1 directory with 17 updates

statisticsnorway/klass #404

42.7.7 → 42.7.8 Patch PR
Closed 21 days ago 1 comment
statisticsnorway
Bump the minor-and-patch group across 1 directory with 28 updates

navikt/orkivar #51

42.7.7 → 42.7.8 Patch PR
Closed 22 days ago 1 comment
navikt
chore(deps): bump the non-major group across 1 directory with 4 updates

jprofessionals/my-page #1756

42.7.5 → 42.7.8 Patch PR
Closed 22 days ago 1 comment
jprofessionals
Bump the klass-shared group in /klass-shared with 18 updates

statisticsnorway/klass #396

42.7.7 → 42.7.8 Patch PR
Closed 27 days ago 1 comment
statisticsnorway
chore(deps): Bump the all group across 1 directory with 39 updates

risingwavelabs/risingwave #23587

42.7.7 → 42.7.8 Patch PR
Closed 29 days ago 1 comment
risingwavelabs
Bump the minor-and-patch group across 1 directory with 26 updates

navikt/veilarbaktivitet #978

42.7.7 → 42.7.8 Patch PR
Closed 29 days ago 1 comment
navikt
chore(deps): bump the dependencies group across 1 directory with 32 updates

navikt/syfosmmanuell-backend #387

42.7.7 → 42.7.8 Patch PR
Closed 29 days ago 1 comment
navikt
Bump the all-minor-patch group across 1 directory with 21 updates

ehrbase/ehrbase #1554

42.7.4 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
ehrbase
gradle: bump the dependency-group group across 1 directory with 13 updates

navikt/sosialhjelp-avtaler-api #347

42.7.7 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
navikt
gradle: bump the dependency-group group with 11 updates

navikt/sosialhjelp-avtaler-api #346

42.7.7 → 42.7.8 Patch PR
Closed about 1 month ago 2 comments
navikt
Bump the testcontainers group across 1 directory with 4 updates

DavideD/hibernate-reactive #138

42.7.7 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
DavideD
gradle: bump the patch group with 10 updates

navikt/sosialhjelp-avtaler-api #344

42.7.7 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
navikt
Bump the build-dependencies group across 1 directory with 55 updates

kchobantonov/hibernate-search #265

42.7.5 → 42.7.8 Patch PR
Closed about 1 month ago 2 comments
kchobantonov
Bump the all-minor-patch group across 1 directory with 24 updates

ehrbase/ehrbase #1548

42.7.4 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
ehrbase
Bump the minor-and-patch group across 1 directory with 25 updates

navikt/veilarbaktivitet #974

42.7.7 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
navikt
Bump the minor-and-patch group across 1 directory with 20 updates

navikt/ishuskelapp #144

42.7.7 → 42.7.8 Patch PR
Closed about 1 month ago 1 comment
navikt
⬆️ deps(deps): Bump org.postgresql:postgresql from 42.7.5 to 42.7.8 in /stream-processor-flink

Youss2f/fraudguard-360 #58

42.7.5 → 42.7.8 Patch PR
Closed about 1 month ago 2 comments
Youss2f
chore(deps): bump the dependencies group across 1 directory with 41 updates

navikt/syfosmregister #522

42.7.4 → 42.7.8 Patch PR
Closed about 2 months ago 2 comments
navikt
Bump the gradle group across 1 directory with 24 updates

navikt/delta-backend #46

42.7.5 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
Bump the testcontainers group across 1 directory with 5 updates

DavideD/hibernate-reactive #125

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
DavideD
Bump the minor-and-patch group across 1 directory with 25 updates

navikt/padm2 #316

42.7.5 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
deps(deps): bump the maven-dependencies group with 61 updates

QRun-IO/qqq #250

42.7.4 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
QRun-IO
build(deps): bump the gradle-dependencies group across 1 directory with 43 updates

nais/tokendings #593

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
nais
build(deps): bump org.postgresql:postgresql from 42.7.7 to 42.7.8

hantsy/cargotracker #408

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 2 comments
hantsy
Bump the prod-dependencies group across 1 directory with 15 updates

coditory/sherlock-distributed-lock #287

42.7.5 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
coditory
chore(deps): bump the dependencies group across 1 directory with 28 updates

navikt/syfonlaltinn #294

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
chore(deps): bump the dependencies group across 1 directory with 30 updates

navikt/syfosmmanuell-backend #383

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
Bump org.postgresql:postgresql from 42.7.7 to 42.7.8 in /modules/junit-jupiter

reta/testcontainers-java #1967

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago
reta
Bump org.postgresql:postgresql from 42.7.7 to 42.7.8 in /modules/questdb

reta/testcontainers-java #1953

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago
reta
Bump org.postgresql:postgresql from 42.7.7 to 42.7.8 in /modules/postgresql

reta/testcontainers-java #1903

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago
reta
Bump org.postgresql:postgresql from 42.7.7 to 42.7.8 in /modules/cockroachdb

reta/testcontainers-java #1894

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago
reta
Bump org.postgresql:postgresql from 42.7.7 to 42.7.8 in /modules/spock

reta/testcontainers-java #1878

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago
reta
build(deps): bump the action-dependencies group across 1 directory with 4 updates

LuminaPJ/lumina-server #32

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 2 comments
LuminaPJ
chore(deps): bump the dependencies group across 1 directory with 25 updates

navikt/syfosmmottak #435

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
chore(deps): bump the update-dependencies group across 1 directory with 20 updates

navikt/pale-2 #389

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
Bump the maven-deps group across 1 directory with 8 updates

starwit/Urbalytix #55

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
starwit
Build(deps): Bump the annet-deps group across 1 directory with 17 updates

navikt/ung-sak #727

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
Bump the maven-deps group across 1 directory with 6 updates

starwit/observatory #88

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
starwit
deps: bump the minor-and-patch group across 1 directory with 21 updates

Sunagatov/Iced-Latte #409

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
Sunagatov
chore(deps): bump the dependencies group across 1 directory with 26 updates

navikt/narmesteleder-varsel #321

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
chore(deps): bump the dependencies group across 1 directory with 33 updates

navikt/narmesteleder #428

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
chore(deps): bump the dependencies group across 1 directory with 29 updates

navikt/sparenaproxy #302

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
build(deps): bump the gradle-dependencies group with 42 updates

nais/tokendings #592

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
nais
Bump the maven-deps group across 1 directory with 8 updates

starwit/ai-cockpit #317

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
starwit
chore(deps): bump the dependencies group across 1 directory with 27 updates

navikt/sykmeldinger-backend-kafka #355

42.7.7 → 42.7.8 Patch PR
Closed about 2 months ago 1 comment
navikt
Package Details
Name: org.postgresql:postgresql
Ecosystem: maven
PURL Type: maven
Package URL: pkg:maven/org.postgresql:postgresql
JSON API: View JSON
Security Advisories

9

Active advisories
CRITICAL 1
HIGH 5
MODERATE 2
LOW 1
View All maven Advisories
Package Information
Description:

PostgreSQL JDBC Driver Postgresql

Repository: https://github.com/pgjdbc/pgjdbc
Homepage: https://jdbc.postgresql.org
Latest Release: 42.7.6
6 months ago
Dependent Repos: 176,054
Dependent Packages: 3,652
Ranking: Top 0.0044% by dependent repos Top 0.0184% by dependent pkgs
PR Status
Open 1,138 (44.7%)
Merged 763 (29.9%)
Closed 500 (19.6%)
PR Types
Minor 91 (3.6%)
Major 2 (0.1%)
Patch 2,300 (90.3%)