Download Latest Version
postgresql-42.7.11.jar (1.1 MB)
Get an email when there's a new version of PostgreSQL JDBC Driver
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| postgresql-42.7.11.jar | 2026-04-28 | 1.1 MB | |
| README.md | 2026-04-28 | 6.8 kB | |
| v42.7.11 source code.tar.gz | 2026-04-28 | 2.4 MB | |
| v42.7.11 source code.zip | 2026-04-28 | 3.0 MB | |
| Totals: 4 Items | 6.6 MB | 13 | |
Security
- fix: Limit SCRAM PBKDF2 iterations accepted from the server. pgjdbc was vulnerable to a client-side denial of service in SCRAM-SHA-256 authentication, where a malicious or compromised PostgreSQL server could specify an extremely large PBKDF2 iteration count, causing the client to consume unbounded CPU and potentially exhaust connection pools. The fix introduces a new scramMaxIterations connection property (defaulting to 100,000) to cap iteration counts before computation begins. See the Security Advisory for more detail. The following CVE-2026-42198 has been issued.
Changes
- fix: Add sources and javadocs to shaded published lib generation @sehrope (#4043)
- update Changelog and website for release of 42.7.11 @davecramer (#4042)
- Fix scram fix location in changelog and update published artifact developer list @sehrope (#4041)
- Restrict test with scram_iterations to v16+ and release notes @sehrope (#4040)
- chore(deps): update ubuntu:24.04 docker digest to 84e77de @renovate-bot (#4017)
- test: add tests for QueryExecutor#getTransactionState @vlsi (#4006)
- chore(deps): update actions/create-github-app-token action to v2.2.2 @renovate-bot (#3983)
- fix: fix flaky CopyBothResponseTest by using WAL flush LSN @vlsi (#3979)
- fix: fix flaky replication restart tests by waiting for confirmed_flush_lsn @vlsi (#3975)
- test: fix flaky LogicalReplicationStatusTest by polling pg_stat_replication @vlsi (#3974)
- chore: replace Appveyor with ikalnytskyi/action-setup-postgres @vlsi (#3966)
- test: move test table creation from @BeforeEach to @BeforeAll @vlsi (#3967)
- Return jsonb as PGObject fixes Issue [#3926] @davecramer (#3956)
- Update docker scripts @davecramer (#3958)
- implement require_auth, this is pretty much how libpq does this. @davecramer (#3895)
- docs: add SCRAM authentication test setup section to TESTING.md @emmaeng700 (#3945)
- Add RequireServerVersion annotation for tests @sehrope (#3939)
š Bug Fixes
- fix: ensure extended protocol messages end with Sync message @vlsi (#3728)
- fix: enable cursor-based fetching in extended protocol when transaction started via SQL command @vlsi (#3996)
- fix: retry with SSL on IOException when sslMode=ALLOW @vlsi (#3973)
- fix: allow fallback to non-SSL connection when sslMode=prefer and sslResponseTimeout kicks in @vlsi (#3968)
- fix: catch SecurityException from setContextClassLoader on ForkJoinPool workers @vlsi (#3962)
- fix: use compareTo for LogSequenceNumber comparison @vlsi (#3961)
- fix: release COPY lock on IOException to prevent connection hang (#3957) @vlsi (#3960)
š§° Maintenance
- style: replace @exception with @throws in getBoolean javadoc @vlsi (#4035)
- chore: use @vlsi/github-actions-random-matrix npm package @vlsi (#4008)
- chore: use tag names for pinning github actions, pin ikalnytskyi/action-setup-postgres @vlsi (#4007)
- chore: bump errorprone to 2.48.0 @vlsi (#4005)
- test: add @DisableLogger annotation to suppress expected log warnings in tests @vlsi (#3971)
- chore: suppress deprecations in test code to reduce build verbosity @vlsi (#3972)
- chore: replace log warning in ConnectionFactory.closeStream with Throwable.addSuppressed @vlsi (#3970)
- chore: use greedy pairwise coverage for CI matrix generation @vlsi (#3965)
- chore: use full version tags in GitHub Actions comments @vlsi (#3963)
