Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2021-0048
HistoryJan 23, 2021 - 2:50 a.m.

Updated perl-DBI packages fix security vulnerabilities

2021-01-2302:50:14
Gentoo Foundation
advisories.mageia.org
6

0.0004 Low

EPSS

Percentile

13.7%

JSON

An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOK(profile), causing a NULL pointer dereference. (CVE-2019-20919). An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_db_login6_sv() could cause memory corruption, affecting the service’s availability. (CVE-2020-14392). A buffer overflow was found in perl-DBI < 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data. (CVE-2020-14393).

OSVersionArchitecturePackageVersionFilename
Mageia7noarchperl-dbi< 1.642.0-1.1perl-DBI-1.642.0-1.1.mga7

Related

debian 1
openvas 41
nessus 43
fedora 1
osv 8
suse 4
gentoo 1
alpinelinux 2
veracode 3
prion 3
ubuntucve 3
debiancve 3
ubuntu 4
redhatcve 3
cvelist 3
cve 3
oracle 1
debian
debian
[SECURITY] [DLA 2386-1] libdbi-perl security update
2020-09-28 13:38:43
openvas
openvas
Debian: Security Advisory (DLA-2386-1)
2020-09-29 00:00:00
Fedora: Security Advisory for perl-DBI (FEDORA-2020-f30298614a)
2020-09-26 00:00:00
Mageia: Security Advisory (MGASA-2021-0048)
2022-01-28 00:00:00
nessus
nessus
RHEL 6 : perl-dbi (Unpatched Vulnerability)
2024-05-11 00:00:00
Fedora 31 : perl-DBI (2020-f30298614a)
2020-09-28 00:00:00
RHEL 5 : perl-dbi (Unpatched Vulnerability)
2024-05-11 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: perl-DBI-1.643-3.fc31
2020-09-25 17:47:38
osv
osv
libdbi-perl - security update
2020-09-28 00:00:00
CVE-2020-14392
2020-09-16 13:15:11
CVE-2020-14393
2020-09-16 14:15:12
suse
suse
Security update for perl-DBI (important)
2020-09-20 00:00:00
Security update for perl-DBI (important)
2020-09-22 00:00:00
Security update for perl-DBI (important)
2020-10-05 00:00:00
gentoo
gentoo
Perl DBI: Multiple vulnerabilities
2020-09-13 00:00:00
alpinelinux
alpinelinux
CVE-2020-14392
2020-09-16 13:15:00
CVE-2020-14393
2020-09-16 14:15:00
veracode
veracode
Denial Of Service (DoS)
2020-12-06 03:50:43
Denial Of Service (DoS)
2020-12-06 03:50:40
Denial Of Service (DoS)
2020-09-24 11:06:42
prion
prion
Null pointer dereference
2020-09-16 13:15:00
Buffer overflow
2020-09-16 14:15:00
Null pointer dereference
2020-09-17 18:15:00
ubuntucve
ubuntucve
CVE-2020-14393
2020-09-16 00:00:00
CVE-2020-14392
2020-09-11 00:00:00
CVE-2019-20919
2020-09-17 00:00:00
debiancve
debiancve
CVE-2020-14393
2020-09-16 14:15:00
CVE-2020-14392
2020-09-16 13:15:00
CVE-2019-20919
2020-09-17 18:15:00
ubuntu
ubuntu
Perl DBI module vulnerability
2020-09-16 00:00:00
Perl DBI module vulnerability
2020-09-23 00:00:00
Perl DBI module vulnerabilities
2022-02-03 00:00:00
redhatcve
redhatcve
CVE-2020-14393
2020-09-09 19:49:30
CVE-2020-14392
2020-09-09 19:49:22
CVE-2019-20919
2020-09-17 18:00:07
cvelist
cvelist
CVE-2020-14393
2020-09-16 13:27:17
CVE-2020-14392
2020-09-16 13:00:20
CVE-2019-20919
2020-09-17 17:35:43
cve
cve
CVE-2020-14393
2020-09-16 14:15:00
CVE-2020-14392
2020-09-16 13:15:00
CVE-2019-20919
2020-09-17 18:15:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00

0.0004 Low

EPSS

Percentile

13.7%

JSON
Related for MGASA-2021-0048
debian1openvas41nessus43fedora1osv8suse4gentoo1alpinelinux2veracode3prion3ubuntucve3debiancve3ubuntu4redhatcve3cvelist3cve3oracle1