59 matches found
CVE-2026-10879
DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder characters to numbered binders of the form :pN, but only allocates three characters per binder in the buffer. Placeholders 10-99 require fou...
PT-2026-46958
Name of the Vulnerable Software and Affected Versions DBI versions prior to 1.648 Description A heap overflow occurs when preparsing SQL statements containing more than 9 binders. The preparse function expands SQL placeholder characters into numbered binders using the format :pN, but it only...
DBI 安全漏洞
DBI is a Perl database interface tool developed under the open-source license of perl5-dbi. Versions of DBI prior to 1.648 contained security vulnerabilities; these vulnerabilities stemmed from heap overflows that occurred when pre-resolving SQL statements involving more than nine binders...
Linux Distros Unpatched Vulnerability : CVE-2026-10879
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder...
ROS-20250826-05
A vulnerability in the DBI module of the Perl DBI database interface is related to improper assignment of permissions to a a critical resource. Exploitation of the vulnerability allows an attacker to gain access to sensitive data, as well as cause a denial of service...
SUSE CVE-2013-7491
An issue was discovered in the DBI module before 1.628 for Perl. Stack corruption occurs when a user-defined function requires a non-trivial amount of memory and the Perl stack gets reallocated...
SUSE CVE-2020-14393
A buffer overflow was found in perl-DBI 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data...
The vulnerability of the DBI interface module of the Perl database library allows attackers to access confidential data and also cause service interruptions.
The vulnerability of the DBI interface module in Perl DBI is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability allows an attacker to access confidential data and also cause service failures...
The vulnerability of the DBI programming language module in Perl, related to an unvalidated return value, allows attackers to trigger a service failure.
The vulnerability of the DBI programming language module in Perl is related to an unvalidated return value in the hvFetch function when checking for the presence of NULL. Exploiting this vulnerability could allow an attacker to cause a service failure...
UBUNTU-CVE-2019-20919
An issue was discovered in the DBI module before 1.643 for Perl. The hvfetch documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOKprofile, causing a NULL pointer dereference...
USN-4509-1 libdbi-perl vulnerabilities
It was discovered that Perl DBI module incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. CVE-2013-7490 It was discovered that Perl DBI module incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive...
DEBIAN-CVE-2014-10402
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the fdir attribute in the data source name DSN. NOTE: this issue exists because of an incomplete fix for CVE-2014-10401...
ALPINE-CVE-2020-14393
A buffer overflow was found in perl-DBI 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data...
DEBIAN-CVE-2020-14393
A buffer overflow was found in perl-DBI 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data...
ALPINE-CVE-2020-14392
An untrusted pointer dereference flaw was found in Perl-DBI 1.643. A local attacker who is able to manipulate calls to dbddblogin6sv could cause memory corruption, affecting the service's availability...
USN-4503-1 libdbi-perl vulnerability
It was discovered that Perl DBI module incorrectly handled certain calls. An attacker could possibly use this issue to execute arbitrary code...
PT-2020-6752 · Dbi +5 · Dbi +5
Name of the Vulnerable Software and Affected Versions: DBI module through 1.643 for Perl Description: The issue is related to the DBI module for Perl, where the DBD::File drivers can open files from folders other than those specifically passed via the f dir attribute in the data source name DSN...
UBUNTU-CVE-2014-10401
An issue was discovered in the DBI module before 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the fdir attribute...
UBUNTU-CVE-2020-14392
An untrusted pointer dereference flaw was found in Perl-DBI 1.643. A local attacker who is able to manipulate calls to dbddblogin6sv could cause memory corruption, affecting the service's availability...