Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
perl dbi vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2013-7491
An issue exists in the DBI module prior to 1.628 for Perl. Stack corruption occurs when a user-defined function requires a non-trivial amount of memory and the Perl stack gets reallocated.
Perl Dbi
6.1
CVSSv3
CVE-2014-10401
An issue exists in the DBI module prior to 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute.
Perl Dbi
6.1
CVSSv3
CVE-2014-10402
An issue exists in the DBI module up to and including 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.
Perl Dbi
5.3
CVSSv3
CVE-2013-7490
An issue exists in the DBI module prior to 1.632 for Perl. Using many arguments to methods for Callbacks may lead to memory corruption.
Perl Dbi
Canonical Ubuntu Linux 14.04
4.7
CVSSv3
CVE-2019-20919
An issue exists in the DBI module prior to 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOK(profile), causing a NULL pointer dereference.
Perl Dbi
Fedoraproject Fedora 31
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Debian Debian Linux 9.0
Opensuse Leap 15.1
Opensuse Leap 15.2
NA
CVE-2012-1151
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module prior to 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the...
Perl Perl 2.15.1
Perl Perl 2.15.0
Perl Perl 2.17.1
Perl Perl 2.17.0
Perl Perl 2.13.0
Perl Perl 2.12.0
Perl Perl 2.11.8
Perl Perl 2.11.1
Perl Perl 2.11.0
Perl Perl 2.10.1
Perl Perl 2.10.0
Perl Perl 2.8.5
Perl Perl 2.8.4
Perl Perl 2.8.3
Perl Perl 2.6.6
Perl Perl 2.6.5
Perl Perl 2.5.0
Perl Perl 2.4.0
Perl Perl 2.1.0
Perl Perl 2.0.0
Perl Perl 1.43
Perl Perl 1.42
7.1
CVSSv3
CVE-2020-14393
A buffer overflow was found in perl-DBI < 1.643 in DBI.xs. A local attacker who is able to supply a string longer than 300 characters could cause an out-of-bounds write, affecting the availability of the service or integrity of data.
Perl Database Interface
Opensuse Leap 15.2
Debian Debian Linux 9.0
Fedoraproject Fedora 31
NA
CVE-2009-1341
Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module prior to 2.0.0 for Perl allows context-dependent malicious users to cause a denial of service (memory consumption) by fetching data with BYTEA columns.
Debian Libdbd-pg-perl 1.4.8
Debian Libdbd-pg-perl 1.2.1
Debian Libdbd-pg-perl 1.2.0
Debian Libdbd-pg-perl 0.91
Debian Libdbd-pg-perl 1.3.2
Debian Libdbd-pg-perl 1.2.2
Debian Libdbd-pg-perl 0.95
Debian Libdbd-pg-perl 0.93
Debian Libdbd-pg-perl 0.83
Debian Libdbd-pg-perl 0.82
Debian Libdbd-pg-perl 0.69
Debian Libdbd-pg-perl 0.68
Debian Libdbd-pg-perl 0.61
Debian Libdbd-pg-perl 0.52
Debian Libdbd-pg-perl 1.4.3
Debian Libdbd-pg-perl 1.4.0
Debian Libdbd-pg-perl 0.94
Debian Libdbd-pg-perl 0.89
Debian Libdbd-pg-perl 1.4.7
Debian Libdbd-pg-perl 1.4.6
Debian Libdbd-pg-perl 1.0.0
Debian Libdbd-pg-perl 0.99
NA
CVE-2005-0077
The DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink attack on a temporary PID file.
Debian Debian Linux 3.0
Gentoo Linux
Redhat Enterprise Linux 4.0
Redhat Enterprise Linux Desktop 4.0
Ubuntu Ubuntu Linux 4.10
5.5
CVSSv3
CVE-2020-14392
An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_db_login6_sv() could cause memory corruption, affecting the service's availability.
Perl Database Interface
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.1
Opensuse Leap 15.2
Fedoraproject Fedora 31
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »