CVE-2020-14392

Published: Sep 16, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_db_login6_sv() could cause memory corruption, affecting the service's availability.

Vendor	Product	Versions
n/a	perl-dbi	affected `perl-DBI before version 1.643`

Weaknesses (CWE)

CWE-822

References

https://bugzilla.redhat.com/show_bug.cgi?id=1877402

x_refsource_MISC

https://metacpan.org/pod/distribution/DBI/Changes#Changes-in-DBI-1.643

x_refsource_MISC

USN-4503-1

vendor-advisory

x_refsource_UBUNTU

openSUSE-SU-2020:1483

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2020:1502

vendor-advisory

x_refsource_SUSE

FEDORA-2020-f30298614a

vendor-advisory

x_refsource_FEDORA

[debian-lts-announce] 20200928 [SECURITY] [DLA 2386-1] libdbi-perl security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-14392

Description

Affected Products

Weaknesses (CWE)

References