Description
An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. A local attacker who is able to manipulate calls to dbd_db_login6_sv() could cause memory corruption, affecting the service's availability.
References (7)
Scores
CVSS v3
5.5
EPSS
0.0016
EPSS Percentile
36.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
CWE-822
Status
published
Products (9)
canonical/ubuntu_linux
12.04
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
16.04
canonical/ubuntu_linux
18.04
debian/debian_linux
9.0
fedoraproject/fedora
31
opensuse/leap
15.1
opensuse/leap
15.2
perl/database_interface
< 1.643
Published
Sep 16, 2020
Tracked Since
Feb 18, 2026