GCVE - cpe:2.3:a:perl:dbi:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:perl:dbi:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Perl (`1e08d0ea-f6e4-5b5b-a347-b9704b70f1d2`)
Product	Dbi (`615fff1b-58aa-5003-8215-4d5de97f7268`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/perl5-dbi/dbi`	purl2cpe	2026-06-01 10:17:04.774055

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-20919`	vulnerable	2026-06-03 14:40:17.819266	Details available An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOK(profile), causing a NULL pointer dereference. Published: 2020-09-17T17:35:43.000Z Updated: 2024-08-05T03:00:18.776Z Open on db.gcve.eu Reference links https://metacpan.org/pod/distribution/DBI/Changes#Changes-in-DBI-1.643-... https://github.com/perl5-dbi/dbi/commit/eca7d7c8f43d96f6277e86d1000e842eb4cc67ff https://usn.ubuntu.com/4534-1/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JXLKODJ7B57GITDEZZXNSHPK4VBYXYHR/ https://lists.debian.org/debian-lts-announce/2020/09/msg00026.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-10402`	vulnerable	2026-06-03 14:33:41.001266	Details available An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401. Published: 2020-09-16T15:55:20.000Z Updated: 2024-08-06T14:10:54.834Z Open on db.gcve.eu Reference links https://rt.cpan.org/Public/Bug/Display.html?id=99508#txn-1911590 https://lists.debian.org/debian-lts-announce/2022/05/msg00046.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-10401`	vulnerable	2026-06-03 14:33:41.000947	Details available An issue was discovered in the DBI module before 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute. Published: 2020-09-11T18:37:52.000Z Updated: 2024-08-06T14:10:54.879Z Open on db.gcve.eu Reference links https://rt.cpan.org/Public/Bug/Display.html?id=99508 https://github.com/perl5-dbi/dbi/commit/caedc0d7d602f5b2ae5efc1b00f39efeafb7b05a https://metacpan.org/pod/distribution/DBI/Changes#Changes-in-DBI-1.632-9th-Nov-2014 https://usn.ubuntu.com/4509-1/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-7491`	vulnerable	2026-06-03 14:33:35.907914	Details available An issue was discovered in the DBI module before 1.628 for Perl. Stack corruption occurs when a user-defined function requires a non-trivial amount of memory and the Perl stack gets reallocated. Published: 2020-09-11T18:37:31.000Z Updated: 2024-08-06T18:09:16.979Z Open on db.gcve.eu Reference links https://rt.cpan.org/Public/Bug/Display.html?id=85562 https://github.com/perl5-dbi/dbi/commit/401f1221311c71f760e21c98772f0f7e3cbead1d https://metacpan.org/pod/distribution/DBI/Changes#Changes-in-DBI-1.628-22nd-July-2013	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-7490`	vulnerable	2026-06-03 14:33:35.906875	Details available An issue was discovered in the DBI module before 1.632 for Perl. Using many arguments to methods for Callbacks may lead to memory corruption. Published: 2020-09-11T18:37:43.000Z Updated: 2024-08-06T18:09:16.980Z Open on db.gcve.eu Reference links https://metacpan.org/pod/distribution/DBI/Changes#Changes-in-DBI-1.632-9th-Nov-2014 https://github.com/perl5-dbi/dbi/commit/a8b98e988d6ea2946f5f56691d6d5ead53f65766 https://rt.cpan.org/Public/Bug/Display.html?id=86744#txn-1880941 https://usn.ubuntu.com/4509-1/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.