FEDORA-2020-f30298614a created by ppisar a month ago for Fedora 31
stable

This release fixes CVE-2020-14392 (a memory corruption in XS functions when Perl stack is reallocated), CVE-2019-20919 (a NULL profile dereference in dbi_profile()), a documentation that old API functions are vulnerable to an overflow, and CVE-2020-14393 (a buffer overlfow on an overlong DBD class name). It also adds a missing dependency on FileHandle Perl module.

How to install

sudo dnf upgrade --advisory=FEDORA-2020-f30298614a

This update has been submitted for testing by ppisar.

a month ago

This update's test gating status has been changed to 'ignored'.

a month ago

This update's test gating status has been changed to 'waiting'.

a month ago

This update's test gating status has been changed to 'ignored'.

a month ago

This update has been pushed to testing.

a month ago

ppisar edited this update.

a month ago

This update can be pushed to stable now if the maintainer wishes

a month ago

This update has been submitted for stable by ppisar.

a month ago

This update has been pushed to stable.

a month ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
a month ago
in testing
a month ago
in stable
a month ago
modified
a month ago
BZ#1877402 CVE-2020-14392 perl-dbi: Memory corruption in XS functions when Perl stack is reallocated
0
0
BZ#1877403 CVE-2020-14392 perl-DBI: Memory corruption in XS functions when Perl stack is reallocated [fedora-all]
0
0
BZ#1877405 CVE-2019-20919 perl-dbi: NULL profile dereference in dbi_profile()
0
0
BZ#1877406 CVE-2019-20919 perl-DBI: NULL profile dereference in dbi_profile() [fedora-all]
0
0
BZ#1877409 CVE-2020-14393 perl-dbi: Buffer overflow on an overlong DBD class name
0
0
BZ#1877410 CVE-2020-14393 perl-DBI: Buffer overlfow on an overlong DBD class name [fedora-all]
0
0
BZ#1877421 perl-dbi: Old API functions vulnerable to overflow
0
0
BZ#1877423 perl-DBI: Old API functions vulnerable to overflow [fedora-all]
0
0

Automated Test Results