CVE-2019-20919
MEDIUM4.7EPSS 0.12%libdbi-perl - security update
Published: 9/17/2020Modified: 4/28/2026
Description
An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOK(profile), causing a NULL pointer dereference.
Affected packages (2)
- Debian/libdbi-perlfrom 0, < 1.643-1
- Debian/libdbi-perlfrom 0, < 1.636-1+deb9u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.7 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H |