[Bug 1207216] New: perl-DBD-Firebird: buffer overflow in error messages handling in IB_SQLtimeformat()

bugzilla at redhat.com bugzilla at redhat.com
Mon Mar 30 12:53:14 UTC 2015 

https://bugzilla.redhat.com/show_bug.cgi?id=1207216

            Bug ID: 1207216
           Summary: perl-DBD-Firebird: buffer overflow in error messages
                    handling in IB_SQLtimeformat()
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: medium
          Priority: medium
          Assignee: security-response-team at redhat.com
          Reporter: vkaigoro at redhat.com
                CC: perl-devel at lists.fedoraproject.org,
                    redhat-bugzilla at linuxnetz.de



A buffer overflow has been fixed in DBD-Firebird, a DBI driver for
Firebird RDBMS server, in version 1.19:

 [1] https://metacpan.org/source/DAM/DBD-Firebird-1.19/Changes
 [2] https://bugs.debian.org/780925

Upstream patch:
https://anonscm.debian.org/cgit/pkg-perl/packages/libdbd-firebird-perl.git/commit/?id=0416e0b26c8f8683382fb4d93b6fc343f5828f06

CVE request: http://seclists.org/oss-sec/2015/q1/1047

-- 
You are receiving this mail because:
You are on the CC list for the bug.

More information about the perl-devel mailing list