CVE-2014-10401
Summary
| CVE | CVE-2014-10401 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-09-11 19:15:00 UTC |
| Updated | 2020-09-30 13:47:00 UTC |
| Description | An issue was discovered in the DBI module before 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute. |
Risk And Classification
Problem Types: CWE-732
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| USN-4509-1: Perl DBI module vulnerabilities | Ubuntu security notices | Ubuntu | UBUNTU | usn.ubuntu.com | Third Party Advisory |
| Bug #99508 for DBI: Tables will erroneously be opened in current folder if f_dir set to a relative path that does not exist | MISC | rt.cpan.org | Third Party Advisory |
| DBI::Changes - List of significant changes to the DBI - metacpan.org | MISC | metacpan.org | Release Notes, Third Party Advisory |
| Do not connect DBD::File on non-existing folder in f_dir · perl5-dbi/dbi@caedc0d · GitHub | MISC | github.com | Patch, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 179336 Debian Security Update for libdbi-perl (DLA 3035-1)
- 670585 EulerOS Security Update for perl-DBI (EulerOS-SA-2021-2343)
- 670662 EulerOS Security Update for perl-DBI (EulerOS-SA-2021-2421)
- 750545 OpenSUSE Security Update for perl-DBI (openSUSE-SU-2020:2064-1)
- 750554 OpenSUSE Security Update for perl-DBI (openSUSE-SU-2020:2051-1)