Ubuntu Security Notice 4509-1 - It was discovered that Perl DBI module incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. It was discovered that Perl DBI module incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive information.
a2be9aca8b029983d55c57011b52eca4715053169e13c19de3de640965043602
=========================================================================
Ubuntu Security Notice USN-4509-1
September 17, 2020
libdbi-perl vulnerabilities
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 ESM
Summary:
Several security issues were fixed in Perl DBI module.
Software Description:
- libdbi-perl: Perl Database Interface (DBI)
Details:
It was discovered that Perl DBI module incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2013-7490)
It was discovered that Perl DBI module incorrectly handled certain files.
An attacker could possibly use this issue to expose sensitive information.
(CVE-2014-10401)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 ESM:
libdbi-perl 1.630-1ubuntu0.1~esm4
In general, a standard system update will make all the necessary changes.
References:
https://usn.ubuntu.com/4509-1
CVE-2013-7490, CVE-2014-10401