CVE-2009-1341 — Vulnetix

Try Vulnetix Request Demo

CVE-2009-1341 PUBLISHED CVSS 5 MEDIUM

Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.

EPSS 6.47% · 91.0th percentile

Risk Scores

CVSS v2.0

5

EPSS Score

6.47%

91.0th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
debian	libdbd-pg-perl	0, 0.1, 0.2

Timeline

Apr 30, 2009 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

RHSA-2009:1067 vendor-advisory
34757 vdb
http://security.debian.org/pool/updates/main/libd/libdbd-pg-perl/libdbd-pg-perl_1.49-2+etch1.diff.gz url
https://launchpad.net/bugs/cve/2009-1341 url
34909 third-party-advisory
RHSA-2009:0479 vendor-advisory
35685 third-party-advisory
oval:org.mitre.oval:def:9680 vdb
http://cpansearch.perl.org/src/TURNSTEP/DBD-Pg-2.13.1/Changes url
DSA-1780 vendor-advisory
SUSE-SR:2009:012 vendor-advisory
35058 third-party-advisory
http://rt.cpan.org/Public/Bug/Display.html?id=21392 url
libdbdpgperl-dequotebytea-dos(50387) vdb
https://nvd.nist.gov/vuln/detail/CVE-2009-1341 advisory

Open in Interactive Console →