==========================================================================
Ubuntu Security Notice USN-4503-1
September 16, 2020

libdbi-perl vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS
– Ubuntu 14.04 ESM
– Ubuntu 12.04 ESM

Summary:

Perl DBI module could be made to execute arbitrary code if it received a
specially manipulated call.

Software Description:
– libdbi-perl: Perl Database Interface (DBI)

Details:

It was discovered that Perl DBI module incorrectly handled certain calls.
An attacker could possibly use this issue to execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
libdbi-perl 1.640-1ubuntu0.1

Ubuntu 16.04 LTS:
libdbi-perl 1.634-1ubuntu0.1

Ubuntu 14.04 ESM:
libdbi-perl 1.630-1ubuntu0.1~esm1

Ubuntu 12.04 ESM:
libdbi-perl 1.616-1ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4503-1
CVE-2020-14392

Package Information:
https://launchpad.net/ubuntu/+source/libdbi-perl/1.640-1ubuntu0.1
https://launchpad.net/ubuntu/+source/libdbi-perl/1.634-1ubuntu0.1
—–BEGIN PGP SIGNATURE—–
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=+yKM
—–END PGP SIGNATURE—–
—

 

==========================================================================
Ubuntu Security Notice USN-4509-1
September 17, 2020

libdbi-perl vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 14.04 ESM

Summary:

Several security issues were fixed in Perl DBI module.

Software Description:
– libdbi-perl: Perl Database Interface (DBI)

Details:

It was discovered that Perl DBI module incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2013-7490)

It was discovered that Perl DBI module incorrectly handled certain files.
An attacker could possibly use this issue to expose sensitive information.
(CVE-2014-10401)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
libdbi-perl 1.630-1ubuntu0.1~esm4

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4509-1
CVE-2013-7490, CVE-2014-10401
—–BEGIN PGP SIGNATURE—–

iQIzBAABCgAdFiEEf+ebRFcoyOoAQoOeRbznW4QLH2kFAl9itsMACgkQRbznW4QL
H2lm2g//YMyBicLt7SH+BrxEx4qUfv2jnq9zk1ZTLNd7+BghlmMf1xwLKmHqXeK2
wCpI/eOaqyvAWeaUOpUG9jLm+/AruApltPnXKLVzbbOb+MvYX1LJascUrlq5C+6w
8WXRVQnThQqmbQ/RFrxTTNVL65T74NB6hXGwSw6Xk+g78TshUKK6cIGdQ+kzxMmf
W9JBgoq4O2UQ2rBA9AF4LCHzppFpYrInBkok93xWVKPC4Air285dkI7QpRLjrJi+
qme76Zdg1gXKqiaqAPEqbsOCFIs5ysgiLzQS9uOi0qbnmUKquobpXLTeNumE79yX
uy/z6LGs/hM96463Px+q5lsXFDSBA1ZqRGFTkHZJfuHG1ZYUVR3rwjpCt/EW2D9J
yzGw8WEiH1Y75+D4HvvP1EkP4W1fsrYXG2HWoz+KaxFE0LBBhsWBB/PX3CaVNsuD
QJiu8M/13z/IaFsFbmwAlU206Byc8tFKjgkkFFAzpgTleHGJEspGLmSNR905SAGq
htwXgYUt+1Wd0lfohiKxJZFhNzdY7AyehsZaem5hX3dsE9xZngic8oZuSHg7Q1Dm
zEhhCUFfEiqvkXIJL50JwmTYZpYHxXtGTsjn3KQSLr8wqOII9KLgBMevlFBnvBP8
XDzQ5TnRgdvPS8UUS6IHXovv7/04H4qVo/+9owE/zr5xHeqjiJw=
=VUUY
—–END PGP SIGNATURE—–
—