CVE-2019-20919

Published September 17th, 2020

View on NVD ↗

CVSS v3

4.7

MEDIUM

CVSS v2

1.9

LOW

Affected

PROJECT

Description

An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOK(profile), causing a NULL pointer dereference.

perl5-dbi/dbi

DBI - The Perl 5 Database Interface

GitHub