Strix
26.1K

CVE-2009-1341

UnknownEPSS 1.97%

Last modified

CVE-2009-1341 is a vulnerability of currently unknown severity. Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.. EPSS estimates a 1.97% chance of exploitation in the next 30 days.

Description

Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.

Metrics

EPSS Probability
1.97%

77.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
DebianLibdbd-Pg-Perl<= 1.4.9
DebianLibdbd-Pg-Perl0.1
DebianLibdbd-Pg-Perl0.2
DebianLibdbd-Pg-Perl0.3
DebianLibdbd-Pg-Perl0.4
DebianLibdbd-Pg-Perl0.5
DebianLibdbd-Pg-Perl0.51
DebianLibdbd-Pg-Perl0.52
DebianLibdbd-Pg-Perl0.61
DebianLibdbd-Pg-Perl0.62
DebianLibdbd-Pg-Perl0.63
DebianLibdbd-Pg-Perl0.64
DebianLibdbd-Pg-Perl0.65
DebianLibdbd-Pg-Perl0.66
DebianLibdbd-Pg-Perl0.67
DebianLibdbd-Pg-Perl0.68
DebianLibdbd-Pg-Perl0.69
DebianLibdbd-Pg-Perl0.70
DebianLibdbd-Pg-Perl0.71
DebianLibdbd-Pg-Perl0.72
DebianLibdbd-Pg-Perl0.73
DebianLibdbd-Pg-Perl0.80
DebianLibdbd-Pg-Perl0.81
DebianLibdbd-Pg-Perl0.82
DebianLibdbd-Pg-Perl0.83
DebianLibdbd-Pg-Perl0.84
DebianLibdbd-Pg-Perl0.85
DebianLibdbd-Pg-Perl0.86
DebianLibdbd-Pg-Perl0.87
DebianLibdbd-Pg-Perl0.88
DebianLibdbd-Pg-Perl0.89
DebianLibdbd-Pg-Perl0.90
DebianLibdbd-Pg-Perl0.91
DebianLibdbd-Pg-Perl0.92
DebianLibdbd-Pg-Perl0.93
DebianLibdbd-Pg-Perl0.94
DebianLibdbd-Pg-Perl0.95
DebianLibdbd-Pg-Perl0.96
DebianLibdbd-Pg-Perl0.97
DebianLibdbd-Pg-Perl0.98
DebianLibdbd-Pg-Perl0.99
DebianLibdbd-Pg-Perl1.0.0
DebianLibdbd-Pg-Perl1.0.1
DebianLibdbd-Pg-Perl1.2.0
DebianLibdbd-Pg-Perl1.2.1
DebianLibdbd-Pg-Perl1.2.2
DebianLibdbd-Pg-Perl1.3.1
DebianLibdbd-Pg-Perl1.3.2
DebianLibdbd-Pg-Perl1.4.0
DebianLibdbd-Pg-Perl1.4.1

Showing 50 of 57 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2009-1341?
Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.
How severe is CVE-2009-1341?
Severity scoring for CVE-2009-1341 is pending analysis. The EPSS model estimates a 1.97% probability of exploitation in the next 30 days.
How do I fix CVE-2009-1341?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2009-1341?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST