Bug 2498112 - CVE-2026-14739 perl-DBI: DBI: Heap overflow when preparsing SQL statements with excessive placeholders [fedora-all]
Summary: CVE-2026-14739 perl-DBI: DBI: Heap overflow when preparsing SQL statements wi...
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Fedora
Classification: Fedora
Component: perl-DBI
Version: rawhide
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: ---
Assignee: Jitka Plesnikova
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard: {"flaws": ["3f6115ba-08dc-4986-af21-c...
Depends On:
Blocks: CVE-2026-14739
TreeView+ depends on / blocked
 
Reported: 2026-07-08 15:09 UTC by Rohit Keshri
Modified: 2026-07-10 00:53 UTC (History)
5 users (show)

Fixed In Version: perl-DBI-1.650-1.fc45 perl-DBI-1.650-1.fc44
Clone Of:
Environment:
Last Closed: 2026-07-10 00:53:24 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)

Description Rohit Keshri 2026-07-08 15:09:09 UTC
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.

DBI versions before 1.650 for Perl have a heap overflow when preparsing SQL statements with an extreme number of placeholders.

The fix for CVE-2026-10879 did not allocate enough memory to handle approximately 1.2-million placeholders.

DBI version 1.650 sets a hard limit of 99,999 placeholders.

Comment 1 Fedora Update System 2026-07-09 06:59:31 UTC
FEDORA-2026-9fdda5018f (perl-DBI-1.650-1.fc44) has been submitted as an update to Fedora 44.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-9fdda5018f

Comment 2 Fedora Update System 2026-07-09 06:59:49 UTC
FEDORA-2026-71d7e4d1da (perl-DBI-1.650-1.fc43) has been submitted as an update to Fedora 43.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-71d7e4d1da

Comment 3 Fedora Update System 2026-07-10 00:53:24 UTC
FEDORA-2026-9fdda5018f (perl-DBI-1.650-1.fc44) has been pushed to the Fedora 44 stable repository.
If problem still persists, please make note of it in this bug report.


Note You need to log in before you can comment on or make changes to this bug.