A buffer overflow vulnerability in prepared statements that could be possibly triggered by user supplied data was found in perl DBI driver for MySQL. Vulnerability is present in all releases at least back to versions 3.0 of the driver released in 2005.
Upstream patch: https://github.com/perl5-dbi/DBD-mysql/commit/7c164a0c86cec6ee95df1d141e67b0e85dfdefd2
Created perl-DBD-MySQL tracking bugs for this issue: Affects: fedora-all [bug 1381280]
On RHEL / Fedora, the FORTIFY_SOURCE compilation option catches this stack-based buffer overflow, and it turns a flaw which could result in arbitrary code execution into a mere crash. Our CVSS score reflects this fact.