Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Product(s) | Version(s) |
---|---|
IBM Security Verify Governance, Identity Manager software component | All |
Principal Product and Version(s) | Affected Supporting Product and Version(s) | Affected Supporting Product Security Bulletin |
---|---|---|
ISVG 10.0.0.3 | DB2 V9.7, V10.1, V10.5, V11.1, V11.5 | Security Bulletin: IBM® Db2® is vulnerable to an information disclosure (CVE-2021-20579) |
ISVG 10.0.0.3 | DB2 V10.1, V10.5, V11.1, V11.5 | [Security Bulletin: IBM® Db2® is vulnerablVe to a denial of service as the server terminates abnormally when executing a specially crafted SELECT statement. (CVE-2021-29703) |
ISVG 10.0.0.3 |
| DB2 V9.7, V10.1, V10.5, V11.1, V11.5| Security Bulletin: Under special circumstances, Db2 is vulnerable to a denial of service during drop table (CVE-2021-29777)
ISVG 10.0.0.3| DB2 V11.5| Security Bulletin: IBM® Db2® could allow a local user to access and change the configuration of DB2 due to a race condition via a symbolic link. (CVE-2020-4885)
ISVG 10.0.0.3| DB2 V11.5| Security Bulletin: IBM® Db2® could allow an authenticated user to overwrite arbirary files due to improper group permissions. (CVE-2020-4945)
None