Home Unlabelled IBM Security Bulletin: IBM® DB2® contains a denial of service vulnerability in scalar functions (CVE-2018-1977)

IBM Security Bulletin: IBM® DB2® contains a denial of service vulnerability in scalar functions (CVE-2018-1977)

By
Thursday, December 13, 2018
Read
Add Comment

Dec 13, 2018 9:01 am EST

Categorized: Medium Severity

Share this post:

IBM DB2 contains a denial of service vulnerability on Linux System z® platform. A remote, authenticated DB2 user could exploit this vulnerability by executing a specially-crafted SQL statement with the TRUNCATE scalar functions. This could result in a DB2 server crash; if so, the server would need to be restarted.

CVE(s): CVE-2018-1977

Affected product(s) and affected version(s):

All fix pack levels of IBM Db2 V11.1 editions on Linux System z® platforms are affected. Other platforms are not affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10788089
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/154032



from IBM Product Security Incident Response Team https://ift.tt/2RXsgDk
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us