High Severity

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect IBM® Db2®.

Share this post:

There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7.0.10.35 and earlier, 7.1.4.35 and earlier, 8.0.5.27 and earlier used by IBM® Db2®. These issues were disclosed as part of the IBM Java SDK updates in January 2019.

CVE(s): CVE-2018-1890, CVE-2019-2426, CVE-2018-12547

Affected product(s) and affected version(s):
All fix pack levels of IBM Db2 V9.7, V10.1, V10.5, and V11.1 editions on all platforms are affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10875132
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152081
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155744
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/157512

More stories

IBM Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM

May 18, 2019 9:02 am EDT | High Severity

PowerKVM is affected by vulnerabilities in the Linux Kernel. IBM has now addressed these vulnerabilities. CVE(s): CVE-2018-1000026, CVE-2018-18559, CVE-2018-14634, CVE-2018-14633, CVE-2018-13405, CVE-2018-10940, CVE-2018-10883, CVE-2018-10881, CVE-2018-10879, CVE-2018-10878, CVE-2018-8781, CVE-2018-7757, CVE-2018-7740, CVE-2018-5803, CVE-2018-5344, CVE-2018-1130, CVE-2018-1094, CVE-2018-1092, CVE-2017-18344, CVE-2017-18232, CVE-2017-18208, CVE-2017-17805, CVE-2017-10661, CVE-2017-0861, CVE-2016-4913, CVE-2015-8830, CVE-2019-6974, CVE-2018-17972, CVE-2018-9568 Affected product(s) and affected version(s): PowerKVM 3.1 Refer to the ...read more


IBM Security Bulletin: A vulnerability in OpenWSMAN affects PowerKVM

May 18, 2019 9:01 am EDT | High Severity

PowerKVM is affected by a vulnerability in OpenWSMAN. IBM has now addressed this vulnerability. CVE(s): CVE-2019-3816 Affected product(s) and affected version(s): PowerKVM 3.1 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10879789X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158792 ...read more


IBM Security Bulletin: Vulnerabiliies in libssh2 affect PowerKVM

May 18, 2019 9:01 am EDT | High Severity

PowerKVM is affected by vulnerabilities in libssh2. IBM has now addressed these vulnerabilities. CVE(s): CVE-2019-3863, CVE-2019-3857, CVE-2019-3856, CVE-2019-3855 Affected product(s) and affected version(s): PowerKVM 3.1 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10878989X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158347X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158341X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158340X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158339 ...read more