Mar 15, 2019 10:00 am EDT
Categorized: High Severity
Share this post:
There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 126.96.36.199 and earlier, 188.8.131.52 and earlier, 184.108.40.206 and earlier used by IBM® Db2®. These issues were disclosed as part of the IBM Java SDK updates in January 2019.
CVE(s): CVE-2018-1890, CVE-2019-2426, CVE-2018-12547
Affected product(s) and affected version(s):
All fix pack levels of IBM Db2 V9.7, V10.1, V10.5, and V11.1 editions on all platforms are affected.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10875132
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/152081
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/155744
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/157512