High Severity

Security Bulletin: IBM® Db2® is vulnerable to a buffer overflow (CVE-2020-4701)

Share this post:

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges.

Affected product(s) and affected version(s):

All fix pack levels of IBM Db2 V10.5, V11.1, and V11.5 editions on all platforms are affected.  IBM Db2 V10.1 and 9.7 are not affected.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6370025

More stories

Security Bulletin: Security Vulnerabilities in GNU glibc affect IBM Cloud Pak for Data – GNU glibc (CVE-2020-1751)

Jan 13, 2021 7:02 pm EST | High Severity

Security Vulnerabilities in GNU glibc affect IBM Cloud Pak for Data - GNU glibc (CVE-2020-1751) ...read more


Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerabilities (CVE-2015-9381, CVE-2015-9382)

Jan 13, 2021 7:02 pm EST | High Severity

IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to security vulnerabilities. The vulnerabilities concerns Freetype: a remote attacker could obtain sensitive information or cause a denial of service. ...read more


Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities

Jan 13, 2021 7:02 pm EST | High Severity

IBM Security Privileged Identity Manager has addressed an issue for NTP as follows. ...read more