High Severity

Security Bulletin: IBM® Db2® is vulnerable to a buffer overflow (CVE-2020-4701)

Share this post:

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges.

Affected product(s) and affected version(s):

All fix pack levels of IBM Db2 V10.5, V11.1, and V11.5 editions on all platforms are affected.  IBM Db2 V10.1 and 9.7 are not affected.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6370025

More stories

Security Bulletin: Multiple Vulnerabilities in PostgreSQL Affect IBM Connect:Direct Web Service

May 17, 2021 8:00 pm EDT | High Severity

There are multiple vulnerabilities in PostgreSQL versions used by IBM Connect:Direct Web Service. IBM Connect:Direct Web Services has addressed the applicable CVEs. ...read more

Security Bulletin: OpenSSL Vulnerabilities Affect IBM Sterling Connect:Express for UNIX (CVE-2021-3449, CVE-2021-3450)

May 17, 2021 8:00 pm EDT | High Severity

Security vulnerabilities have been disclosed on 25h March 2021 by the OpenSSL Project. OpenSSl is used by IBM Sterling Connect:Express for UNIX. IBM Sterling Connect:Express for UNIX has addressed the applicable CVE. ...read more

Security Bulletin: Multiple Apache Tomcat Vulnerabilities Affect IBM Control Center

May 14, 2021 8:02 pm EDT | High Severity

Multiple Apache Tomcat vulnerabilities affect IBM Control Center. See vulnerability details for descriptions. ...read more