High Severity

Security Bulletin: IBM Db2® Warehouse has released a fix in response to multiple vulnerabilities found in IBM Db2®

Share this post:

IBM has released the following fix for IBM Db2® Warehouse in response to multiple vulnerabilities found in IBM Db2®.

CVE(s): CVE-2021-38931, CVE-2021-29678, CVE-2021-20373, CVE-2021-39002, CVE-2021-38926

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Db2 Warehouse All

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6541958
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/210418
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/199914
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/195521
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/213217
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/210321

More stories

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for June 2022

July 1, 2022 | High Severity

In addition to many updates of open source packages, the following security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.2-IF012 and 21.0.3-IF010. ...read more


Security Bulletin: Remote code execution vulnerability affect IBM Business Automation Workflow – CVE-2021-43138

July 1, 2022 | High Severity

IBM Business Automation Workflow is vulnerable to a remote code execution attack. ...read more


Security Bulletin: Vulnerabilities in Samba, OpenSSL, Python, and XStream affect IBM Spectrum Protect Plus (CVE-2021-20254, CVE-2021-3712, CVE-2021-43859, CVE-2022-0778, CVE-2020-25717, CVE-2021-23192, CVE-2021-3733)

June 30, 2022 | High Severity

Vulnerabilities in Samba, OpenSSL, Python, and XStream may affect IBM Spectrum Protect Plus. These vulnerabilities include bypassing security restrictions, obtaining sensitive information, denial of service, and elevation of privileges. ...read more