IBM Support

LI73361: CRASH DUE TO MEMORY OVERWRITE WHEN CONNECTING USER BELONG TO MORE THAN 255 GROUPS

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • A memory overwrite leading to a crash can occur if a user
    belongs to more than 255 groups. e.g. with nested groups in
    ldap.
    
    A typical stack trace may show the following functions  :
    
    sqlrlc_db_initialize_array_element
    sqlrlc_sda_request_auths
    sqlrlcRequestRolelistsForAuthid
    ...
    
    Although it is possible that the memory overwrite affected other
    areas of memory as well which may lead to other ( random ) crash
    signatures.
    

Local fix

  • ensure that all userids connecting to the database belong to
    fewer than 255 groups.
    

Problem summary

  • Users affected : users having nested groups in ldap
    Problem summary : a crash can occur if users belong to a large
    number of groups.
    Problem conclusion : The fix will prevent a memory overwrite
    which lead to the crash
    

Problem conclusion

  • This problem was first fixed in V9.5 fixpak 2
    

Temporary fix

Comments

APAR Information

  • APAR number

    LI73361

  • Reported component name

    DB2 UDE ESE LIN

  • Reported component ID

    5765F4104

  • Reported release

    950

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2008-04-22

  • Closed date

    2008-09-01

  • Last modified date

    2008-09-01

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    DB2 UDE ESE LIN

  • Fixed component ID

    5765F4104

Applicable component levels

  • R950 PSY

       UP

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSEPGG","label":"DB2 for Linux, UNIX and Windows"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"950","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]

Document Information

Modified date:
01 September 2008