IBM Support

Resource Info: Security vulnerabilities fixed in DB2 V9.7 Fix Pack 6.

Technical Blog Post


Abstract

Resource Info: Security vulnerabilities fixed in DB2 V9.7 Fix Pack 6.

Body

Two new Security Vulnerabilities fixed in V9.7 FP6:

Security Bulletin : Unauthorized file access in the DB2 XML feature

The fix for this vulnerability is available for download for DB2 release V9.7 Fix Pack 6. 

  • For V9.5 and V9.8, the fix is planned to be made available in future fix packs.
  • For V9.1, the vulnerability is not applicable.
Release APAR Download URL
V9.5 IC81461 Not yet available. Please contact technical support
V9.7 FP6 IC81462 /support/pages/node/311491
V9.8 IC81839 Not available. Please contact technical support


Security Bulletin: DB2 Denial of service vulnerabililty in DRDA

The fix for this vulnerability is available for download for DB2 release V9.7 Fix Pack 6. 

  • The vulnerability is not applicable to DB2 V9.1, V9.5 and V10.1.
Release APAR Download URL
V9.7 FP6 IC82234 /support/pages/node/311491
V9.8 IC82367 Not available. Please contact technical support

[{"Business Unit":{"code":"BU029","label":"Data and AI"}, "Product":{"code":"SSEPGG","label":"DB2 for Linux, UNIX and Windows"},"Component":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"","Edition":""}]

UID

ibm13287061