DB2 LUW is affected by multiple vulnerabilities in IBM® General Parallel File System, Version 3.5 and 4.1.1 that is used by DB2® pureScale™ Feature on AIX and Linux.
CVE(s): CVE-2016-2984, CVE-2016-2985
Affected product(s) and affected version(s):
All fix pack levels of IBM DB2 V10.1, V10.5 and V11.1 editions listed below, running on AIX and Linux are affected, and only for those customers who have DB2® pureScale™ Feature installed.
IBM DB2 Enterprise Server Edition
IBM DB2 Workgroup Server Edition
IBM DB2 Advanced Enterprise Server Edition
IBM DB2 Advanced Workgroup Server Edition
IBM DB2 Direct Advanced Edition
IBM DB2 Direct Standard Edition
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2dpbjkn
X-Force Database: http://ift.tt/2aDMcrO
X-Force Database: http://ift.tt/2arxFw4
from IBM Product Security Incident Response Team http://ift.tt/2cX6R9Y
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.