home clear 64x64
en blue 200x116 de orange 200x116 info letter User
suche 36x36
Latest versionsfixlist
11.1.0.7 FixList
10.5.0.9 FixList
10.1.0.6 FixList
9.8.0.5 FixList
9.7.0.11 FixList
9.5.0.10 FixList
9.1.0.12 FixList
Have problems? - contact us.
Register for free anmeldung-x26
Contact form kontakt-x26

DB2 - Problem description

Problem IT26133 Status: Closed

SECURITY: DB2 IS VULNERABLE TO SYMBOLIC LINK ATTACK LEADING TO PRIVILEGE
ESCALATION (CVE-2018-1780)

product:
DB2 FOR LUW / DB2FORLUW / A50 - DB2
Problem description:
Db2 is affected by a symbolic link attack that can lead to a
privilege escalation to root. See Security Bulletin for more
details: http://www.ibm.com/support/docview.wss?uid=ibm10733939
Problem Summary:
****************************************************************
* USERS AFFECTED:                                              *
* ALL                                                          *
****************************************************************
* PROBLEM DESCRIPTION:                                         *
* See Error Description                                        *
****************************************************************
* RECOMMENDATION:                                              *
* Upgrade to Db2 10.5 Fix Pack 11 or higher                    *
****************************************************************
Local Fix:


Solution




Workaround


not known / see Local fix


BUG-Tracking


forerunner  : IT26129 
follow-up : 


Timestamps


Date  - problem reported    :
Date  - problem closed      :
Date  - last modified       :

30.08.2018
25.02.2020
25.02.2020


Problem solved at the following versions (IBM BugInfos)




Problem solved according to the fixlist(s) of the following version(s)