|
Problem IT34755
|
Status: Closed |
Security: IBM Db2 is vulnerable to a denial of service when executing a specifically crafted select statement. (CVE-2021-29702)
|
| product: |
DB2 FOR LUW / DB2FORLUW / B10 - DB2 |
| Problem description: |
IBM Db2 may crash leading to a denial of service due to an error
when MAX(to_char()) or MIN(to_char()) exists in the select list
See Security Bulletin for details:
https://www.ibm.com/support/pages/node/6463985 |
| Problem Summary: |
****************************************************************
* USERS AFFECTED: *
* all *
****************************************************************
* PROBLEM DESCRIPTION: *
* See Error Description *
****************************************************************
* RECOMMENDATION: *
* Upgrade to Db2 11.1.4.6 or higher *
**************************************************************** |
| Local Fix: |
|
| Solution |
|
| Workaround |
****************************************************************
* USERS AFFECTED: *
* all *
****************************************************************
* PROBLEM DESCRIPTION: *
* See Error Description *
****************************************************************
* RECOMMENDATION: *
* Upgrade to Db2 11.1.4.6 or higher *
**************************************************************** |
| Comment |
Upgrade to Db2 11.1.4.6 or higher |
| Timestamps |
Date - problem reported :
Date - problem closed :
Date - last modified :
| 03.11.2020
31.03.2021
15.06.2021 |
| Problem solved at the following versions (IBM BugInfos) |
|
| Problem solved according to the fixlist(s) of the following version(s) |
