 |
Software > Information Management > DB2 Product Family >
|
|
|
|
Security and HIPER APARs fixed in DB2 for Linux, UNIX, and Windows Version 9.1 Fix Pack 6a
|
| | | Abstract | Fix Pack 6a for DB2 V9.1 is now available which includes fixes for some serious vulnerabilities. These fixes, where applicable, are also available in Fixpak 3 for DB2 Version 9.5, Fix Pack 6 for DB2 Version 9.1, and FixPak 17 for DB2 Universal Database™ (DB2 UDB) Version 8.1 (also known as FixPak 10 for DB2 UDB Version 8.2),
IBM® recommends that you review the vulnerability descriptions and deploy one of the above fix packs to remove the vulnerabilities on your affected DB2 installations. | | | | | | Content | There are few number of serious vulnerabilities found and resolved in this fixpak.
The affected DB2 UDB for Linux, UNIX, and Windows Version 8.1 and 8.2, Version 9.1 and Version 9.5 products are: - DB2 Enterprise Server Edition
- DB2 Workgroup Server (all Editions)
- DB2 Express Server (all Editions)
- DB2 Personal Edition
- DB2 Connect Server (all Editions)
DB2 Client component and DB2 products or components other than those listed above are not affected.
Due to the complexity of the fixes required to eliminate the reported service vulnerabilities, it is not feasible to retrofit the same fixes into earlier DB2 UDB Version 8 and DB2 Version 9 fix packs, including all of the special builds of the above DB2 database products that precede DB2 UDB Version 8.1 FixPak 17, DB2 Version 9.1 Fix Pack 6 and DB2 Version 9.5 Fix Pack 3.
Here is a list of HIPER APARs included in these fix packs of which you should be aware.
HIPER APARs
V8 FP17 | V9.1 FP6a | V9.5 FP3a | ABSTRACT |  | | | UNEXPECTED RESULTS WHEN SELECTING FROM A VIEW WITH OUTER JOIN AFTER UPGRADE TO FP6 | | | | POSSIBLE INCORRECT RESULTS WHEN REWRITING NOT EXISTS SUBQUERY | | | | QUERY HAVING A JOIN OVER A RANGE PARTITION TABLE MAY GET INCORRECT RESULT. |
DB2 fix packs for all supported versions can be downloaded at the following site: http://www.ibm.com/support/docview.wss?rs=71&uid=swg27007053
The DB2 team will continue to have a strong focus on delivering timely fixes for newly discovered security vulnerabilities along with information that helps our customers to decide on an appropriate course of action. The DB2 team regrets the inconvenience that this issue is causing to you, our customers. We believe that our actions are the most prudent steps to address your concerns and remain open to suggestions on how to further improve our processes.
My Notifications
Sign-up to receive e-mail notification of changes to this document. 1. Sign in to My Notifications
2. select Subscribe tab
3. select "Information Management" from the Software column
4. select the check box for "DB2 9 for Linux, UNIX and Windows" click the Continue button. 5. select the check box for "Flashes" and all other document types Done! It's that easy!
For more information about My Notifications please click on
| | | | | | | | Cross Reference information | | Segment | Product | Component | Platform | Version | Edition | | Data & Information Management | DB2 Connect | | AIX, HP-UX, Linux, Solaris, Windows | 9.1 | All Editions |
| | |
|
|
| IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml. |
|
|
|
|
| Please take a moment to complete this form to help us better serve you. |
|
 |
|
|
|
|
|
|
| Product categories: |
|
| | Software | |
| | Data Management | |
| | Database Management Tools | |
| | DB2 Connect | |
|
| Operating system(s): |
| |
AIX, HP-UX, Linux, Solaris, Windows
|
|
| Software version: |
| |
9.1
|
|
| Software edition: |
| |
Enterprise Server, Workgroup Server
|
|
| Reference #: |
| |
1363936
|
|
| IBM Group: |
| | Software Group |
|
| Modified date: |
| | 2009-03-12 |
|
|
