IY88158: SECURITY: EXECUTE AUTHORITY ON A METHOD MAY PERSIST AFTER REVOKE.

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • This is security. After revoking privileges on a method a
    user may still be able to execute the method until the routine
    auth cache is flushed (database deactivated).
    
    Still able to execute method after privileges are revoked.
    

Local fix

  • Bring database down after revoking privileges on methods.
    

Problem summary

  • Users affected:
    user using methods
    
    Problem Description:
    This is security. After revoking privileges on a method a
    user may still be able to execute the method until the routine
    auth cache is flushed (database deactivated).
    
    Still able to execute method after privileges are revoked.
    
    Problem Summary:
    SECURITY:EXECUTE AUTHORITY ON A METHOD MAY PERSIST AFTER REVOKE.
    

Problem conclusion

  • Problem was first fixed in Version 9 FixPak s061104
    

Temporary fix

Comments

APAR Information

  • APAR number

    IY88158

  • Reported component name

    DB2 UDB ESE AIX

  • Reported component ID

    5765F4100

  • Reported release

    910

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    YesHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2006-08-15

  • Closed date

    2006-12-23

  • Last modified date

    2007-07-26

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    IY88226

Fix information

  • Fixed component name

    DB2 UDB ESE AIX

  • Fixed component ID

    5765F4100

Applicable component levels

  • R820 PSY

       UP

  • R910 PSY

       UP



Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

DB2 for Linux, UNIX and Windows

Software version:

910

Reference #:

IY88158

Modified date:

2007-07-26

Translate my page

Machine Translation

Content navigation