|
Problem IT00686
|
Status: Geschlossen |
SECURITY: ELEVATED PRIVILEGES WITH DB2 EXECUTABLES (CVE-2014-0907) |
| Produkt: |
DB2 FOR LUW / DB2FORLUW / A10 - DB2 |
| Problembeschreibung: |
There is a vulnerability in several DB2 executables which a
local user can exploit to gain elevated privilege.
This vulnerability does not exist on DB2 for Windows.
See security bulletin for details:
http://www.ibm.com/support/docview.wss?uid=swg21672100 |
| Problem-Zusammenfassung: |
****************************************************************
* USERS AFFECTED: *
* All DB2 systems on all Linux and Unix platforms at service *
* levels from Version 10.1 GA through to Version 10.1 Fix Pack *
* 3. *
****************************************************************
* PROBLEM DESCRIPTION: *
* See Error Description *
****************************************************************
* RECOMMENDATION: *
* See security *
* bulletin:http://www.ibm.com/support/docview.wss?uid=swg21672 *
* 100 *
**************************************************************** |
| Local-Fix: |
|
| verfügbare FixPacks: |
DB2 Version 10.1 Fix Pack 4 for Linux, UNIX, and Windows
DB2 Version 10.1 Fix Pack 3a for Linux, UNIX, and Windows
DB2 Version 10.1 Fix Pack 6 for Linux, UNIX, and Windows
|
| Lösung |
See security bulletin:
http://www.ibm.com/support/docview.wss?uid=swg21672100 |
| Workaround |
keiner bekannt / siehe Local-Fix |
| Weitere Daten |
Datum - Problem gemeldet :
Datum - Problem geschlossen :
Datum - der letzten Änderung:
| 28.03.2014
25.05.2014
06.06.2014 |
| Problem behoben ab folgender Versionen (IBM BugInfos) |
|
| Problem behoben lt. FixList in der Version |
| 10.1.0.4
|
 |
