===================================================================== CERT-Renater Note d'Information No. 2009/VULN535 _____________________________________________________________________ DATE : 17/12/2009 HARDWARE PLATFORM(S) : / OPERATING SYSTEM(S) : Windows, Unix, Linux running IBM DB2. ====================================================================== http://www-01.ibm.com/support/docview.wss?uid=swg21412902 ______________________________________________________________________ Security Vulnerabilities and HIPER APARs fixed in DB2 for Linux, UNIX, and Windows Version 9.5 Fix Pack 5 Abstract Fix Pack 5 for DB2 V9.5 is now available which includes fixes for some security vulnerabilities and HIPER APARs. These fixes, where applicable, are also available in Fix Pack 18 for DB2 Version 8, Fix Pack 8 for DB2 Version 9.1 and Fix Pack 1 for DB2 Version 9.7 IBM recommends that you review the APAR descriptions and deploy one of the above fix packs to correct them on your affected DB2 installations. Content A set of security vulnerabilities was discovered in some DB2 database products. These vulnerabilities were analyzed by the DB2 development organization and a set of corresponding fixes was created to address the reported issues. IBM is not currently aware of any externally reported incidents where production DB2 installations have been compromised due to these issues. The affected DB2 UDB for Linux, UNIX, and Windows products are: * DB2 Enterprise Server Edition * DB2 Workgroup Server (all Editions) * DB2 Express Server (all Editions) * DB2 Personal Edition * DB2 Connect Server (all Editions) DB2 Client component and DB2 products or components other than those listed above are not affected. Due to the complexity of the fixes required to eliminate the reported service issues, it is not feasible to retrofit the same fixes into earlier DB2 UDB Version 8, DB2 Version 9.1 and DB2 Version 9.5 fix packs. The specifics of the Security APARs incorporated into the above DB2 fix packs can be found in the following table: HIPER APARs V8 | V9.1 | V9.5 | V9.7 | ABSTRACT FP18 | FP8 | FP5 | FP1 | - ------------------------------------------------------------------------------ | | IZ55987 | IC62219 | DYNAMIC SQL STATEMENTS WITH HOST | | | | VARIABLES, USING A REOPT ALWAYS | | | | OPTIMIZER GUIDELINE, MAY RETURN | | | | WRONG RESULTS - ------------------------------------------------------------------------------ | | IZ47730 | IC64066 | Incorrect result with multiple IN | | | | list to join (GENROW) plans via | | | | transivity on SMP and MPP | | | | environment - ------------------------------------------------------------------------------ | IZ53555 | IZ55552 | IC62088 | LOAD UTILITY MAY MARK A ROW BIT | | | | INCORRECTLY CAUSING INDEX SCAN | | | | TO RETURN INCORRECT RESULTS - ------------------------------------------------------------------------------ | | IC63414 | IC63415 | OUTER JOIN OPERATION MAY RETURN | | | | INCORRECT RESULTS WITH A PREDICATE | | | | WITH A SUBQUERY RETURNING NOT MORE | | | | THAN ONE ROW - ------------------------------------------------------------------------------ | | IZ62791 | IC63668 | INCORRECT RESULTS WHEN ORDERED | | | | COLUMN GROUP OR PREDICATE CAN BE | | | | USED AS INDEX KEYS - ------------------------------------------------------------------------------ | IC61781 | IC64825 | IC64767 | ALTER BUFFERPOOL REDUCE OR STMM | | | | MAY HANG IF SET WRITE SUSPEND HAD | | | | BEEN ISSUED - ------------------------------------------------------------------------------ IC64680 | IC64539 | IC64540 | IC64541 | SQLSETSTMTATTRW(SQL_ATTR_CHAINING_END) | | | | RETURNS 0, EVEN WHEN ONE OF THE | | | | PREVIOUS CHAINED STATEMENTS | | | | FAILED - ------------------------------------------------------------------------------ | | IZ46535 | | DATA REDISTRIBUTION WITH NOT | | | | ROLLFORWARD RECOVERABLE PARAMETER | | | | MIGHT CAUSE CORRUPTION IN TABLES | | | | ENABLED FOR ROW COMPRESSION - ------------------------------------------------------------------------------ | | IZ52573 | | USE OF ESCAPE SET TO NULL MIGHT | | | | EITHER RETURN INCORRECT RESULT OR | | | | CAUSE INSTANCE TRAP IN CULTURALLY | | | | CORRECT DATABASE - ------------------------------------------------------------------------------ DB2 fix packs for all supported versions can be downloaded at the following site: http://www.ibm.com/support/docview.wss?rs=71&uid=swg27007053 The DB2 team will continue to have a strong focus on delivering timely fixes for newly discovered issues along with information that helps our customers to decide on an appropriate course of action. The DB2 team regrets the inconvenience that these issues are causing to you, our customers. We believe that our actions are the most prudent steps to address your concerns and remain open to suggestions on how to further improve our processes. ====================================================================== ========================================================= Les serveurs de référence du CERT-Renater http://www.urec.fr/securite http://www.cru.fr/securite http://www.renater.fr ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 151 bd de l'Hopital | fax : 01-53-94-20-41 + + 75013 Paris | email: certsvp@renater.fr + =========================================================