Article

IBM issues fix for DB2 UDB flaw

Edward Hurley, Editor

IBM plugged a security flaw in IBM's DB2 Universal Database this week.

The vulnerability, which could allow people already with access to the database to elevate their privileges, is only found in DB2 Universal Database for Linux, Windows and Unix, IBM said in a security advisory. Specifically, DB2 Universal Database version 8.1.4 through 8.1.9 and version 8.2.0 through 8.2.2 are affected.

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

For more information

DB2 V8 = better security

Featured Topic: Physical security

z/OS versions are not affected but companies running DB2 Universal Database for Linux on the mainframe are vulnerable.

The following products have the flaw: DB2 UDB Enterprise Server Edition, DB2 UDB Workgroup Server (all Editions), DB2 UDB Express Server (all Editions) and DB2 UDB Personal Edition.

According to the French Security Incident Response Team, a security research firm, the flaw could allow database users access to insert, update or delete contents of certain tables even if they don't have the privileges to do so. The flaw's potential for widespread exploit by something like a worm or malicious hackers is virtually nil because it cannot be remotely exploited by attackers.

Companies should, however, consider patching their systems sooner rather than later. IBM has created a fix for the flaw. Users would need to install a FixPak. To determine, whether you are affected or to download the proper FixPak, click here.

Related Topics: IBM DB2 management, VIEW ALL TOPICS

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- denormalization

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Business Analytics
Data Management UK
Content Management
Oracle
SAP
SOA
SQL Server

Business Analytics
- Marketing and advertising remain sweet spots for big data technology
  
  Marketing and advertising are the sweet spots for big data, but those who serve up marketing insights and ad space will need to evolve to survive.
- Strategies for de-cluttering business intelligence dashboard designs
  
  Expert Brian Jordan shows business intelligence managers how to avoid developing dashboards that overwhelm business users with too much information.
- Making mobile BI applications a reality: Key steps to take
  
  In a podcast, BI expert William McKnight discusses best practices and action items for managing deployments of mobile business intelligence tools.
DataManagement UK
- Big data roundtable webcast: gaining value from big data
  
  Roundtable discussion on business value of big data, chaired by Brian McKenna, Editor, SearchDataManagementUK, and featuring Mike Ferguson, Roxane Edjlali (Gartner), Joshua LeCure (GlaxoSmithKline).
- 2012 training courses: BI, data management, data warehousing
  
  Find out where to hone your business intelligence, data management and data warehouse skills with this list of training courses for 2012.
- Poor data quality: what is dirty data costing UK organisations?
  
  Poor data quality can have serious financial consequences for businesses. Read about the current state of data quality management at UK companies, including dirty data problems.
Content Management
- Get 'em ready: Tips for planning a SharePoint 2013 training program
  
  SharePoint is a complex application. But training business users for an upgrade to SharePoint 2013 doesn't have to be a daunting task for IT teams.
- The organization of the future: Not just hybrid IT, but hybrid people
  
  The adoption of hybrid IT approaches creates a need for executives who can both formulate business objectives and assess IT requirements.
- SharePoint technology feels growing pains as 2013 release arrives
  
  SharePoint 2013 adds new features to the collaboration software. But it comes at a time when SharePoint's value is being questioned in some quarters.
Oracle
- Domain-specific Oracle master data management
  
  Oracle master data management products are starting to merge various data management hubs, which is a help in particular vertical industries.
- Privileged user management a must for DBAs
  
  Trust, but verify. Ronald Reagan made it popular, and it's certainly relevant for DBAs in today's consolidated, virtualized IT world.
- John Webb: Why the new PeopleSoft applications are big news
  
  Lena Weiner-Bishop catches up with Oracle's vice president of PeopleSoft strategy, who explains the excitement around new PeopleSoft applications.
SAP
- Ariba Network announces QuickBooks integration
  
  At its annual conference, Ariba announced a new tool by partner Dell Boomi that lets small businesses integrate their QuickBooks accounting with the Ariba Network.
- Software license audits come in different forms, expert says
  
  Your next software license audit may be an inventory optimization exercise in disguise. Either way, the trick is to be prepared, writes one analyst.
- Sentiment analysis just part of the SAP social media vision
  
  Social media in the enterprise is in constant flux. One of SAP's top social media chiefs lays it out, from sentiment analysis to social collaboration.
SOA
- Architects can meet mobile user needs by altering mindset
  
  Smartphones, tablets and desktop computers don't just differ in screen size; they are different form factors.
- Tools and practices to create a meaningful SOA ALM process
  
  To create a meaningful SOA ALM process, architects have to remember modern apps are increasingly using components.
- Inside the world of Web APIs, the cloud and mobile technology
  
  Rob Daigneau offers his expert insights on the convergence of the cloud, mobile technology and Web APIs.
SQL Server
- Adam Machanic talks SQL Saturday
  
  We caught up with Adam Machanic, group leader of the New England SQL Server user group, at SQL Saturday Boston. Find out what he shared with us.
- SQL Server meets database application security
  
  Make sure your SQL Server is secure by studying these general guidelines for secure database applications from SQL Server expert Roman Rehak.
- xVelocity Columnstore Indexes in SQL Server 2012
  
  Curious about how xVelocity can help with your columnstore indexes? Check out this tip from Basit Farooq to find out.

All Rights Reserved,Copyright 2005 - 2013, TechTarget