IBM DB2 is shipped as a component of IBM Operations Analytics Predictive Insights. IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking. Information about the security vulnerability CVE-2020-4701 has been published in a security bulletin.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Product(s) | Version(s) |
---|---|
IBM Operations Analytics Predictive Insights | All |
For more information and recommended solutions see the disclosed security bulletin: Security Bulletin: IBM® Db2® is vulnerable to a buffer overflow (CVE-2020-4701)
None