IBM DB2 is shipped as a component of WebSphere Remote Server. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin.
For vulnerability details, see the security bulletin** **IBM DB2 LUW contains a denial of service vulnerability using a SELECT statement with subquery containing the AVG OLAP function on Oracle compatible database (CVE-2016-0215).
Principal Product and Version(s)
| Affected Supporting Product and Version
—|—
WebSphere Remote Server version 7.1, 7.1.1, 7.1.2, 8.5 | IBM DB2 Workgroup Server Edition
9.7, 9.8, 10.1, 10.5