Total vulnerabilities in the database
The "Query Compiler, Rewrite, Optimizer" component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted query involving certain UNION ALL views, leading to an indefinitely large amount of compilation time.
| Software | From | Fixed in |
|---|---|---|
| ibm / db2 | 9.5 | 9.5.x |
| ibm / db2 | 9.5-fp4 | 9.5-fp4.x |
| ibm / db2 | 9.5-fp5 | 9.5-fp5.x |
| ibm / db2 | 9.5-fp4a | 9.5-fp4a.x |
| ibm / db2 | 9.5-fp1 | 9.5-fp1.x |
| ibm / db2 | 9.5-fp2a | 9.5-fp2a.x |
| ibm / db2 | 9.5-fp3b | 9.5-fp3b.x |
| ibm / db2 | 9.5-fp2 | 9.5-fp2.x |
| ibm / db2 | 9.5-fp3 | 9.5-fp3.x |
| ibm / db2 | 9.5-fp3a | 9.5-fp3a.x |