1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
Candidate: CVE-2012-2196
PublicDate: 2012-07-25
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2196
http://www-01.ibm.com/support/docview.wss?uid=swg21600837
http://www-01.ibm.com/support/docview.wss?uid=swg1IC84751
http://www-01.ibm.com/support/docview.wss?uid=swg1IC84750
http://www-01.ibm.com/support/docview.wss?uid=swg1IC84748
http://www-01.ibm.com/support/docview.wss?uid=swg1IC84712
http://www-01.ibm.com/support/docview.wss?uid=swg1IC84614
Description:
IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5,
and 10.1 allows remote attackers to read arbitrary XML files via the (1)
GET_WRAP_CFG_C or (2) GET_WRAP_CFG_C2 stored procedure.
Ubuntu-Description:
Notes:
tyhicks> A fix pack for 9.7 is not yet available as of 2012-07-25
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_db2exc:
upstream_db2exc: needs-triage
hardy_db2exc: ignored (reached end-of-life)
lucid_db2exc: ignored (reached end-of-life)
natty_db2exc: DNE
oneiric_db2exc: DNE
precise_db2exc: ignored (reached end-of-life)
precise/esm_db2exc: DNE (precise was deferred)
quantal_db2exc: DNE
raring_db2exc: DNE
saucy_db2exc: DNE
trusty_db2exc: DNE
utopic_db2exc: DNE
vivid_db2exc: DNE
vivid/stable-phone-overlay_db2exc: DNE
vivid/ubuntu-core_db2exc: DNE
wily_db2exc: DNE
xenial_db2exc: DNE
yakkety_db2exc: DNE
zesty_db2exc: DNE
devel_db2exc: DNE
|