CVE-2016-0215

Name of the Vulnerable Software and Affected Versions IBM DB2 versions 9.7, 10.1 before FP6, and 10.5 before FP8

Description The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash, by executing a SELECT statement with a subquery containing the AVG OLAP function on an Oracle compatible database.

Recommendations For IBM DB2 version 9.7, update to a version after 9.7 or apply the necessary fix. For IBM DB2 version 10.1, update to FP6 or later. For IBM DB2 version 10.5, update to FP8 or later.