IBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) duplicates the PRNG state across fork() system calls when multiple ICC instances are loaded which could result in duplicate Session IDs and a risk of duplicate key material. IBM X-Force ID: 139071.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm db2 10.1 |
||
ibm db2 11.1 |
||
ibm db2 10.5 |
||
ibm db2 9.7 |
Vulmon