Ga naar hoofdinhoud
Uitloggen

Welkom bij Dell

Mijn account
  • Snel en eenvoudig bestellen
  • Bestellingen en de verzendstatus bekijken
  • Een lijst met producten maken en openen
  • Beheer uw Dell EMC locaties, producten en contactpersonen op productniveau met Company Administration.
Inloggen Een account maken Inloggen bij Premier Aanmelden voor partnerprogramma
Contact

Uw Dell.com-winkelwagentjes

Artikelnummer: 000225431

DSA-2024-238: Security Update for Dell Cloud Tiering Appliance for Multiple Third-Party Vulnerabilities

Samenvatting: Dell Cloud Tiering Appliance remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Article content

Impact

High

Gegevens

Third-party Component CVEs More Information
Kernel-default CVE-2021-33631, CVE-2023-46838, CVE-2023-47233, CVE-2023-4921, CVE-2023-51043, CVE-2023-51780, CVE-2023-51782, CVE-2023-6040, CVE-2023-6356,CVE-2023-6535, CVE-2023-6536, CVE-2023-6915, CVE-2024-0565, CVE-2024-0775, CVE-2024-1086, CVE-2019-25162, CVE-2020-36777, CVE-2020-36784, CVE-2021-46904, CVE-2021-46905, CVE-2021-46906, CVE-2021-46915, CVE-2021-46924, CVE-2021-46929, CVE-2021-46932, CVE-2021-46934, CVE-2021-46953, CVE-2021-46964, CVE-2021-46966, CVE-2021-46974, CVE-2021-46989, CVE-2021-47005, CVE-2021-47012, CVE-2021-47013, CVE-2021-47054, CVE-2021-47060, CVE-2021-47061, CVE-2021-47069, CVE-2021-47076, CVE-2021-47078, CVE-2021-47083, CVE-2022-20154, CVE-2022-48627, CVE-2023-28746, CVE-2023-35827, CVE-2023-46343,CVE-2023-51042, CVE-2023-52340, CVE-2023-52429, CVE-2023-52439, CVE-2023-52443, CVE-2023-52445, CVE-2023-52448, CVE-2023-52449, CVE-2023-52451, CVE-2023-52463, CVE-2023-52475, CVE-2023-52478, CVE-2023-52482, CVE-2023-52502, CVE-2023-52530, CVE-2023-52531, CVE-2023-52532, CVE-2023-52569, CVE-2023-52574, CVE-2023-52597, CVE-2023-52605, CVE-2024-0340, CVE-2024-0607, CVE-2024-1151, CVE-2024-23849, CVE-2024-23851, CVE-2024-26585, CVE-2024-26586, CVE-2024-26589, CVE-2024-26593, CVE-2024-26595, CVE-2024-26602,CVE-2024-26607,CVE-2024-26622 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
libssh CVE-2019-14889, CVE-2020-16135, CVE-2020-1730, CVE-2021-3634, CVE-2023-1667, CVE-2023-2283, CVE-2023-48795, CVE-2023-6004, CVE-2023-6918 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
postgresql CVE-2024-0985
 		 https://nvd.nist.gov/vuln/detail/CVE-2024-0985 This hyperlink is taking you to a website outside of Dell Technologies.
mozilla-nss CVE-2023-5388 https://nvd.nist.gov/vuln/detail/CVE-2023-5388 This hyperlink is taking you to a website outside of Dell Technologies.
openssh CVE-2023-51385 https://nvd.nist.gov/vuln/detail/CVE-2023-51385 This hyperlink is taking you to a website outside of Dell Technologies.
giflib CVE-2021-40633, CVE-2022-28506, CVE-2023-48161 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
cpio CVE-2023-7207 https://nvd.nist.gov/vuln/detail/CVE-2023-7207 This hyperlink is taking you to a website outside of Dell Technologies.
openssl CVE-2024-0727 https://nvd.nist.gov/vuln/detail/CVE-2024-0727 This hyperlink is taking you to a website outside of Dell Technologies.
python3 CVE-2023-6597 https://nvd.nist.gov/vuln/detail/CVE-2023-6597 This hyperlink is taking you to a website outside of Dell Technologies.
gnutls CVE-2023-5981, CVE-2024-0553 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
vim CVE-2023-4750, CVE-2023-48231, CVE-2023-48232, CVE-2023-48233, CVE-2023-48234, CVE-2023-48235, CVE-2023-48236, CVE-2023-48237, CVE-2023-48706, CVE-2024-22667 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
sudo CVE-2023-42465 https://nvd.nist.gov/vuln/detail/CVE-2023-42465 This hyperlink is taking you to a website outside of Dell Technologies.
gdb CVE-2017-16829, CVE-2018-7208, CVE-2022-48064 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
krb5 CVE-2024-26458, CVE-2024-26461 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
util-linux CVE-2024-28085 https://nvd.nist.gov/vuln/detail/CVE-2024-28085 This hyperlink is taking you to a website outside of Dell Technologies.
nghttp2 CVE-2024-28182 https://nvd.nist.gov/vuln/detail/CVE-2024-28182 This hyperlink is taking you to a website outside of Dell Technologies.
less CVE-2022-48624, CVE-2024-32487 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
java-11-openjdk CVE-2024-21011, CVE-2024-21012, CVE-2024-21068, CVE-2024-21085, CVE-2024-21094 See NVD link below for individual scores for each CVE.
http://nvd.nist.gov/ This hyperlink is taking you to a website outside of Dell Technologies.
sssd CVE-2023-3758 https://nvd.nist.gov/vuln/detail/CVE-2023-3758 This hyperlink is taking you to a website outside of Dell Technologies.

Dell Technologies raadt aan dat alle klanten rekening houden met zowel de basisscore van CVSS als alle relevante tijdelijke en omgevingsscores die gevolgen kunnen hebben voor de mogelijke ernst van de specifieke beveiligingsproblemen.

Getroffen producten en herstel

Product Software/Firmware Affected Version(s) Updated Version(s) Link to Update
Cloud Tiering Appliance CTA and CTA-HA Versions prior to 13.2.0.2.29 Version 13.2.0.2.29 https://www.dell.com/support/home/ product-support/product/cloud-tiering-appliance/drivers
Cloud Tiering Appliance CTA/VE and CTA-HA/VE Versions prior to 13.2.0.2.29 Version 13.2.0.2.29 https://www.dell.com/support/home/ product-support/product/cloud-tiering-applianceve/drivers
Product Software/Firmware Affected Version(s) Updated Version(s) Link to Update
Cloud Tiering Appliance CTA and CTA-HA Versions prior to 13.2.0.2.29 Version 13.2.0.2.29 https://www.dell.com/support/home/ product-support/product/cloud-tiering-appliance/drivers
Cloud Tiering Appliance CTA/VE and CTA-HA/VE Versions prior to 13.2.0.2.29 Version 13.2.0.2.29 https://www.dell.com/support/home/ product-support/product/cloud-tiering-applianceve/drivers

Revisiegeschiedenis

RevisionDateDescription
1.02024-05-30Initial Release

Verwante informatie

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Juridische informatie

Artikeleigenschappen

Getroffen product

Cloud Tiering Appliance, Cloud Tiering Appliance Platform, Cloud Tiering Appliance/VE

Datum laatst gepubliceerd

31 mei 2024

Artikeltype

Dell Security Advisory

Terug naar boven