DSA-2020-150: Dell Client Platform Security Update for Treck TCP/IP Stack Vulnerabilities in Teradici Firmware and Remote Workstation Cards

Tabla de contenido

Artículo detallado

Impacto

Detalles

Productos afectados y corrección

Información relacionada

Aviso legal

Productos afectados

Opinar

Resumen: Dell Client Platforms (see impacted products listed below) require a security update to address multiple vulnerabilities within the Treck TCP/IP stack used in the Teradici Tera2 Zero Client firmware and the Tera2 Remote Workstation Card. ...

Este artículo se aplica a: Este artículo no se aplica a: Este artículo no está vinculado a ningún producto específico. En este artículo no se identifican todas las versiones de los productos.

Consultar otros recursos

Impacto

Critical

Detalles

Third-party Component	CVE(s)	More information
Teradici Tera2 Zero Client Teradici Tera2 Remote Workstation Card	CVE-2020-11896	See the Teradici advisory TERA-SA-000056 for additional details. See also additional details in CERT/CC Vulnerability Note VU#257161. See NVD (http://nvd.nist.gov/) for individual scores for each CVE.
	CVE-2020-11898
	CVE-2020-11900
	CVE-2020-11901
	CVE-2020-11902
	CVE-2020-11904
	CVE-2020-11905
	CVE-2020-11906
	CVE-2020-11907
	CVE-2020-11909
	CVE-2020-119010
	CVE-2020-119011
	CVE-2020-119012
	CVE-2020-119013
	CVE-2020-119014

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm. To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Third-party Component	CVE(s)	More information
Teradici Tera2 Zero Client Teradici Tera2 Remote Workstation Card	CVE-2020-11896	See the Teradici advisory TERA-SA-000056 for additional details. See also additional details in CERT/CC Vulnerability Note VU#257161. See NVD (http://nvd.nist.gov/) for individual scores for each CVE.
	CVE-2020-11898
	CVE-2020-11900
	CVE-2020-11901
	CVE-2020-11902
	CVE-2020-11904
	CVE-2020-11905
	CVE-2020-11906
	CVE-2020-11907
	CVE-2020-11909
	CVE-2020-119010
	CVE-2020-119011
	CVE-2020-119012
	CVE-2020-119013
	CVE-2020-119014

Dell Technologies recomienda que todos los clientes tengan en cuenta la puntuación base CVSS y las puntuaciones temporales o de entorno relevantes que puedan afectar a la posible gravedad asociada a una determinada vulnerabilidad de seguridad.

Productos afectados y corrección

Refer to the table in the 'Additional Info' section for Dell Client releases containing a resolution to the vulnerability. Dell recommends all customers update to the latest firmware version at the earliest opportunity.

Dell Client Consumer and Commercial Platforms Affected

The following is a list of impacted products, firmware update versions and release dates:

Product	Firmware Update Version (or greater)	Release Date (MM/DD/YYYY) Expected Release ( Month/YYYY)
Precision 3630 Tower	17.05 for customers without an all access subscription 2020.04 for customers with an all access subscription	June 16, 2020
Precision 3630 XL Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 3430 XL	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 3431 Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 5820 Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 5820 XL Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 7820 Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 7820 XL Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 7920 Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 7920 XL Tower	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 7920 Rack	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 7920 XL Rack	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 3930 Rack	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Precision 3930 XL Rack	17.05 for customers who don’t have all access subscription 2020.04 for customers who have all access subscription	June 16, 2020
Wyse 5030 Zero Client (Wyse P25)	17.05 for customers without an all access subscription 2020.04 for customers with an all access subscription	June 16, 2020
Wyse 5050 All-In-One Zero Client	17.05 for customers without an all access subscription 2020.04 for customers with an all access subscription	June 16, 2020
Wyse 7030 Zero Client (Wyse P45)	17.05 for customers without an all access subscription 2020.04 for customers with an all access subscription	June 16, 2020

Product

Firmware Update Version
(or greater)

Release Date (MM/DD/YYYY)
Expected Release ( Month/YYYY)

Precision 3630 Tower

17.05 for customers without an all access subscription

2020.04 for customers with an all access subscription

June 16, 2020

Precision 3630 XL Tower

17.05 for customers who don’t have all access subscription