DSA-2024-467: Security Update for Dell Connectrix B-Series Component Vulnerabilities
Résumé: Dell Connectrix B-Series remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Cet article concerne
Cet article ne concerne pas
Cet article n’est associé à aucun produit spécifique.
Toutes les versions du produit ne sont pas identifiées dans cet article.
Impact
Critical
Détails
| Third-party Component | CVEs | More Information |
| weblinker | CVE-2024-10403 | BSA-2024-2763 |
| SSH | CVE-2024-7516 | BSA-2024-2742 |
| IPSEC | CVE-2024-7517 | BSA-2024-2731 |
| Wpa-supplicant | CVE-2024-52160 | BSA-2024-2730 |
| Linux Kernel | CVE-2024-1086 | BSA-2024-2603 |
| OpenSSL | CVE-2024-4603, CVE-2023-6237, CVE-2023-6129 | BSA-2024-2588, BSA-2024-2463, BSA-2024-2461 |
| Less | CVE-2022-48624 | BSA-2024-2600 |
| E2fsprogs | CVE-2022-1304 | BSA-2024-2648 |
| Sqlite | CVE-2023-7104 | BSA-2024-2608 |
Produits concernés et mesure corrective
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions prior to 8.2.3e2 | Version 8.2.3e2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions 9.0.0 through 9.2.0c | Version 9.2.0c1 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403. CVE-2024-7517, CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.2.1 through 9.2.1a | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-7516 | Connectrix B-Series | FOS | Versions prior to 9.2.2 | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.0 through 9.2.0b1 | Version 9.2.0c or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160 | Connectrix B-Series | SANnav | Versions prior to 2.3.0a | Version 2.3.1 or later | https://www.dell.com/support/home/product-support/product/connectrix-sannav/drivers |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions prior to 8.2.3e2 | Version 8.2.3e2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions 9.0.0 through 9.2.0c | Version 9.2.0c1 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403. CVE-2024-7517, CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.2.1 through 9.2.1a | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-7516 | Connectrix B-Series | FOS | Versions prior to 9.2.2 | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.0 through 9.2.0b1 | Version 9.2.0c or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160 | Connectrix B-Series | SANnav | Versions prior to 2.3.0a | Version 2.3.1 or later | https://www.dell.com/support/home/product-support/product/connectrix-sannav/drivers |
Solutions de contournement et mesures d’atténuation
| CVE ID | Workaround and Mitigation |
| CVE-2024-7516 |
Brocade has added a command that allows Brocade Fabric OS switch admins to enable/disable “StrictHostKeyChecking” Enable strict host key checking using the “sshutil” CLI: sshutil stricthostkeycheck -value yes Disable strict host key checking using the “sshutil” CLI: sshutil stricthostkeycheck -value no Verify the current configuration using “sshutil” CLI: sshutil stricthostkeycheck -show |
Historique des révisions
| Revision | Date | Description |
| 1.0 | 2024-12-16 | Initial Release |
| 2.0 | 2024-12-20 | Updated Remediated Versions for clarity |
| 3.0 | 2025-01-17 | Updated for enhanced format presentation with no changes to content |
Informations connexes
Mention légale
Produits concernés
Connectrix DS-6505B, Connectrix DS-6510B, Connectrix DS-6520B, Connectrix DS-6620B-V2, Connectrix DS-6630B, Connectrix DS-6630B-V2, Connectrix DS-7720B, Connectrix DS-7730B, Connectrix DS 6610B, Connectrix DS 6620B, Connectrix ED-DCX6-4B
, Connectrix ED-DCX6-8B, Connectrix ED-DCX7-4B, Connectrix ED-DCX7-8B, Connectrix MP-7810B, Connectrix MP-7840B, Connectrix MP-7850B
...
Propriétés de l’article
Numéro d’article: 000259787
Type d’article: Dell Security Advisory
Dernière modification: 18 Feb 2025
Trouvez des réponses à vos questions auprès d’autres utilisateurs Dell
Services de support
Vérifiez si votre appareil est couvert par les services de support.