Article Number: 000153596

DSA-2020-148: Dell EMC Data Protection Search Security Update for Multiple Third-Party Component Vulnerabilities

Article Content

Impact

High

Details

Summary:
Multiple components within Dell EMC Data Protection Search require a security update to address various vulnerabilities.

Third-party Component	CVE(s)	More information
nfs-utils	CVE-2019-3689	https://www.suse.com/security/cve/CVE-2019-3689/
Kernel	CVE-2019-10220	https://www.suse.com/security/cve/CVE-2019-10220/ https://www.suse.com/security/cve/CVE-2019-17666/
Kernel	CVE-2019-17666
Oracle JRE	CVE-2020-2604	https://www.oracle.com/security-alerts/cpujan2020.html https://www.oracle.com/security-alerts/cpuapr2020.html
	CVE-2019-16168
	CVE-2019-13117
	CVE-2019-13118
	CVE-2020-2601
	CVE-2020-2585
	CVE-2020-2655
	CVE-2020-2593
	CVE-2020-2654
	CVE-2020-2590
	CVE-2020-2659
	CVE-2020-2583
	CVE-2020-2803
	CVE-2020-2805
	CVE-2019-18197
	CVE-2020-2816
	CVE-2020-2781
	CVE-2020-2830
	CVE-2020-2767
	CVE-2020-2800
	CVE-2020-2778
	CVE-2020-2764
	CVE-2020-2754
	CVE-2020-2755
	CVE-2020-2773
	CVE-2020-2756
	CVE-2020-2757

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.

Third-party Component	CVE(s)	More information
nfs-utils	CVE-2019-3689	https://www.suse.com/security/cve/CVE-2019-3689/
Kernel	CVE-2019-10220	https://www.suse.com/security/cve/CVE-2019-10220/ https://www.suse.com/security/cve/CVE-2019-17666/
Kernel	CVE-2019-17666
Oracle JRE	CVE-2020-2604	https://www.oracle.com/security-alerts/cpujan2020.html https://www.oracle.com/security-alerts/cpuapr2020.html
	CVE-2019-16168
	CVE-2019-13117
	CVE-2019-13118
	CVE-2020-2601
	CVE-2020-2585
	CVE-2020-2655
	CVE-2020-2593
	CVE-2020-2654
	CVE-2020-2590
	CVE-2020-2659
	CVE-2020-2583
	CVE-2020-2803
	CVE-2020-2805
	CVE-2019-18197
	CVE-2020-2816
	CVE-2020-2781
	CVE-2020-2830
	CVE-2020-2767
	CVE-2020-2800
	CVE-2020-2778
	CVE-2020-2764
	CVE-2020-2754
	CVE-2020-2755
	CVE-2020-2773
	CVE-2020-2756
	CVE-2020-2757

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Affected products:
Dell EMC Data Protection Search versions prior to 19.3

Remediation:
The following Dell EMC Data Protection Search release addresses these vulnerabilities:

Dell EMC Data Protection Search 19.3

For Dell EMC Data Protection Search version 18.0 to 19.2, the security update is contained in the release 19.3.

Dell EMC recommends all customers upgrade at the earliest opportunity.

Affected products:
Dell EMC Data Protection Search versions prior to 19.3

Remediation:
The following Dell EMC Data Protection Search release addresses these vulnerabilities:

Dell EMC Data Protection Search 19.3

For Dell EMC Data Protection Search version 18.0 to 19.2, the security update is contained in the release 19.3.

Dell EMC recommends all customers upgrade at the earliest opportunity.

DSA-2020-148: Dell EMC Data Protection Search Security Update for Multiple Third-Party Component Vulnerabilities

Article Content

Impact

Details

Affected Products and Remediation

Related Information

Legal Information

Article Properties

Affected Product

Product

Last Published Date

Version

Article Type

Welcome

Welcome to Dell

DSA-2020-148: Dell EMC Data Protection Search Security Update for Multiple Third-Party Component Vulnerabilities

Article Content

Impact

Details

Affected Products and Remediation

Related Information

Legal Information

Article Properties

Affected Product

Product

Last Published Date

Version

Article Type