Article Number: 000153846
High
Summary:
The telnet(1) protocol client within Dell EMC Isilon OneFS requires a security update to address a vulnerability.
Note: OneFS does not ship with the telnet daemon enabled. This patch fixes a telnet client issue which may occur if an administrator is logging into a shell on the cluster and using the telnet process from it to connect to other untrusted machines.
The telnet(1) protocol client within the Dell EMC Isilon OneFS has been updated for the following vulnerability:
CVE-2019-0053
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at https://nvd.nist.gov/.
To search for a particular CVE, use the database s search utility at https://nvd.nist.gov/vuln/search.
The telnet(1) protocol client within the Dell EMC Isilon OneFS has been updated for the following vulnerability:
CVE-2019-0053
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at https://nvd.nist.gov/.
To search for a particular CVE, use the database s search utility at https://nvd.nist.gov/vuln/search.
Affected products:
Dell EMC Isilon OneFS versions prior to 8.2.1.
Remediation:
For Dell EMC Isilon OneFS version 8.2.1, the security update is contained in the release.
For Dell EMC Isilon OneFS versions 8.2.0 and 8.1.2, the fix for this issue is included with the October, 2019 Rollup Patch, as well as all future Rollup Patches. For more information and to obtain a Rollup patch, see the Current Isilon OneFS Patches document.
For Dell EMC Isilon version 8.1.0.4, it is recommended you upgrade to a newer version of OneFS.
Dell EMC recommends all customers upgrade at the earliest opportunity.
Affected products:
Dell EMC Isilon OneFS versions prior to 8.2.1.
Remediation:
For Dell EMC Isilon OneFS version 8.2.1, the security update is contained in the release.
For Dell EMC Isilon OneFS versions 8.2.0 and 8.1.2, the fix for this issue is included with the October, 2019 Rollup Patch, as well as all future Rollup Patches. For more information and to obtain a Rollup patch, see the Current Isilon OneFS Patches document.
For Dell EMC Isilon version 8.1.0.4, it is recommended you upgrade to a newer version of OneFS.
Dell EMC recommends all customers upgrade at the earliest opportunity.
PowerScale OneFS
PowerScale OneFS, Product Security Information
22 May 2021
4
Dell Security Advisory