Artikelnummer: 000224185
DSA-2024-180: Security Update for Dell OS10 Third Party Vulnerabilities
Samenvatting: Dell Networking OS10 remediation is available for third party vulnerabilities which could be exploited by malicious users to compromise the affected system.
Article content
Impact
High
Gegevens
| Third-party Component | CVEs | More Information |
|---|---|---|
| bind9 | CVE-2023-3341 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/  |
| curl | CVE-2023-28321, CVE-2023-46218, CVE-2023-28322, CVE-2023-38546 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| Dbus | CVE-2023-34969 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| isc-dhcp |
CVE-2017-3144, CVE-2018-5732, CVE-2018-5733, CVE-2019-6470, CVE-2021-25217, CVE-2022-2928, CVE-2022-2929 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| gnutls28 | CVE-2024-0553, CVE-2023-5981 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| krb5 | CVE-2023-36054 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| mariadb-10.3 | CVE-2023-22084 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| Ncurses | CVE-2021-39537, CVE-2023-29491 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| nghttp2 | CVE-2020-11080, CVE-2023-44487 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| python3.7 |
CVE-2022-48565, CVE-2022-48560, CVE-2022-48564, CVE-2022-48566, CVE-2023-40217 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| openssl | CVE-2023-3446, CVE-2023-3817 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| Libyang | CVE-2019-19333, CVE-2019-19334, CVE-2019-20393, CVE-2019-20394, CVE-2019-20397, CVE-2019-20391, CVE-2019-20392, CVE-2019-20395, CVE-2019-20396, CVE-2019-20398 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| python-urllib3 |
CVE-2019-11324, CVE-2023-43804, CVE-2018-25091, CVE-2019-11236, CVE-2020-26137, CVE-2023-45803 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| Sudo | CVE-2023-7090, CVE-2023-28486, CVE-2023-28487 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
Getroffen producten en herstel
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| Dell Networking OS10 | 10.5.6.0 | 10.5.6.1 | SmartFabric OS10 downloads page |
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| Dell Networking OS10 | 10.5.6.0 | 10.5.6.1 | SmartFabric OS10 downloads page |
- SmartFabric OS10 downloads are also available from your Dell Digital Locker.
- The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.
Revisiegeschiedenis
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-04-16 | Initial release |
| 2.0 | 2024-04-17 | Updated the link information for CSAF compliance. |
Verwante informatie
Juridische informatie
Artikeleigenschappen
Getroffen product
SmartFabric OS10 Software
Datum laatst gepubliceerd
17 apr. 2024
Versie
2
Artikeltype
Dell Security Advisory