DSA-2020-086: Dell EMC Isilon OneFS Security Update for FreeBSD libfetch Vulnerability

The libfetch component is updated for the following vulnerability:    

• CVE-2020-7450

For more information about any of the Common Vulnerability and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at https://nvd.nist.gov/. 

To search for a particular CVE, use the database s search utility at https://nvd.nist.gov/vuln/search.

Affected products:    
Dell EMC Isilon OneFS versions 8.2.2 and earlier.

Remediation:    
For Dell EMC Isilon OneFS versions 8.2.2, 8.2.1, and 8.1.2, the fix for this issue is included with the April 2020 KGA Rollup Patch, as well as all future Rollup Patches. For more information and to obtain a Rollup patch, see the Current Isilon OneFS Patches document.

For Dell EMC Isilon version 8.2.0, it is recommended you upgrade to a newer version of OneFS.

Dell EMC recommends all customers upgrade at the earliest opportunity.