Article Number: 000190267

DSA-2021-157 Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell EMC VxRail remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Article Content

Impact

High

Details

Third-Party Component	CVEs	More information
postgresql10	CVE-2021-32027	SUSE-SU-2021:1782-1
postgresql10	CVE-2021-32028	SUSE-SU-2021:1782-1
libX11	CVE-2021-31535	SUSE-SU-2021:1892-1
libcurl4 curl	CVE-2021-22898	SUSE-SU-2021:1763-1
libpq5	CVE-2021-32027	SUSE-SU-2021:1784-1
	CVE-2021-32028
	CVE-2021-32029
libxml2	CVE-2021-3541	SUSE-SU-2021:2016-1
libjpeg8	CVE-2020-17541	SUSE-SU-2021:1957-1
kernel-default	CVE-2020-24586	SUSE-SU-2021:1913-1 SUSE-SU-2021:2324-1
	CVE-2020-24587
	CVE-2020-26139
	CVE-2020-26141
	CVE-2020-26145
	CVE-2020-26147
	CVE-2021-23133
	CVE-2021-23134
	CVE-2021-32399
	CVE-2021-33034
	CVE-2021-33200
	CVE-2021-3491
	CVE-2019-25045
	CVE-2020-24588
	CVE-2020-26558
	CVE-2020-36386
	CVE-2021-0129
	CVE-2021-0512
	CVE-2021-0605
	CVE-2021-33624
	CVE-2021-34693
libnettle4 libhogweed2	CVE-2021-3580	SUSE-SU-2021:2135-1
libgcrypt20	CVE-2021-33560	SUSE-SU-2021:2156-1
Libzypp libsolv-tools	CVE-2019-20387	SUSE-SU-2021:2180-1
Libzypp libsolv-tools	CVE-2021-3200	SUSE-SU-2021:2180-1
permissions	CVE-2019-3688	SUSE-SU-2021:2280-1
	CVE-2019-3690
	CVE-2020-8013
VxRail Node: Dell iDRAC9 Updates VxRail E560 VxRail E560F VxRail E560N VxRail P570 VxRail P570F VxRail V570 VxRail V570F VxRail G560 VxRail G560/F VxRail S570 VxRail P580N VxRail D560 VxRail D560F	CVE-2021-21579	DSA-2021-133: Dell iDRAC Security Update for Multiple Security Vulnerabilities
	CVE-2021-21578
	CVE-2021-21577
	CVE-2021-21576
Intel: 14G BIOS Updates	CVE-2020-24511	INTEL-SA-00463 INTEL-SA-00464
	CVE-2020-12357
	CVE-2020-12358
	CVE-2020-12360
	CVE-2020-24486
Intel: Ethernet 700 Series Controller Advisory	CVE-2020-8693	INTEL-SA-00380
	CVE-2020-8692
	CVE-2020-8690
	CVE-2020-8691

Third-Party Component	CVEs	More information
postgresql10	CVE-2021-32027	SUSE-SU-2021:1782-1
postgresql10	CVE-2021-32028	SUSE-SU-2021:1782-1
libX11	CVE-2021-31535	SUSE-SU-2021:1892-1
libcurl4 curl	CVE-2021-22898	SUSE-SU-2021:1763-1
libpq5	CVE-2021-32027	SUSE-SU-2021:1784-1
	CVE-2021-32028
	CVE-2021-32029
libxml2	CVE-2021-3541	SUSE-SU-2021:2016-1
libjpeg8	CVE-2020-17541	SUSE-SU-2021:1957-1
kernel-default	CVE-2020-24586	SUSE-SU-2021:1913-1 SUSE-SU-2021:2324-1
	CVE-2020-24587
	CVE-2020-26139
	CVE-2020-26141
	CVE-2020-26145
	CVE-2020-26147
	CVE-2021-23133
	CVE-2021-23134
	CVE-2021-32399
	CVE-2021-33034
	CVE-2021-33200
	CVE-2021-3491
	CVE-2019-25045
	CVE-2020-24588
	CVE-2020-26558
	CVE-2020-36386
	CVE-2021-0129
	CVE-2021-0512
	CVE-2021-0605
	CVE-2021-33624
	CVE-2021-34693
libnettle4 libhogweed2	CVE-2021-3580	SUSE-SU-2021:2135-1
libgcrypt20	CVE-2021-33560	SUSE-SU-2021:2156-1
Libzypp libsolv-tools	CVE-2019-20387	SUSE-SU-2021:2180-1
Libzypp libsolv-tools	CVE-2021-3200	SUSE-SU-2021:2180-1
permissions	CVE-2019-3688	SUSE-SU-2021:2280-1
	CVE-2019-3690
	CVE-2020-8013
VxRail Node: Dell iDRAC9 Updates VxRail E560 VxRail E560F VxRail E560N VxRail P570 VxRail P570F VxRail V570 VxRail V570F VxRail G560 VxRail G560/F VxRail S570 VxRail P580N VxRail D560 VxRail D560F	CVE-2021-21579	DSA-2021-133: Dell iDRAC Security Update for Multiple Security Vulnerabilities
	CVE-2021-21578
	CVE-2021-21577
	CVE-2021-21576
Intel: 14G BIOS Updates	CVE-2020-24511	INTEL-SA-00463 INTEL-SA-00464
	CVE-2020-12357
	CVE-2020-12358
	CVE-2020-12360
	CVE-2020-24486
Intel: Ethernet 700 Series Controller Advisory	CVE-2020-8693	INTEL-SA-00380
	CVE-2020-8692
	CVE-2020-8690
	CVE-2020-8691

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

CVEs Addressed	Product	Affected Versions	Updated Version
See table above	Dell EMC VxRail Appliance	4.7.x versions before 4.7.532	4.7.532

CVEs Addressed	Product	Affected Versions	Updated Version
See table above	Dell EMC VxRail Appliance	4.7.x versions before 4.7.532	4.7.532

Revision History

Revision	Date	Description
1.0	2021-08-04	Initial Release

DSA-2021-157 Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell EMC VxRail remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type

Welcome

Welcome to Dell

DSA-2021-157 Dell EMC VxRail Appliance Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Dell EMC VxRail remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

Article Content

Impact

Details

Affected Products and Remediation

Revision History

Related Information

Legal Information

Article Properties

Affected Product

Last Published Date

Version

Article Type