DSA-2019-199: Dell EMC Avamar Intel Microarchitectural Data Sampling Vulnerabilities

Zusammenfassung: Multiple components within Dell EMC Avamar require a security update to address Intel Microarchitectural Data Sampling vulnerabilities.

Dieser Artikel gilt für Dieser Artikel gilt nicht für Dieser Artikel ist nicht an ein bestimmtes Produkt gebunden. In diesem Artikel werden nicht alle Produktversionen aufgeführt.
Andere Ressourcen ansehen

Auswirkungen

Medium

Details

Summary:   
Multiple components within Dell EMC Avamar require a security update to address Intel Microarchitectural Data Sampling vulnerabilities.

The components are updated for the following vulnerabilities:   

  • Microarchitectural Store Buffer Data Sampling (MSBDS)

CVE-2018-12126

  • Microarchitectural Load Port Data Sampling (MLPDS)

CVE-2018-12127

  • Microarchitectural Fill Buffer Data Sampling (MFBDS)

CVE-2018-12130 

  • Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

CVE-2019-11091 

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

The components are updated for the following vulnerabilities:   

  • Microarchitectural Store Buffer Data Sampling (MSBDS)

CVE-2018-12126

  • Microarchitectural Load Port Data Sampling (MLPDS)

CVE-2018-12127

  • Microarchitectural Fill Buffer Data Sampling (MFBDS)

CVE-2018-12130 

  • Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

CVE-2019-11091 

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

Dell Technologies empfiehlt allen Kunden, sowohl die CVSS-Gesamtbewertung als auch alle relevanten zeitlichen und umweltbezogenen Bewertungen zu berücksichtigen, die sich auf den potenziellen Schweregrad einer bestimmten Sicherheitsschwachstelle auswirken können.

Betroffene Produkte und Korrektur

Affected products:      
Dell EMC Avamar Data Store Gen4T
Dell EMC Avamar Data Store Gen4S


Resolution:     
The following Dell EMC Avamar releases addresso these vulnerabilities. The resolution needs fixes for both Avamar application and hardware.

Dell EMC recommends all customers upgrade at the earliest opportunity. Refer to KB Article 513978: How to install an Avamar .avp hotfix using Avamar Installer (AVI) for instructions on applying the hotfix.


Affected products:      
Dell EMC Avamar Data Store Gen4T
Dell EMC Avamar Data Store Gen4S


Resolution:     
The following Dell EMC Avamar releases addresso these vulnerabilities. The resolution needs fixes for both Avamar application and hardware.

Dell EMC recommends all customers upgrade at the earliest opportunity. Refer to KB Article 513978: How to install an Avamar .avp hotfix using Avamar Installer (AVI) for instructions on applying the hotfix.


Revisionsverlauf

**

Zugehörige Informationen

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Rechtlicher Hinweis

Betroffene Produkte

Avamar Client, Avamar Server

Produkte

Avamar Client for VMware, Avamar Client for Windows, Avamar Data Migration Enabler, Avamar Data Store, Avamar Data Store Gen3, Avamar Data Store Gen4, Avamar Data Store Gen4S, Avamar Data Store Gen4T, Avamar Data Transport , Avamar Desktop/Laptop Option, Avamar Extended Retention, Avamar Media Access Node, Avamar Plug-in, Avamar Plug-in for Exchange 2003, Avamar Plug-in for Exchange 2007, Avamar Plug-in for Exchange VSS, Avamar Plug-in for Hyper-V VSS, Avamar Plug-in for NDMP, Avamar Plug-in for Oracle, Avamar Plug-in for SAP with Oracle, Avamar Plug-in for SharePoint VSS, Avamar Plug-in for SQL, Avamar Plug-in for Sybase ASE, Avamar REST API, Avamar Virtual Edition, Avamar with CloudBoost, Backup & Recovery Manager Avamar, OpenStack Data Protection Extension, Product Security Information, vRealize Data Protection Extension for Avamar ...
Artikeleigenschaften
Artikelnummer: 000001699
Artikeltyp: Dell Security Advisory
Zuletzt geändert: 19 Sept. 2025
Antworten auf Ihre Fragen erhalten Sie von anderen Dell NutzerInnen
Support Services
Prüfen Sie, ob Ihr Gerät durch Support Services abgedeckt ist.