DSA-2020-002: Dell EMC Data Protection Search Security Update for Multiple Third-Party Component Vulnerabilities

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Medium

Details

Summary:   
Multiple third-party components within Dell EMC Data Protection Search require a security update to address various vulnerabilities.

The components are updated for the following vulnerabilities:   

  • Oracle Critical Patch Update Advisory - October 2019

CVE-2019-2949    CVE-2019-2989    CVE-2019-2958    CVE-2019-11068
CVE-2019-2977    CVE-2019-2975    CVE-2019-2999    CVE-2019-2996
CVE-2019-2987    CVE-2019-2962    CVE-2019-2988    CVE-2019-2992
CVE-2019-2964    CVE-2019-2973    CVE-2019-2981    CVE-2019-2978
CVE-2019-2894    CVE-2019-2983    CVE-2019-2933    CVE-2019-2945

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

The components are updated for the following vulnerabilities:   

  • Oracle Critical Patch Update Advisory - October 2019

CVE-2019-2949    CVE-2019-2989    CVE-2019-2958    CVE-2019-11068
CVE-2019-2977    CVE-2019-2975    CVE-2019-2999    CVE-2019-2996
CVE-2019-2987    CVE-2019-2962    CVE-2019-2988    CVE-2019-2992
CVE-2019-2964    CVE-2019-2973    CVE-2019-2981    CVE-2019-2978
CVE-2019-2894    CVE-2019-2983    CVE-2019-2933    CVE-2019-2945

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Affected products:  
Dell EMC Data Protection Search versions 19.1 and earlier

Remediation:
The following Dell EMC Data Protection Search release addresses these vulnerabilities:   

  • Dell EMC Data Protection Search 19.2

For Dell EMC Search version 18.0 to 19.1, the security update is contained in the release 19.2

Dell EMC recommends all customers upgrade at the earliest opportunity.



Affected products:  
Dell EMC Data Protection Search versions 19.1 and earlier

Remediation:
The following Dell EMC Data Protection Search release addresses these vulnerabilities:   

  • Dell EMC Data Protection Search 19.2

For Dell EMC Search version 18.0 to 19.1, the security update is contained in the release 19.2

Dell EMC recommends all customers upgrade at the earliest opportunity.



Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Data Protection Search

Products

Data Protection Search, Product Security Information
Article Properties
Article Number: 000153613
Article Type: Dell Security Advisory
Last Modified: 22 May 2021
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.