DSA-2020-179: Dell EMC Data Domain Security Update for OpenSSL Vulnerabilities
Summary: The OpenSSL component within Dell EMC Data Domain requires a security update to address various vulnerabilities.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
Medium
Details
| Third-party Component | CVE(s) | More information |
| OpenSSL | CVE-2019-1547 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE. |
| CVE-2019-1551 | ||
| CVE-2019-1563 | ||
| CVE-2019-1552 |
Data Domain upgraded to OpenSSL 1.0.2u to mitigate the above CVEs.
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.
To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.
| Third-party Component | CVE(s) | More information |
| OpenSSL | CVE-2019-1547 | See NVD (http://nvd.nist.gov/) for individual scores for each CVE. |
| CVE-2019-1551 | ||
| CVE-2019-1563 | ||
| CVE-2019-1552 |
Data Domain upgraded to OpenSSL 1.0.2u to mitigate the above CVEs.
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.
To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.
Affected Products & Remediation
Affected products:
All Data Domain physical and virtual models
Dell EMC Data Domain OS versions prior to DDOS 6.0.2.9
Dell EMC Data Domain OS versions prior to DDOS 6.1.2.70
Dell EMC Data Domain OS versions prior to DDOS 6.2.1.0
Dell EMC Data Domain OS versions prior to DDOS 7.0.0.20
Remediation:
The following Dell EMC Data Domain releases address these vulnerabilities:
-
Dell EMC Data Domain OS versions DDOS 6.1.2.70 and later
-
Dell EMC Data Domain OS versions DDOS 6.2.1.0 and later
-
Dell EMC Data Domain OS versions DDOS 7.0.0.20 and later
Dell EMC recommends all customers upgrade at the earliest opportunity.
Affected products:
All Data Domain physical and virtual models
Dell EMC Data Domain OS versions prior to DDOS 6.0.2.9
Dell EMC Data Domain OS versions prior to DDOS 6.1.2.70
Dell EMC Data Domain OS versions prior to DDOS 6.2.1.0
Dell EMC Data Domain OS versions prior to DDOS 7.0.0.20
Remediation:
The following Dell EMC Data Domain releases address these vulnerabilities:
-
Dell EMC Data Domain OS versions DDOS 6.1.2.70 and later
-
Dell EMC Data Domain OS versions DDOS 6.2.1.0 and later
-
Dell EMC Data Domain OS versions DDOS 7.0.0.20 and later
Dell EMC recommends all customers upgrade at the earliest opportunity.
Workarounds & Mitigations
None
Related Information
Legal Disclaimer
Affected Products
Data Domain, Data Domain, Data Domain Boost – File System, Data Domain Boost - Open Storage, Data Domain Deduplication Storage Systems, DD Boost for Enterprise Applications, DD OS, DD OS 4.9, PowerProtect Data Domain Management CenterProducts
DD OS 6.2, DD OS 5.0, DD OS 5.1, DD OS 5.2, DD OS 5.3, DD OS 5.4, DD OS 5.5, DD OS 5.6, DD OS 6.0, DD OS 6.1, DD OS 7.0, DD OS 7.1, DD OS 7.2, DD OS Licensed Features, DD OS Previous Versions, Product Security InformationArticle Properties
Article Number: 000001712
Article Type: Dell Security Advisory
Last Modified: 19 Sep 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.