DSA-2020-232: Dell EMC Secure Remote Services Virtual Edition Security Update for Multiple Third-Party Component Vulnerabilities

Table of Contents

Detailed Article

Impact

Details

Affected Products & Remediation

Related Info

Legal Disclaimer

Affected Products

Provide Feedback

Summary: Multiple components within Dell EMC Secure Remote Services (SRS) Virtual Edition require a security update to address various vulnerabilities.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.

Check out other resources

Impact

Critical

Details

Third-party Component	CVEs	More information
jQuery	CVE-2012-6708 CVE-2020-11023 CVE-2020-11022	See NVD (https://nvd.nist.gov/) for individual scores for each CVE.
Libfreebl3 & Mozilla-nss	CVE-2019-11719 CVE-2019-11729
ruby2.1 ruby2.1-stdlib	CVE-2018-16396 CVE-2017-17790 CVE-2018-16395 CVE-2019-16201 CVE-2017-14064 CVE-2017-0898 CVE-2017-0899 CVE-2017-9228 CVE-2016-2339 CVE-2017-9229 CVE-2018-8780 CVE-2020-10663 CVE-2015-9096 CVE-2017-17742 CVE-2017-17405 CVE-2017-0901 CVE-2019-8320 CVE-2017-0902 CVE-2017-0903 CVE-2019-8322 CVE-2019-8321 CVE-2019-16254 CVE-2019-16255 CVE-2016-7798 CVE-2017-14033 CVE-2019-8324 CVE-2019-15845 CVE-2019-8323 CVE-2017-0900 CVE-2019-8325 CVE-2018-1000079 CVE-2018-1000077 CVE-2017-10784 CVE-2018-1000078 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779
Libpq5 & PostgreSQL	CVE-2020-1720
libicu52_1 & libicu52_1-data	CVE-2020-10531
Libssh2-1	CVE-2019-17498
Kernel-default-base	CVE-2019-20812 CVE-2019-9455 CVE-2020-10711 CVE-2020-12769 CVE-2020-12768 CVE-2020-10720 CVE-2020-12657 CVE-2020-10732 CVE-2020-12656 CVE-2020-10757 CVE-2020-12464 CVE-2020-10690 CVE-2018-1000199 CVE-2020-10751 CVE-2020-12655 CVE-2020-13143 CVE-2020-12654 CVE-2020-0543 CVE-2020-12114 CVE-2020-12653 CVE-2020-12652 CVE-2019-19462 CVE-2019-20806
Vim	CVE-2019-20807
libshibsp6 & libshibsp-lite6	CVE-2019-19191
Libadns1	CVE-2017-9106 CVE-2017-9107 CVE-2017-9108 CVE-2017-9109 CVE-2017-9103 CVE-2017-9104 CVE-2017-9105

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.

To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.

Third-party Component	CVEs	More information
jQuery	CVE-2012-6708 CVE-2020-11023 CVE-2020-11022	See NVD (https://nvd.nist.gov/) for individual scores for each CVE.
Libfreebl3 & Mozilla-nss	CVE-2019-11719 CVE-2019-11729
ruby2.1 ruby2.1-stdlib	CVE-2018-16396 CVE-2017-17790 CVE-2018-16395 CVE-2019-16201 CVE-2017-14064 CVE-2017-0898 CVE-2017-0899 CVE-2017-9228 CVE-2016-2339 CVE-2017-9229 CVE-2018-8780 CVE-2020-10663 CVE-2015-9096 CVE-2017-17742 CVE-2017-17405 CVE-2017-0901 CVE-2019-8320 CVE-2017-0902 CVE-2017-0903 CVE-2019-8322 CVE-2019-8321 CVE-2019-16254 CVE-2019-16255 CVE-2016-7798 CVE-2017-14033 CVE-2019-8324 CVE-2019-15845 CVE-2019-8323 CVE-2017-0900 CVE-2019-8325 CVE-2018-1000079 CVE-2018-1000077 CVE-2017-10784 CVE-2018-1000078 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779
Libpq5 & PostgreSQL	CVE-2020-1720
libicu52_1 & libicu52_1-data	CVE-2020-10531
Libssh2-1	CVE-2019-17498
Kernel-default-base	CVE-2019-20812 CVE-2019-9455 CVE-2020-10711 CVE-2020-12769 CVE-2020-12768 CVE-2020-10720 CVE-2020-12657 CVE-2020-10732 CVE-2020-12656 CVE-2020-10757 CVE-2020-12464 CVE-2020-10690 CVE-2018-1000199 CVE-2020-10751 CVE-2020-12655 CVE-2020-13143 CVE-2020-12654 CVE-2020-0543 CVE-2020-12114 CVE-2020-12653 CVE-2020-12652 CVE-2019-19462 CVE-2019-20806
Vim	CVE-2019-20807
libshibsp6 & libshibsp-lite6	CVE-2019-19191
Libadns1	CVE-2017-9106 CVE-2017-9107 CVE-2017-9108 CVE-2017-9109 CVE-2017-9103 CVE-2017-9104 CVE-2017-9105

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Affected products:
Dell EMC SRS Virtual Edition versions 3.40.00.08, 3.42.10.06, 3.44.00.08, and 3.46.00.04

Remediation:
The following Dell EMC SRS Virtual Edition release addresses this vulnerability:

Dell EMC SRS Virtual Edition 3.48.00.04

For Dell EMC SRS Virtual Edition 3.48.00.04 and later, the security update is contained in the release 3.48.00.04.

Dell, Dell EMC recommends all customers upgrade at the earliest opportunity.

The SRS-VE patch is published in SRS Virtual Life cycle Management (vLM) repository and the existing process triggers an Email notification to the customer s SRS-VE primary and secondary contacts. Email notification contains a link to Release notes (along with details of security updates) and a link to update the customer s VE to the latest patch. Contact Dell EMC SRS Virtual Edition Customer Support for any questions regarding upgrading your Dell EMC SRS Virtual Edition system.

Dell EMC SRS Virtual Edition 3.48.00.04

Related Information

Legal Disclaimer

Affected Products

Secure Remote Services Virtual Edition

Article Number: 000180934

Article Type: Dell Security Advisory

Last Modified: 19 Sep 2025

Check if your device is covered by Support Services.

DSA-2020-232: Dell EMC Secure Remote Services Virtual Edition Security Update for Multiple Third-Party Component Vulnerabilities

Summary: Multiple components within Dell EMC Secure Remote Services (SRS) Virtual Edition require a security update to address various vulnerabilities.

Impact

Details

Affected Products & Remediation

Related Information

Legal Disclaimer

Affected Products

Article Properties

Find answers to your questions from other Dell users

Support Services

Article Properties

Find answers to your questions from other Dell users

Support Services