Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

DSA-2021-022: Dell EMC Data Computing Appliance (DCA) Security Update for Multiple Third Party Components

Summary: Dell EMC Data Computing Appliance (DCA) contains remediation for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system.

This article applies to   This article does not apply to 
Check out resources for

Impact

Critical

Details

The components are updated for the following vulnerabilities:     
 
Third-party Component CVE(s) More information
nss and nspr CVE-2019-11719 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2019-11727
CVE-2019-11756
CVE-2019-17006
CVE-2019-17023
CVE-2020-6829
CVE-2020-12400
CVE-2020-12401
CVE-2020-12402
CVE-2020-12403
microcode_ctl CVE-2020-8695
CVE-2020-8696
CVE-2020-8698
curl CVE-2019-5482
expat CVE-2018-20843
CVE-2019-15903
glib2 and ibus CVE-2019-12450
CVE-2019-14822
libwmf CVE-2019-6978
Ansible security and bug fix update CVE-2020-1736
CVE-2020-14330
CVE-2020-14332
CVE-2020-14365
INTEL-SA-00384
 		 CVE-2020-8710
CVE-2020-8713
CVE-2020-8714
CVE-2020-8715
CVE-2020-8716
CVE-2020-8717
CVE-2020-8718
CVE-2020-8719
CVE-2020-8720
CVE-2020-8721
CVE-2020-8722
CVE-2020-8723
CVE-2020-8729
CVE-2020-8730
CVE-2020-8731
CVE-2020-8732
INTEL-SA-00367 CVE-2020-12300
The components are updated for the following vulnerabilities:     
 
Third-party Component CVE(s) More information
nss and nspr CVE-2019-11719 See NVD (http://nvd.nist.gov/) for individual scores for each CVE
CVE-2019-11727
CVE-2019-11756
CVE-2019-17006
CVE-2019-17023
CVE-2020-6829
CVE-2020-12400
CVE-2020-12401
CVE-2020-12402
CVE-2020-12403
microcode_ctl CVE-2020-8695
CVE-2020-8696
CVE-2020-8698
curl CVE-2019-5482
expat CVE-2018-20843
CVE-2019-15903
glib2 and ibus CVE-2019-12450
CVE-2019-14822
libwmf CVE-2019-6978
Ansible security and bug fix update CVE-2020-1736
CVE-2020-14330
CVE-2020-14332
CVE-2020-14365
INTEL-SA-00384
 		 CVE-2020-8710
CVE-2020-8713
CVE-2020-8714
CVE-2020-8715
CVE-2020-8716
CVE-2020-8717
CVE-2020-8718
CVE-2020-8719
CVE-2020-8720
CVE-2020-8721
CVE-2020-8722
CVE-2020-8723
CVE-2020-8729
CVE-2020-8730
CVE-2020-8731
CVE-2020-8732
INTEL-SA-00367 CVE-2020-12300
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Affected Version(s) Updated Version(s) Link to Update  
DCA Versions prior to DCA 4.2.1.0 DCA 4.2.1.0 https://dl.dell.com/downloads/DL102432_Greenplum-Data-Computing-Appliance-Software-Upgrade-to-4.2.1.0.bin  
DCA Versions prior to Firmware tool 3H00 DCA Firmware tool 3H00 https://dl.dell.com/downloads/DL102437_3H00-Firmware-Update-Utility-for-DCAv3.tgz
 		  
 
Product Affected Version(s) Updated Version(s) Link to Update  
DCA Versions prior to DCA 4.2.1.0 DCA 4.2.1.0 https://dl.dell.com/downloads/DL102432_Greenplum-Data-Computing-Appliance-Software-Upgrade-to-4.2.1.0.bin  
DCA Versions prior to Firmware tool 3H00 DCA Firmware tool 3H00 https://dl.dell.com/downloads/DL102437_3H00-Firmware-Update-Utility-for-DCAv3.tgz
 		  
 

Revision History

RevisionDateDescription
1.02021-02-01Initial Release
2.02021-02-17Document Firmware tool 3H00 update for INTEL-SA-00384 and INTEL-SA-00367

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Data Computing Appliance V3

Products

Product Security Information