Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Article Number: 000189828

Dell CSI Drivers and Operator False Positive Security Vulnerabilities

Summary: This article provides a list of security vulnerabilities that cannot be exploited on Dell CSI Drivers, but which may be flagged by security scanners.

Article Content

Security Article Type

Security KB

CVE Identifier

The CVE IDs are listed in the table below.

Issue Summary

This article provides a list of security vulnerabilities that cannot be exploited on Dell CSI Drivers, but which may be flagged by security scanners.

Details

Dell CSI Driver for PowerScale 1.6
Dell CSI Driver for PowerStore 1.4
Dell CSI Driver for PowerFlex 1.5
Dell CSI Driver for PowerMax 1.7
Dell CSI Driver for UnityXT 1.6
Dell CSI Operator 1.4.0

Recommendations

 
Embedded Component CVE ID Summary of Vulnerability Reason why Product is not Vulnerable Date Determined False Positive
Glibc - 2.28-151.el8 CVE-2019-1010022 ** DISPUTED ** GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass stack guard protection. The component is: nptl. The attack vector is: Exploit stack buffer overflow vulnerability and use this bypass vulnerability to bypass stack guard. https://sourceware.org/bugzilla/show_bug.cgi?id=22850  
 		 Upstream comments indicate "this is being treated as a non-security bug and no real threat 16-June-2021

Legal Information

Article Properties

Affected Product

Product Security Information

Last Published Date

23 Jul 2021

Version

1

Article Type

Security KB

Back to Top