DSA-2025-077 : Security Update for Dell CloudBoost Virtual Appliance Multiple Component Vulnerabilities.
Resumen: Dell CloudBoost Virtual Appliance remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Impacto
High
Detalles
|
Third-party Component |
CVEs |
More Information |
|
Apparmor |
CVE-2016-1585 |
See NVD link below for individual scores for each CVE. |
|
Linux kernel’s |
CVE-2021-2163, CVE-2023-27043 |
See NVD link below for individual scores for each CVE. |
|
Oracle JDK |
CVE-2022-21449, CVE-2022-34169, CVE-2023-21930, CVE-2023-25193, CVE-2024-20918, CVE-2024-20952, CVE-2022-48622, CVE-2022-40433 |
See NVD link below for individual scores for each CVE. |
|
Snakeyaml |
CVE-2022-25857, CVE-2022-38749, CVE-2022-38750, CVE-2022-38751 |
See NVD link below for individual scores for each CVE. |
|
Busybox |
CVE-2022-48174 |
See NVD link below for individual scores for each CVE. |
|
Ruby-rack |
CVE-2023-27530, CVE-2023-27539, CVE-2024-25126, CVE-2024-26141, CVE-2024-26146 |
See NVD link below for individual scores for each CVE. |
|
amd64-microcode |
CVE-2023-31315, CVE-2024-23984 |
See NVD link below for individual scores for each CVE. |
|
libtiff5 |
CVE-2023-3164, CVE-2024-7006 |
See NVD link below for individual scores for each CVE. |
|
Python |
CVE-2024-0397, CVE-2024-37891, CVE-2024-4032, CVE-2024-41810, CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, CVE-2024-45230, CVE-2024-45231, CVE-2024-6232, CVE-2024-6345, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287 |
See NVD link below for individual scores for each CVE. |
|
intel-microcode |
CVE-2024-24968 |
See NVD link below for individual scores for each CVE. |
|
Libkrb |
CVE-2024-37370, CVE-2024-37371 |
See NVD link below for individual scores for each CVE. |
|
Ruby2.7 |
CVE-2024-41946, CVE-2024-49761 |
See NVD link below for individual scores for each CVE. |
|
vim |
CVE-2024-41957, CVE-2024-43374, CVE-2024-43802, CVE-2024-47814 |
See NVD link below for individual scores for each CVE. |
|
Libexpat |
CVE-2024-45490, CVE-2024-45491, CVE-2024-45492 |
See NVD link below for individual scores for each CVE. |
|
Libsoup |
CVE-2024-52530, CVE-2024-52531, CVE-2024-52532 |
See NVD link below for individual scores for each CVE. |
|
Libglib |
CVE-2024-52533 |
See NVD link below for individual scores for each CVE. |
|
wpasupplicant |
CVE-2024-5290 |
See NVD link below for individual scores for each CVE. |
|
libssl |
CVE-2024-5535 |
See NVD link below for individual scores for each CVE. |
|
Nano |
CVE-2024-5742 |
See NVD link below for individual scores for each CVE. |
|
Gtk |
CVE-2024-6655 |
See NVD link below for individual scores for each CVE. |
|
Curl |
CVE-2024-7264, CVE-2024-8096 |
See NVD link below for individual scores for each CVE. |
Corrección y productos afectados
|
Product |
Affected Versions |
Remediated Versions |
Link |
|
CloudBoost Virtual Appliance |
Versions 19.7 through 19.11.0.1 |
Version 19.12 or later |
https://dl.dell.com/downloads/3YKP0_CloudBoost-19.12.0.0-Appliance-Upgrade-package.tar |
|
Product |
Affected Versions |
Remediated Versions |
Link |
|
CloudBoost Virtual Appliance |
Versions 19.7 through 19.11.0.1 |
Version 19.12 or later |
https://dl.dell.com/downloads/3YKP0_CloudBoost-19.12.0.0-Appliance-Upgrade-package.tar |
Historial de revisiones
|
Revision |
Date |
Description |
|
1.0 |
2025-02-06 |
Initial Release |