DSA-2019-199: Dell EMC Avamar Intel Microarchitectural Data Sampling Vulnerabilities

Resumen: Multiple components within Dell EMC Avamar require a security update to address Intel Microarchitectural Data Sampling vulnerabilities.

Este artículo se aplica a Este artículo no se aplica a Este artículo no está vinculado a ningún producto específico. No se identifican todas las versiones del producto en este artículo.
Consulte estos recursos

Impacto

Medium

Detalles

Summary:   
Multiple components within Dell EMC Avamar require a security update to address Intel Microarchitectural Data Sampling vulnerabilities.

The components are updated for the following vulnerabilities:   

  • Microarchitectural Store Buffer Data Sampling (MSBDS)

CVE-2018-12126

  • Microarchitectural Load Port Data Sampling (MLPDS)

CVE-2018-12127

  • Microarchitectural Fill Buffer Data Sampling (MFBDS)

CVE-2018-12130 

  • Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

CVE-2019-11091 

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

The components are updated for the following vulnerabilities:   

  • Microarchitectural Store Buffer Data Sampling (MSBDS)

CVE-2018-12126

  • Microarchitectural Load Port Data Sampling (MLPDS)

CVE-2018-12127

  • Microarchitectural Fill Buffer Data Sampling (MFBDS)

CVE-2018-12130 

  • Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

CVE-2019-11091 

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

Dell Technologies recomienda que todos los clientes tengan en cuenta tanto la puntuación base como cualquier otra puntuación ambiental y temporal relevante que pueda afectar la posible gravedad asociada con la vulnerabilidad de seguridad en particular.

Corrección y productos afectados

Affected products:      
Dell EMC Avamar Data Store Gen4T
Dell EMC Avamar Data Store Gen4S


Resolution:     
The following Dell EMC Avamar releases addresso these vulnerabilities. The resolution needs fixes for both Avamar application and hardware.

Dell EMC recommends all customers upgrade at the earliest opportunity. Refer to KB Article 513978: How to install an Avamar .avp hotfix using Avamar Installer (AVI) for instructions on applying the hotfix.


Affected products:      
Dell EMC Avamar Data Store Gen4T
Dell EMC Avamar Data Store Gen4S


Resolution:     
The following Dell EMC Avamar releases addresso these vulnerabilities. The resolution needs fixes for both Avamar application and hardware.

Dell EMC recommends all customers upgrade at the earliest opportunity. Refer to KB Article 513978: How to install an Avamar .avp hotfix using Avamar Installer (AVI) for instructions on applying the hotfix.


Historial de revisiones

**

Información relacionada

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Descargo de responsabilidad

Productos afectados

Avamar Client, Avamar Server

Productos

Avamar Client for VMware, Avamar Client for Windows, Avamar Data Migration Enabler, Avamar Data Store, Avamar Data Store Gen3, Avamar Data Store Gen4, Avamar Data Store Gen4S, Avamar Data Store Gen4T, Avamar Data Transport , Avamar Desktop/Laptop Option, Avamar Extended Retention, Avamar Media Access Node, Avamar Plug-in, Avamar Plug-in for Exchange 2003, Avamar Plug-in for Exchange 2007, Avamar Plug-in for Exchange VSS, Avamar Plug-in for Hyper-V VSS, Avamar Plug-in for NDMP, Avamar Plug-in for Oracle, Avamar Plug-in for SAP with Oracle, Avamar Plug-in for SharePoint VSS, Avamar Plug-in for SQL, Avamar Plug-in for Sybase ASE, Avamar REST API, Avamar Virtual Edition, Avamar with CloudBoost, Backup & Recovery Manager Avamar, OpenStack Data Protection Extension, Product Security Information, vRealize Data Protection Extension for Avamar ...
Propiedades del artículo
Número del artículo: 000001699
Tipo de artículo: Dell Security Advisory
Última modificación: 19 sept 2025
Encuentre respuestas a sus preguntas de otros usuarios de Dell
Servicios de soporte
Compruebe si el dispositivo está cubierto por los servicios de soporte.