DSA-2024-137: Security Update for Dell Data Lakehouse System Software for Multiple Third-Party Component Vulnerabilities.
Resumen: Dell Data Lakehouse System Software remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Este artículo se aplica a:
Este artículo no se aplica a:
Este artículo no está vinculado a ningún producto específico.
En este artículo no se identifican todas las versiones de los productos.
Impacto
Critical
Detalles
| Third-party Component | CVEs | More Information |
|---|---|---|
| aiohttp | CVE-2023-37276 | https://nvd.nist.gov/vuln/detail/CVE-2023-37276  |
| bind | CVE-2022-3094, CVE-2022-38178, CVE-2021-25220, CVE-2022-2795, CVE-2022-38177, CVE-2023-2828 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| certifi | CVE-2023-37920, CVE-2022-23491 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| circl | CVE-2023-1732 | https://nvd.nist.gov/vuln/detail/CVE-2023-1732 |
| google guava | CVE-2023-2976 | https://nvd.nist.gov/vuln/detail/CVE-2023-2976 |
| container-suseconnect | CVE-2022-41724, CVE-2022-41723, CVE-2022-41720, CVE-2023-24532, CVE-2022-41725 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| cryptography | CVE-2023-38325, CVE-2023-23931, CVE-2023-0286 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| dbus | CVE-2023-34969, CVE-2022-42011, CVE-2022-42012, CVE-2022-42010 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| emacs-filesystem | CVE-2023-2491, CVE-2022-48337, CVE-2022-48339, CVE-2022-45939, CVE-2023-28617, CVE-2022-48338 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| expat | CVE-2022-40674, CVE-2022-43680 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| future | CVE-2022-40899 | https://nvd.nist.gov/vuln/detail/CVE-2022-40899 |
| git-core | CVE-2023-25652, CVE-2023-29007, CVE-2023-25815 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| containerd | CVE-2023-25173, CVE-2023-25153, CVE-2022-23471 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| jwt-go | CVE-2020-26160 | https://nvd.nist.gov/vuln/detail/CVE-2020-26160 |
| docker | CVE-2023-2253, CVE-2023-28842, CVE-2023-28841, CVE-2023-28840 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| emicklei/go-restful | CVE-2022-1996 | https://nvd.nist.gov/vuln/detail/CVE-2022-1996 |
| gin-gonic/gin | CVE-2023-29401 | https://nvd.nist.gov/vuln/detail/CVE-2023-29401 |
| Gogo protobuf | CVE-2021-3121 | https://nvd.nist.gov/vuln/detail/CVE-2021-3121 |
| client_golang | CVE-2022-21698 | https://nvd.nist.gov/vuln/detail/CVE-2022-21698 |
| exporter-toolkit | CVE-2022-46146 | https://nvd.nist.gov/vuln/detail/CVE-2022-46146 |
| rancher wrangler | CVE-2022-43756, CVE-2022-31249 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| rekor | CVE-2023-33199, CVE-2023-30551 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| ulikunitz/xz | CVE-2021-29482 | https://nvd.nist.gov/vuln/detail/CVE-2021-29482 |
| gnupg2 | CVE-2022-34903 | https://nvd.nist.gov/vuln/detail/CVE-2022-34903 |
| gnutls | CVE-2023-0361, CVE-2022-2509 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| go, golang.org | CVE-2023-29406, CVE-2023-24540, CVE-2023-24538, CVE-2023-24537, CVE-2023-24536, CVE-2023-24534, CVE-2023-24532, CVE-2023-45284, CVE-2023-39326, CVE-2023-45285, CVE-2023-45283, CVE-2023-29409, CVE-2022-41723, CVE-2023-29400, CVE-2023-29404, CVE-2022-41724, CVE-2023-29402, CVE-2022-41725, CVE-2023-29403, CVE-2023-24539, CVE-2023-29405, CVE-2022-41717, CVE-2022-30631, CVE-2022-41715, CVE-2022-1962, CVE-2022-1705, CVE-2022-30630, CVE-2022-32190, CVE-2022-27664, CVE-2020-28362, CVE-2021-44716, CVE-2022-30633, CVE-2020-28366, CVE-2021-33195, CVE-2022-24921, CVE-2022-28131, CVE-2022-28327, CVE-2022-30632, CVE-2020-28367, CVE-2021-31525, CVE-2022-30580, CVE-2021-3114, CVE-2021-41771, CVE-2022-23773, CVE-2021-39293, CVE-2020-24553, CVE-2021-29923, CVE-2020-29509, CVE-2022-23806, CVE-2021-27918, CVE-2022-41716, CVE-2022-23772, CVE-2022-2879, CVE-2022-2880, CVE-2021-34558, CVE-2020-29511, CVE-2021-41772, CVE-2022-30635, CVE-2022-32148, CVE-2021-33198, CVE-2021-36221, CVE-2021-38297, CVE-2022-24675, CVE-2021-33196, CVE-2020-29510, CVE-2021-33194, CVE-2021-33197, CVE-2022-32189, CVE-2020-16845, CVE-2020-15586, CVE-2020-14039, CVE-2023-48795, CVE-2022-27191, CVE-2021-43565, CVE-2020-7919, CVE-2020-9283, CVE-2022-29526, | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| google.golang.org/grpc | CVE-2023-44487 | https://nvd.nist.gov/vuln/detail/CVE-2023-44487 |
| helm/v3 | CVE-2023-25165, CVE-2022-23524, CVE-2022-23525, CVE-2022-23526 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| netty | CVE-2023-34462 | https://nvd.nist.gov/vuln/detail/CVE-2023-34462 |
| quarkus-core | CVE-2023-2974 | https://nvd.nist.gov/vuln/detail/CVE-2023-2974 |
| vertx-web | CVE-2023-24815 | https://nvd.nist.gov/vuln/detail/CVE-2023-24815 |
| java-11-openjdk | CVE-2023-25193, CVE-2023-22041, CVE-2023-25193, CVE-2023-22041 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| kubernetes | CVE-2020-8565, CVE-2019-11250, CVE-2023-2431, CVE-2023-2727, CVE-2023-2728, CVE-2019-11255 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| kobject.c | CVE-2023-45863 | https://nvd.nist.gov/vuln/detail/CVE-2023-45863 |
| krb5 | CVE-2023-36054, CVE-2022-42898 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libcap | CVE-2023-2603 | https://nvd.nist.gov/vuln/detail/CVE-2023-2603 |
| libcom_err | CVE-2022-1304 | https://nvd.nist.gov/vuln/detail/CVE-2022-1304 |
| libcurl | CVE-2023-28322, CVE-2023-28319, CVE-2023-28321, CVE-2023-27538, CVE-2023-27536, CVE-2023-32001, CVE-2023-23916, CVE-2022-32208, CVE-2022-32206, CVE-2023-27535, CVE-2023-23915, CVE-2023-23914, CVE-2022-43552, CVE-2022-43551, CVE-2022-42916, CVE-2022-32221, CVE-2023-28322, CVE-2023-27534, CVE-2023-27533 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libdbus-1-3 | CVE-2023-34969 | https://nvd.nist.gov/vuln/detail/CVE-2023-34969 |
| libexpat1 | CVE-2022-43680, CVE-2022-40674 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libglib-2_0-0 | CVE-2023-25180, CVE-2023-24593 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libgpg-error0 | CVE-2020-10696, CVE-2021-20206, CVE-2022-2990 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libksba | CVE-2022-3515, CVE-2022-47629 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libldap-2_4-2 | CVE-2023-2953 | https://nvd.nist.gov/vuln/detail/CVE-2023-2953 |
| ImageMagick | CVE-2023-39978 | https://nvd.nist.gov/vuln/detail/CVE-2023-39978 |
| libncurses6 | CVE-2023-29491, CVE-2022-29458 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libopenssl1_1 | CVE-2022-4304, CVE-2023-0286, CVE-2023-0215, CVE-2022-4450, CVE-2022-2068, CVE-2022-1292, CVE-2022-2097, CVE-2023-2650, CVE-2023-0465, CVE-2023-0464, CVE-2023-3446, CVE-2023-3817, CVE-2023-0466, CVE-2023-2975 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libpcre2-8-0 | CVE-2022-41409 | https://nvd.nist.gov/vuln/detail/CVE-2022-41409 |
| libprotobuf-lite20 | CVE-2021-22569, CVE-2022-1941, CVE-2022-3171 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libpython3 | CVE-2023-24329, CVE-2022-45061, CVE-2022-42919, CVE-2022-37454, CVE-2020-10735, CVE-2015-20107, CVE-2022-0391, CVE-2023-27043, CVE-2022-40897, CVE-2021-3733, CVE-2022-2795, CVE-2022-38178, CVE-2022-3094, CVE-2022-38177, CVE-2021-25220, CVE-2023-2828, | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| librsvg2 | CVE-2023-38633 | https://nvd.nist.gov/vuln/detail/CVE-2023-38633 |
| libsqlite3-0 | CVE-2022-46908, CVE-2020-24736, CVE-2020-35527, CVE-2022-35737 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libssh | CVE-2023-2283, CVE-2023-1667, CVE-2023-38408 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libsystemd0 | CVE-2022-4415, CVE-2022-3821 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libtasn1 | CVE-2021-46848 | https://nvd.nist.gov/vuln/detail/CVE-2021-46848 |
| libtiff-dev | CVE-2023-0804, CVE-2023-0803, CVE-2023-0802, CVE-2023-0801, CVE-2023-0800, CVE-2023-0799, CVE-2023-0798, CVE-2023-0797, CVE-2023-0796, CVE-2023-0795, CVE-2022-48281, CVE-2022-4645, CVE-2022-3970, CVE-2022-1354, CVE-2022-1355, CVE-2022-1622, CVE-2022-1623, CVE-2022-2056, CVE-2022-2057, CVE-2022-2058, CVE-2022-3627, CVE-2022-3626, CVE-2022-3599, CVE-2022-3598, CVE-2022-3597, CVE-2022-3570, CVE-2022-2519, CVE-2022-2520, CVE-2022-2521, CVE-2022-2867, CVE-2022-2868, CVE-2022-2869, CVE-2022-34526, CVE-2022-2953, CVE-2023-30086, CVE-2023-30774, CVE-2023-25435, CVE-2023-25434 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libudev1 | CVE-2022-4415, CVE-2022-3821 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libwebpdemux2 | CVE-2023-1999 | https://nvd.nist.gov/vuln/detail/CVE-2023-1999 |
| libx11 | CVE-2023-3138 | https://nvd.nist.gov/vuln/detail/CVE-2023-3138 |
| libxml2 | CVE-2023-29469, CVE-2022-40303, CVE-2016-3709, CVE-2022-40304, CVE-2023-28484, CVE-2022-2309 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libxml2 | CVE-2022-40303 | https://nvd.nist.gov/vuln/detail/CVE-2022-40303 |
| libxpm4 | CVE-2022-4883, CVE-2022-46285, CVE-2022-44617 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| libzstd1 | CVE-2022-4899 | https://nvd.nist.gov/vuln/detail/CVE-2022-4899 |
| Linux kernel | CVE-2023-46862, CVE-2023-5158, CVE-2023-6039, CVE-2023-6176, CVE-2023-39198, CVE-2023-2006, CVE-2023-4244, CVE-2023-5717 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| llvm | CVE-2022-4899, CVE-2023-29933, CVE-2023-29935, CVE-2023-29934, CVE-2023-29941, CVE-2023-29942 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| login_defs | CVE-2023-29383 | https://nvd.nist.gov/vuln/detail/CVE-2023-29383 |
| apache | CVE-2023-35887 | https://nvd.nist.gov/vuln/detail/CVE-2023-35887 |
| bouncy castle | CVE-2022-45146 | https://nvd.nist.gov/vuln/detail/CVE-2022-45146 |
| keycloak | CVE-2023-1664, CVE-2022-4361, CVE-2023-0105, CVE-2023-2585, CVE-2023-2422, CVE-2022-1471, | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| pcre2 | CVE-2022-1586 | https://nvd.nist.gov/vuln/detail/CVE-2022-1586 |
| perl | CVE-2023-31484 | https://nvd.nist.gov/vuln/detail/CVE-2023-31484 |
| pip | CVE-2021-3572 | https://nvd.nist.gov/vuln/detail/CVE-2021-3572 |
| protobuf-c | CVE-2022-48468 | https://nvd.nist.gov/vuln/detail/CVE-2022-48468 |
| qt5-srpm-macros | CVE-2023-34410, CVE-2021-38593, CVE-2023-24607, CVE-2023-33285 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| requests | CVE-2023-32681 | https://nvd.nist.gov/vuln/detail/CVE-2023-32681 |
| rpm | CVE-2021-35939, CVE-2021-35938, CVE-2021-35937 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| semver | CVE-2022-25883 | https://nvd.nist.gov/vuln/detail/CVE-2022-25883 |
| setuptools | CVE-2022-40897 | https://nvd.nist.gov/vuln/detail/CVE-2022-40897 |
| shadow | CVE-2023-29383 | https://nvd.nist.gov/vuln/detail/CVE-2023-29383 |
| systemd | CVE-2022-3821, CVE-2022-4415, CVE-2022-2526, CVE-2023-26604 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| tar | CVE-2022-48303 | https://nvd.nist.gov/vuln/detail/CVE-2022-48303 |
| terminfo-base | CVE-2023-29491 | https://nvd.nist.gov/vuln/detail/CVE-2023-29491 |
| urllib3 | CVE-2020-26137, CVE-2021-33503 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| vim | CVE-2023-2609, CVE-2023-2426, CVE-2023-2610, CVE-2022-1897, CVE-2022-1927, CVE-2022-1785, | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
| zlib | CVE-2022-37434 | https://nvd.nist.gov/vuln/detail/CVE-2022-37434 |
Productos afectados y corrección
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| DELL Data Lakehouse System Software | 1.0.0.0 | 1.0.0.0 | https://www.dell.com/support/home/product-support/product/dell-data-lakehouse/docs |
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| DELL Data Lakehouse System Software | 1.0.0.0 | 1.0.0.0 | https://www.dell.com/support/home/product-support/product/dell-data-lakehouse/docs |
Customers can access the software installation process through the comprehensive Installation Guide
Historial de revisiones
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-03-20 | Initial Release |
Información relacionada
Aviso legal
Productos afectados
Dell Data LakehousePropiedades del artículo
Número de artículo: 000223321
Tipo de artículo: Dell Security Advisory
Última modificación: 19 sept 2025
Encuentra las respuestas que necesitas con la ayuda de otros usuarios de Dell
Servicios de asistencia
Comprueba si tu dispositivo está cubierto por los servicios de asistencia.