DSA-2019-199: Dell EMC Avamar Intel Microarchitectural Data Sampling Vulnerabilities

Yhteenveto: Multiple components within Dell EMC Avamar require a security update to address Intel Microarchitectural Data Sampling vulnerabilities.

Tämä artikkeli koskee tuotetta Tämä artikkeli ei koske tuotetta Tämä artikkeli ei liity tiettyyn tuotteeseen. Tässä artikkelissa ei yksilöidä kaikkia tuoteversioita.
Tutustu muihin resursseihin

Vaikutus

Medium

Tiedot

Summary:   
Multiple components within Dell EMC Avamar require a security update to address Intel Microarchitectural Data Sampling vulnerabilities.

The components are updated for the following vulnerabilities:   

  • Microarchitectural Store Buffer Data Sampling (MSBDS)

CVE-2018-12126

  • Microarchitectural Load Port Data Sampling (MLPDS)

CVE-2018-12127

  • Microarchitectural Fill Buffer Data Sampling (MFBDS)

CVE-2018-12130 

  • Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

CVE-2019-11091 

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

The components are updated for the following vulnerabilities:   

  • Microarchitectural Store Buffer Data Sampling (MSBDS)

CVE-2018-12126

  • Microarchitectural Load Port Data Sampling (MLPDS)

CVE-2018-12127

  • Microarchitectural Fill Buffer Data Sampling (MFBDS)

CVE-2018-12130 

  • Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

CVE-2019-11091 

See NVD (http://nvd.nist.gov/) for individual scores for each CVE

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

Tuotteet, joihin asia vaikuttaa, ja tilanteen korjaaminen

Affected products:      
Dell EMC Avamar Data Store Gen4T
Dell EMC Avamar Data Store Gen4S


Resolution:     
The following Dell EMC Avamar releases addresso these vulnerabilities. The resolution needs fixes for both Avamar application and hardware.

Dell EMC recommends all customers upgrade at the earliest opportunity. Refer to KB Article 513978: How to install an Avamar .avp hotfix using Avamar Installer (AVI) for instructions on applying the hotfix.


Affected products:      
Dell EMC Avamar Data Store Gen4T
Dell EMC Avamar Data Store Gen4S


Resolution:     
The following Dell EMC Avamar releases addresso these vulnerabilities. The resolution needs fixes for both Avamar application and hardware.

Dell EMC recommends all customers upgrade at the earliest opportunity. Refer to KB Article 513978: How to install an Avamar .avp hotfix using Avamar Installer (AVI) for instructions on applying the hotfix.


Versiohistoria

**

Asiaan liittyvät tiedot

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Vastuuvapauslauseke

Tuotteet, joihin vaikutus kohdistuu

Avamar Client, Avamar Server

Tuotteet

Avamar Client for VMware, Avamar Client for Windows, Avamar Data Migration Enabler, Avamar Data Store, Avamar Data Store Gen3, Avamar Data Store Gen4, Avamar Data Store Gen4S, Avamar Data Store Gen4T, Avamar Data Transport , Avamar Desktop/Laptop Option, Avamar Extended Retention, Avamar Media Access Node, Avamar Plug-in, Avamar Plug-in for Exchange 2003, Avamar Plug-in for Exchange 2007, Avamar Plug-in for Exchange VSS, Avamar Plug-in for Hyper-V VSS, Avamar Plug-in for NDMP, Avamar Plug-in for Oracle, Avamar Plug-in for SAP with Oracle, Avamar Plug-in for SharePoint VSS, Avamar Plug-in for SQL, Avamar Plug-in for Sybase ASE, Avamar REST API, Avamar Virtual Edition, Avamar with CloudBoost, Backup & Recovery Manager Avamar, OpenStack Data Protection Extension, Product Security Information, vRealize Data Protection Extension for Avamar ...
Artikkelin ominaisuudet
Artikkelin numero: 000001699
Artikkelin tyyppi: Dell Security Advisory
Viimeksi muutettu: 19 syysk. 2025
Etsi vastauksia kysymyksiisi muilta Dell-käyttäjiltä
Tukipalvelut
Tarkista, kuuluuko laitteesi tukipalveluiden piiriin.