DSA-2024-487: Security Update for Cloud Tiering Appliance/VE Multiple Third-Party Component Vulnerabilities.
Résumé: Dell Cloud Tiering Appliance/VE remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Impact
Critical
Détails
|
Third-party Component |
CVEs |
More Information |
|
openssl-1_1 |
CVE-2024-5535, CVE-2023-50782 |
See NVD link below for individual scores for each CVE. |
|
postgresql16 |
CVE-2024-7348 |
See NVD link below for individual scores for each CVE. |
|
kernel-default |
CVE-2022-0854, CVE-2022-20368, CVE-2022-28748, CVE-2022-2964, CVE-2022-48686, CVE-2022-48791, CVE-2022-48802, CVE-2022-48805, CVE-2022-48839, CVE-2022-48853, CVE-2022-48872, CVE-2022-48873, CVE-2022-48901, CVE-2022-48912, CVE-2022-48919, CVE-2022-48925, CVE-2023-1582, CVE-2023-2176, CVE-2023-52854, CVE-2024-26583, CVE-2024-26584, CVE-2024-26800, CVE-2024-41011, CVE-2024-41062, CVE-2024-42077, CVE-2024-42232, CVE-2024-42271, CVE-2024-43861, CVE-2024-43882, CVE-2024-43883, CVE-2024-44947, CVE-2021-47069, CVE-2022-48911, CVE-2022-48945, CVE-2024-36971, CVE-2024-41087, CVE-2024-44946, CVE-2024-45003, CVE-2024-45021, CVE-2024-46695, CVE-2024-46774 |
See NVD link below for individual scores for each CVE. |
|
Python-setuptools |
CVE-2024-6345 |
See NVD link below for individual scores for each CVE. |
|
xen-libs |
CVE-2024-31145, CVE-2024-31146 |
See NVD link below for individual scores for each CVE. |
|
python3 |
CVE-2024-6923, CVE-2024-7592 |
See NVD link below for individual scores for each CVE. |
|
kernel-firmware |
CVE-2023-31315 |
See NVD link below for individual scores for each CVE. |
|
java-11-openjdk |
CVE-2024-21208, CVE-2024-21210, CVE-2024-21217, CVE-2024-21235 |
See NVD link below for individual scores for each CVE. |
Produits concernés et mesure corrective
|
Product |
Software/Firmware |
Affected Versions |
Remediated Versions |
Link |
|
Cloud Tiering Appliance |
CTA and CTA-HA |
Versions prior to 13.2.0.2.32 |
Version 13.2.0.2.32 or later |
https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
|
Cloud Tiering Appliance/VE |
CTA/VE and CTA-HA/VE |
Versions prior to 13.2.0.2.32 |
Version 13.2.0.2.32 or later |
https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
|
Product |
Software/Firmware |
Affected Versions |
Remediated Versions |
Link |
|
Cloud Tiering Appliance |
CTA and CTA-HA |
Versions prior to 13.2.0.2.32 |
Version 13.2.0.2.32 or later |
https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
|
Cloud Tiering Appliance/VE |
CTA/VE and CTA-HA/VE |
Versions prior to 13.2.0.2.32 |
Version 13.2.0.2.32 or later |
https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
Historique des révisions
|
Revision |
Date |
Description |
|
1.0 |
2024-12-09 |
Initial Release |