メイン コンテンツに進む
  • すばやく簡単に注文します
  • 注文を表示して配送状況を追跡します
  • 会員限定の特典や割引の利用
  • 製品リストの作成とアクセス
  • 「Company Administration(会社情報の管理)」では、お使いのDell EMCのサイトや製品、製品レベルでのコンタクト先に関する情報を管理できます。

文書番号: 000124575


DSA-2019-153: Dell EMC Networking Security Advisory for Intel Platform Updates (2019.2)

概要: Dell EMC Networking require a security update to address vulnerabilities in Virtual Edge Platform 4600 (VEP 4600).

文書の内容


影響

High

詳細

Updates are available to address the following security vulnerabilities.

  • VEP4600
    • Intel-SA-00240: Intel CPU Local Privilege Escalation Advisory
      • CVE-2019-0151, CVE-2019-0152
    • Intel-SA-002802019.2 IPU UEFI Advisory
      • CVE-2019-11136, CVE-2019-11137
    • Intel-SA-002552019.2 IPU Intel Ethernet 700 Series Controllers Advisory
      • CVE-2019-0139, CVE-2019-0140, CVE-2019-0144, CVE-2019-0150
    • Intel-SA-002702019.2 IPU TSX Asynchronous Abort Advisory
      • CVE-2019-11135
    • Intel-SA-002712019.2 IPU Intel Xeon Scalable Processors Voltage Settings Modulation Advisory
      • CVE-2019-11139
Customers should also review their OS vendor’s Security Advisory for information, to ensure appropriate vulnerability identification and patch/configuration measures to be used in conjunction with the updates provided by Dell for the most effective mitigation.

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.   To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Updates are available to address the following security vulnerabilities.

  • VEP4600
    • Intel-SA-00240: Intel CPU Local Privilege Escalation Advisory
      • CVE-2019-0151, CVE-2019-0152
    • Intel-SA-002802019.2 IPU UEFI Advisory
      • CVE-2019-11136, CVE-2019-11137
    • Intel-SA-002552019.2 IPU Intel Ethernet 700 Series Controllers Advisory
      • CVE-2019-0139, CVE-2019-0140, CVE-2019-0144, CVE-2019-0150
    • Intel-SA-002702019.2 IPU TSX Asynchronous Abort Advisory
      • CVE-2019-11135
    • Intel-SA-002712019.2 IPU Intel Xeon Scalable Processors Voltage Settings Modulation Advisory
      • CVE-2019-11139
Customers should also review their OS vendor’s Security Advisory for information, to ensure appropriate vulnerability identification and patch/configuration measures to be used in conjunction with the updates provided by Dell for the most effective mitigation.

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.   To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.
デル・テクノロジーズでは、すべてのお客様に対して、CVSSベース スコアに加えて、特定のセキュリティの脆弱性に付随する潜在的な重要度に影響する可能性のある現状スコアや環境スコアも考慮することをお勧めしています。

影響を受ける製品と修復

Affected products:

Dell EMC Networking Virtual Edge Platform 4600 (VEP 4600)

Resolution:

The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.

  • VEP 4600 – Virtual Edge Platform 4600 Released June 2020

We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.

Please visit the Drivers and Downloads site for updates on the applicable products. Note, the following list of impacted products with released BIOS updates are linked. To learn more, visit the Dell Knowledge Base article Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.  

Customers may use one of the How to Subscribe to receive Dell Driver and Firmware Update notifications to be notified and download driver, BIOS and firmware updates automatically once available.

Dell EMC recommends all customers upgrade at the earliest opportunity.

Affected products:

Dell EMC Networking Virtual Edge Platform 4600 (VEP 4600)

Resolution:

The following is a list of impacted products and expected release dates. Dell recommends all customers update at the earliest opportunity.

  • VEP 4600 – Virtual Edge Platform 4600 Released June 2020

We encourage customers to review Intel’s Security Advisory for information, including appropriate identification and mitigation measures.

Please visit the Drivers and Downloads site for updates on the applicable products. Note, the following list of impacted products with released BIOS updates are linked. To learn more, visit the Dell Knowledge Base article Dell Updating Firmware using Dell Update Packages (DUP’s), and download the update for your Dell computer.  

Customers may use one of the How to Subscribe to receive Dell Driver and Firmware Update notifications to be notified and download driver, BIOS and firmware updates automatically once available.

Dell EMC recommends all customers upgrade at the earliest opportunity.

関連情報

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide


文書のプロパティ


製品

Networking

最後に公開された日付

22 5月 2021

バージョン

6

文書の種類

Dell Security Advisory