DSA-2020-097: Dell Wyse ThinLinux Security Update for Multiple Third Party Components Vulnerabilities

The components are updated for the following vulnerabilities:

PPPD

• CVE-2020-8597

Oracle Critical Patch Update Advisory

• CVE-2019-13117
• CVE-2019-13118
• CVE-2019-16168

For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/home.cfm.   To search for a particular CVE, use the database’s search utility at http://web.nvd.nist.gov/view/vuln/search.

Affected products:

Dell Wyse ThinLinux 2.2 release, and prior releases running on Wyse 3040, Wyse 5070 and Wyse 5470 Thin Clients.

Remediation:

The following Dell Wyse ThinLinux add-on contains a resolution to these vulnerabilities:

• Dell Wyse ThinLinux add-on for TL2.2

Dell recommends all customers on release TL2.2 to apply this add-on at the earliest opportunity.

Dell recommends all customers on releases older than TL2.2 upgrade to release TL2.2 and then apply this add-on at the earliest opportunity.