DSA-2026-245: Security Update for Dell VxRail for Multiple Third-Party Component Vulnerabilities

요약: Dell VxRail remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

이 문서는 다음에 적용됩니다. 이 문서는 다음에 적용되지 않습니다. 이 문서는 특정 제품과 관련이 없습니다. 모든 제품 버전이 이 문서에 나와 있는 것은 아닙니다.
기타 리소스 확인

영향

High

세부 정보

Third-party Component CVEs More Information
Linux Kernel CVE-2026-31431 https://nvd.nist.gov/vuln/search This hyperlink is taking you to a website outside of Dell Technologies. 

 

Dell Technologies는 모든 고객이 CVSS 기본 점수와 관련 임시 및 환경 점수를 모두 고려할 것을 권장합니다. 이 경우 특정 보안 취약성과 관련된 잠재적인 심각도에 영향을 미칠 수 있습니다.

영향을 받는 제품 및 문제 해결

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2026-31431 Dell VxRail Appliance Versions prior to 8.0.390

Version 8.0.390 or later

 

Customers are encouraged to follow mitigation steps below until remediation has been released.

 Target Availability:
June 2026

 

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2026-31431 Dell VxRail Appliance Versions prior to 8.0.390

Version 8.0.390 or later

 

Customers are encouraged to follow mitigation steps below until remediation has been released.

 Target Availability:
June 2026

 

해결 방법 및 완화 방안

CVE ID Workaround and Mitigation
CVE-2026-31431

For customers who need to mitigate the vulnerability before upgrading, Dell recommends blacklisting the algif_aead kernel module.

Steps to Apply the Workaround:

  1. SSH into the VxRail Manager as root.
  2. Run the following commands to blacklist the module and unload it if currently loaded:

echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif-aead.conf
rmmod algif_aead 2>/dev/null

  1. Verify the workaround is in effect:

modprobe algif_aead

This command should fail (module load denied).

lsmod | grep algif_aead

This should return empty (module not loaded).

Notes on the workaround:

  • The install algif_aead /bin/false directive redirects any module load request to /bin/false, effectively denying the load.
  • The blacklist configuration file (/etc/modprobe.d/disable-algif-aead.conf) is not overwritten by kernel package updates and will persist across VxRail LCM upgrades.
  • Disabling algif_aead will not affect: OS boot/shutdown/reboot, kernel updates, network services (SSH, HTTP, DNS), IPsec VPN, disk encryption (dm-crypt/LUKS), container runtime (Docker/containerd), any VxRail Manager functions, or vCenter operations.

Removing the Workaround After Upgrade

After upgrading to VxRail 8.0.390 or later, Dell strongly recommends removing the blacklist configuration to ensure compatibility with potential future enhancements:

rm -f /etc/modprobe.d/disable-algif-aead.conf

 

개정 내역

RevisionDateDescription
1.02026-06-05Initial Release

 

관련 정보

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

법적 고지 사항

해당 제품

VxRail, VxRail 460 and 470 Nodes, VxRail Appliance Series, VxRail D Series Nodes, VxRail D560, VxRail D560F, VxRail E Series Nodes, VxRail E460, VxRail E560, VxRail E560 VCF

제품

VxRail G Series Nodes, VxRail E560F, VxRail E560F VCF, VxRail E560N, VxRail E560N VCF, VxRail E660, VxRail E660F, VxRail E660N, VxRail E665, VxRail E665F, VxRail E665N, VxRail G560, VxRail G560 VCF, VxRail G560F, VxRail G560F VCF , VxRail P Series Nodes, VxRail P470, VxRail P570, VxRail P570 VCF, VxRail P570F, VxRail P570F VCF, VxRail P580N, VxRail P580N VCF, VxRail P670F, VxRail P670N, VxRail P675F, VxRail P675N, VxRail S Series Nodes, VxRail S470, VxRail S570, VxRail S570 VCF, VxRail S670, VxRail V Series Nodes, VxRail V470, VxRail V570, VxRail V570 VCF, VxRail V570F, VxRail V570F VCF, VXRAIL V670F, VxRail VD-4000R, VxRail VD-4000W, VxRail VD-4000Z, VxRail VD-4510C, VxRail VD-4520C, VxRail VD Series Nodes, VxRail VE-660, VxRail VE-6615, VxRail VE-670, VxRail VP-760, VxRail VP-7625, VxRail VP-770, VxRail VS-760 ...
문서 속성
문서 번호: 000473635
문서 유형: Dell Security Advisory
마지막 수정 시간: 05 6월 2026
다른 Dell 사용자에게 질문에 대한 답변 찾기
지원 서비스
디바이스에 지원 서비스가 적용되는지 확인하십시오.