DSA-2023-454: Security Update for Dell Cloud Tiering Appliance for Multiple Third-Party Component Vulnerabilities
Podsumowanie: Dell Cloud Tiering Appliance remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
Ten artykuł dotyczy
Ten artykuł nie dotyczy
Ten artykuł nie jest powiązany z żadnym konkretnym produktem.
Nie wszystkie wersje produktu zostały zidentyfikowane w tym artykule.
Skutki
High
Szczegóły
| Third-party Component | CVEs | More Information |
|---|---|---|
| bind | CVE-2023-3341 | CVE-2023-3341  |
| binutils | CVE-2020-19726, CVE-2021-32256, CVE-2022-35205, CVE-2022-35206, CVE-2022-4285, CVE-2022-44840, CVE-2022-45703, CVE-2022-47673, CVE-2022-47695, CVE-2022-47696, CVE-2022-48063, CVE-2022-48064, CVE-2022-48065, CVE-2023-0687, CVE-2023-1579, CVE-2023-1972, CVE-2023-2222, CVE-2023-25585, CVE-2023-25587, CVE-2023-25588 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| cups | CVE-2023-32360, CVE-2023-4504 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| gcc | CVE-2023-4039 | CVE-2023-4039 |
| glibc | CVE-2023-4813 | CVE-2023-4813 |
| java-11-openjdk | CVE-2023-22006,CVE-2023-22036,CVE-2023-22041,CVE-2023-22044,CVE-2023-22045,CVE-2023-22049,CVE-2023-25193 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| kernel-default | CVE-2023-3358,CVE-2023-3390,CVE-2023-23455,CVE-2023-23454 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| krb5 | CVE-2023-36054 | CVE-2023-36054 |
| libnghttp2 | CVE-2023-35945 | CVE-2023-35945 |
| open-vm-tools | CVE-2023-20867,CVE-2023-20900 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| openssl-1_1 | CVE-2022-4304,CVE-2023-3446,CVE-2023-3817 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| python2 | CVE-2023-39615 | CVE-2023-39615 |
| python3 | CVE-2023-40217 | CVE-2023-40217 |
| Third-party Component | CVEs | More Information |
|---|---|---|
| bind | CVE-2023-3341 | CVE-2023-3341 |
| binutils | CVE-2020-19726, CVE-2021-32256, CVE-2022-35205, CVE-2022-35206, CVE-2022-4285, CVE-2022-44840, CVE-2022-45703, CVE-2022-47673, CVE-2022-47695, CVE-2022-47696, CVE-2022-48063, CVE-2022-48064, CVE-2022-48065, CVE-2023-0687, CVE-2023-1579, CVE-2023-1972, CVE-2023-2222, CVE-2023-25585, CVE-2023-25587, CVE-2023-25588 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| cups | CVE-2023-32360, CVE-2023-4504 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| gcc | CVE-2023-4039 | CVE-2023-4039 |
| glibc | CVE-2023-4813 | CVE-2023-4813 |
| java-11-openjdk | CVE-2023-22006,CVE-2023-22036,CVE-2023-22041,CVE-2023-22044,CVE-2023-22045,CVE-2023-22049,CVE-2023-25193 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| kernel-default | CVE-2023-3358,CVE-2023-3390,CVE-2023-23455,CVE-2023-23454 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| krb5 | CVE-2023-36054 | CVE-2023-36054 |
| libnghttp2 | CVE-2023-35945 | CVE-2023-35945 |
| open-vm-tools | CVE-2023-20867,CVE-2023-20900 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| openssl-1_1 | CVE-2022-4304,CVE-2023-3446,CVE-2023-3817 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| python2 | CVE-2023-39615 | CVE-2023-39615 |
| python3 | CVE-2023-40217 | CVE-2023-40217 |
Produkty, których dotyczy problem, i środki zaradcze
| Product | Software/Firmware | Affected Versions | Updated Version | Link |
|---|---|---|---|---|
| Cloud Tiering Appliance | CTA and CTA-HA | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-appliance/drivers |
| Cloud Tiering Appliance | CTA/VE and CTA-HA/VE | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
| Product | Software/Firmware | Affected Versions | Updated Version | Link |
|---|---|---|---|---|
| Cloud Tiering Appliance | CTA and CTA-HA | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-appliance/drivers |
| Cloud Tiering Appliance | CTA/VE and CTA-HA/VE | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
Historia zmian
| Revision | Date | Description |
|---|---|---|
| 1.0 | 29-11-2023 | Initial Release |
Powiązane informacje
Zastrzeżenie prawne
Produkty, których dotyczy problem
Cloud Tiering Appliance, Cloud Tiering Appliance Platform, Cloud Tiering Appliance/VEWłaściwości artykułu
Numer artykułu: 000219980
Typ artykułu: Dell Security Advisory
Ostatnia modyfikacja: 19 wrz 2025
Znajdź odpowiedzi na swoje pytania u innych użytkowników produktów Dell
Usługi pomocy technicznej
Sprawdź, czy Twoje urządzenie jest objęte usługą pomocy technicznej.