DSA-2024-047: Security Update for Dell SmartFabric Storage Software Vulnerabilities.

Podsumowanie: Dell SmartFabric Storage Software remediation is available for Multiple Security Vulnerabilities that could be exploited by malicious users to compromise the affected system.

Ten artykuł dotyczy Ten artykuł nie dotyczy Ten artykuł nie jest powiązany z żadnym konkretnym produktem. Nie wszystkie wersje produktu zostały zidentyfikowane w tym artykule.
Sprawdź inne zasoby

Skutki

Critical

Szczegóły

Third-party Component  CVEs  More Information 
OpenSSH CVE-2023-38408, CVE-2023-41617, CVE-2023-48795, CVE-2023-51385 See NVD link below for individual scores for each CVE.  https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
ncurses CVE-2023-29491 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
golang.org/x/sys CVE-2022-29526 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
golang.org/x/text CVE-2022-32149 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
golang.org.x.et CVE-2023-39325, CVE-2023-3978, CVE-2023-44487 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
golang.or/x/net CVE-2023-39325, CVE-2023-3978, CVE-2023-44487, CVE-2021-33194, CVE-2022-27664, CVE-2022-41723, CVE-2021-31525 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
golang.org/rpc CVE-2023-44487 GitHub Security AdvisoryThis hyperlink is taking you to a website outside of Dell Technologies.
mariadb CVE-2022-47015

 		 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
Linux kernel CVE-2023-1989, CVE-2023-35827, CVE-2023-4244, CVE-2023-42753, CVE-2023-45871, CVE-2023-4622, CVE-2023-4623, CVE-2023-46813, CVE-2023-4921, CVE-2023-5178, CVE-2023-5717, CVE-2023-6176, CVE-2023-6531, CVE-2023-6817, CVE-2023-6932, CVE-2021-44879, CVE-2023-20588, CVE-2023-34324, CVE-2023-37453, CVE-2023-3772, CVE-2023-3773, CVE-2023-39189, CVE-2023-39192, CVE-2023-39194, CVE-2023-42754, CVE-2023-42755, CVE-2023-42756, CVE-2023-45863, CVE-2023-46862, CVE-2023-5197, CVE-2023-6121, CVE-2024-0193, CVE-2023-51780, CVE-2023-51781, CVE-2023-51782 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
glibc CVE-2023-4911 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
runc CVE-2022-29162 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
bind CVE-2023-3341 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
openssl CVE-2023-3446, CVE-2023-3817
 		 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
dbus CVE-2023-34969 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
krb5 CVE-2023-36054
 		 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
cURL CVE-2023-38545, CVE-2023-27533, CVE-2023-27534, CVE-2023-27535, CVE-2023-27536, CVE-2023-27538, CVE-2023-28321, CVE-2023-38546 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
exim4 CVE-2023-42115, CVE-2023-42116, CVE-2023-51766, CVE-2023-42114


 		 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
See  Debian Security Tracker for details
Debian Security TrackerThis hyperlink is taking you to a website outside of Dell Technologies.
libx11-6 CVE-2023-43787, CVE-2023-43785, CVE-2023-43786 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
libxpm4 CVE-2023-43788, CVE-2023-43789 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
libnghttp2-14 CVE-2023-44487 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
libwebp6 CVE-2023-4863 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.
paramiko
CVE-2023-48795		 See NVD link below for individual scores for each CVE.
https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

Firma Dell Technologies zaleca wszystkim klientom uwzględnienie zarówno wyniku podstawowego CVSS, jak i wszelkich istotnych wyników czasowych i środowiskowych, które mogą mieć wpływ na potencjalną dotkliwość związaną z konkretną luką w zabezpieczeniach.

Produkty, których dotyczy problem, i środki zaradcze

CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2023-38408, CVE-2023-41617, CVE-2023-48795, CVE-2023-51385 SmartFabric Storage Software Versions prior to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-29491 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-29526 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-32149 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-39325, CVE-2023-3978, CVE-2023-44487 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-39325, CVE-2023-3978, CVE-2023-44487, CVE-2021-33194, CVE-2022-27664, CVE-2022-41723, CVE-2021-31525 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-44487 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-47015
 		 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-1989, CVE-2023-35827, CVE-2023-4244, CVE-2023-42753, CVE-2023-45871, CVE-2023-4622, CVE-2023-4623, CVE-2023-46813, CVE-2023-4921, CVE-2023-5178, CVE-2023-5717, CVE-2023-6176, CVE-2023-6531, CVE-2023-6817, CVE-2023-6932, CVE-2021-44879, CVE-2023-20588, CVE-2023-34324, CVE-2023-37453, CVE-2023-3772, CVE-2023-3773, CVE-2023-39189, CVE-2023-39192, CVE-2023-39194, CVE-2023-42754, CVE-2023-42755, CVE-2023-42756, CVE-2023-45863, CVE-2023-46862, CVE-2023-5197, CVE-2023-6121, CVE-2024-0193, CVE-2023-51780, CVE-2023-51781, CVE-2023-51782 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-4911 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-29162 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-3341 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-3446, CVE-2023-3817 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-34969 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-36054 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-38545, CVE-2023-27533, CVE-2023-27534, CVE-2023-27535, CVE-2023-27536, CVE-2023-27538, CVE-2023-28321, CVE-2023-38546 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-42115, CVE-2023-42116, CVE-2023-51766, CVE-2023-42114
 		 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-43787, CVE-2023-43785, CVE-2023-43786 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-43788, CVE-2023-43789 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-44487 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-4863 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download

CVE-2023-48795		 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVEs Addressed Product Affected Versions Remediated Versions Link
CVE-2023-38408, CVE-2023-41617, CVE-2023-48795, CVE-2023-51385 SmartFabric Storage Software Versions prior to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-29491 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-29526 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-32149 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-39325, CVE-2023-3978, CVE-2023-44487 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-39325, CVE-2023-3978, CVE-2023-44487, CVE-2021-33194, CVE-2022-27664, CVE-2022-41723, CVE-2021-31525 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-44487 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-47015
 		 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-1989, CVE-2023-35827, CVE-2023-4244, CVE-2023-42753, CVE-2023-45871, CVE-2023-4622, CVE-2023-4623, CVE-2023-46813, CVE-2023-4921, CVE-2023-5178, CVE-2023-5717, CVE-2023-6176, CVE-2023-6531, CVE-2023-6817, CVE-2023-6932, CVE-2021-44879, CVE-2023-20588, CVE-2023-34324, CVE-2023-37453, CVE-2023-3772, CVE-2023-3773, CVE-2023-39189, CVE-2023-39192, CVE-2023-39194, CVE-2023-42754, CVE-2023-42755, CVE-2023-42756, CVE-2023-45863, CVE-2023-46862, CVE-2023-5197, CVE-2023-6121, CVE-2024-0193, CVE-2023-51780, CVE-2023-51781, CVE-2023-51782 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-4911 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2022-29162 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-3341 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-3446, CVE-2023-3817 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-34969 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-36054 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-38545, CVE-2023-27533, CVE-2023-27534, CVE-2023-27535, CVE-2023-27536, CVE-2023-27538, CVE-2023-28321, CVE-2023-38546 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-42115, CVE-2023-42116, CVE-2023-51766, CVE-2023-42114
 		 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-43787, CVE-2023-43785, CVE-2023-43786 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-43788, CVE-2023-43789 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-44487 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download
CVE-2023-4863 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download

CVE-2023-48795		 SmartFabric Storage Software Versions prior to to 1.4.2 1.4.2 SmartFabric Storage Software Download

Obejścia problemu i środki zaradcze

None

Historia zmian

Revision DateDescription
1.02024-02-07Initial Release
2.02024-02-15Updating the title to reflect year 2024
3.02024-05-22Updated for enhanced presentation with no other changes to content.

Powiązane informacje

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Zastrzeżenie prawne

Produkty, których dotyczy problem

SmartFabric Storage Software Download for NVMe/TCP SAN
Właściwości artykułu
Numer artykułu: 000221912
Typ artykułu: Dell Security Advisory
Ostatnia modyfikacja: 22 maj 2024
Znajdź odpowiedzi na swoje pytania u innych użytkowników produktów Dell
Usługi pomocy technicznej
Sprawdź, czy Twoje urządzenie jest objęte usługą pomocy technicznej.