DSA-2020-240: Dell EMC Data Computing Appliance (DCA) Security Update for Multiple Third-Party Component Vulnerabilities
本文章適用於
本文章不適用於
本文無關於任何特定產品。
本文未識別所有產品版本。
影響
Critical
詳細資料
Multiple components within Dell EMC DCA require a security update to address various vulnerabilities.
The components are updated for the following vulnerabilities:
| Third-party Component |
CVE(s) |
More information |
| Kernel |
CVE-2017-18595 |
See NVD (http://nvd.nist.gov/) for individual scores for each CVE. |
| CVE-2019-19768 |
||
| CVE-2020-10711 |
||
| CVE-2019-19527 |
||
| CVE-2020-10757 |
||
| CVE-2020-12653 |
||
| CVE-2020-12654 |
||
| JRE Security Vulnerability Oracle July 2020 CPU |
CVE-2020-14556 |
|
| CVE-2020-14577 |
||
| CVE-2020-14578 |
||
| CVE-2020-14579 |
||
| CVE-2020-14583 |
||
| CVE-2020-14593 |
||
| CVE-2020-14621 |
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.
To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.
The components are updated for the following vulnerabilities:
| Third-party Component |
CVE(s) |
More information |
| Kernel |
CVE-2017-18595 |
See NVD (http://nvd.nist.gov/) for individual scores for each CVE. |
| CVE-2019-19768 |
||
| CVE-2020-10711 |
||
| CVE-2019-19527 |
||
| CVE-2020-10757 |
||
| CVE-2020-12653 |
||
| CVE-2020-12654 |
||
| JRE Security Vulnerability Oracle July 2020 CPU |
CVE-2020-14556 |
|
| CVE-2020-14577 |
||
| CVE-2020-14578 |
||
| CVE-2020-14579 |
||
| CVE-2020-14583 |
||
| CVE-2020-14593 |
||
| CVE-2020-14621 |
For more information about any of the Common Vulnerabilities and Exposures (CVEs) mentioned here, consult the National Vulnerability Database (NVD) at http://nvd.nist.gov/.
To search for a particular CVE, use the database s search utility at http://web.nvd.nist.gov/view/vuln/search.
受影響的產品與補救措施
Affected products:
Dell EMC Software: Only Dell EMC Data Computing Appliance (DCA) version 4.0.0.0 or 4.1.0.0 can be upgraded to version 4.2.0.0. To upgrade an earlier DCA version, you must migrate to version 4.0.0.0 (THEL7) and then to version 4.2.0.0.
Remediation:
The following Dell EMC DCA release addresses these vulnerabilities:
-
Dell EMC DCA 4.2.0.0
For Dell EMC DCA 4.2.0.0 and later, the security update is contained in the release 4.2.0.0.
Dell EMC recommends all customers upgrade at the earliest opportunity.
Contact Dell EMC DCA customer support to download the required rpm file and install it.
Affected products:
Dell EMC Software: Only Dell EMC Data Computing Appliance (DCA) version 4.0.0.0 or 4.1.0.0 can be upgraded to version 4.2.0.0. To upgrade an earlier DCA version, you must migrate to version 4.0.0.0 (THEL7) and then to version 4.2.0.0.
Remediation:
The following Dell EMC DCA release addresses these vulnerabilities:
-
Dell EMC DCA 4.2.0.0
For Dell EMC DCA 4.2.0.0 and later, the security update is contained in the release 4.2.0.0.
Dell EMC recommends all customers upgrade at the earliest opportunity.
Contact Dell EMC DCA customer support to download the required rpm file and install it.
相關資訊
法律免責聲明
受影響的產品
Data Computing Appliance V3產品
Data Computing Appliance V1, Data Computing Appliance V2, Data Computing Appliance V3, Product Security Information文章屬性
文章編號: 000180943
文章類型: Dell Security Advisory
上次修改時間: 22 5月 2021
向其他 Dell 使用者尋求您問題的答案
支援服務
檢查您的裝置是否在支援服務的涵蓋範圍內。