DSA-2023-454: Security Update for Dell Cloud Tiering Appliance for Multiple Third-Party Component Vulnerabilities
摘要: Dell Cloud Tiering Appliance remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
本文章適用於
本文章不適用於
本文無關於任何特定產品。
本文未識別所有產品版本。
影響
High
詳細資料
| Third-party Component | CVEs | More Information |
|---|---|---|
| bind | CVE-2023-3341 | CVE-2023-3341  |
| binutils | CVE-2020-19726, CVE-2021-32256, CVE-2022-35205, CVE-2022-35206, CVE-2022-4285, CVE-2022-44840, CVE-2022-45703, CVE-2022-47673, CVE-2022-47695, CVE-2022-47696, CVE-2022-48063, CVE-2022-48064, CVE-2022-48065, CVE-2023-0687, CVE-2023-1579, CVE-2023-1972, CVE-2023-2222, CVE-2023-25585, CVE-2023-25587, CVE-2023-25588 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| cups | CVE-2023-32360, CVE-2023-4504 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| gcc | CVE-2023-4039 | CVE-2023-4039 |
| glibc | CVE-2023-4813 | CVE-2023-4813 |
| java-11-openjdk | CVE-2023-22006,CVE-2023-22036,CVE-2023-22041,CVE-2023-22044,CVE-2023-22045,CVE-2023-22049,CVE-2023-25193 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| kernel-default | CVE-2023-3358,CVE-2023-3390,CVE-2023-23455,CVE-2023-23454 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| krb5 | CVE-2023-36054 | CVE-2023-36054 |
| libnghttp2 | CVE-2023-35945 | CVE-2023-35945 |
| open-vm-tools | CVE-2023-20867,CVE-2023-20900 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| openssl-1_1 | CVE-2022-4304,CVE-2023-3446,CVE-2023-3817 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| python2 | CVE-2023-39615 | CVE-2023-39615 |
| python3 | CVE-2023-40217 | CVE-2023-40217 |
| Third-party Component | CVEs | More Information |
|---|---|---|
| bind | CVE-2023-3341 | CVE-2023-3341 |
| binutils | CVE-2020-19726, CVE-2021-32256, CVE-2022-35205, CVE-2022-35206, CVE-2022-4285, CVE-2022-44840, CVE-2022-45703, CVE-2022-47673, CVE-2022-47695, CVE-2022-47696, CVE-2022-48063, CVE-2022-48064, CVE-2022-48065, CVE-2023-0687, CVE-2023-1579, CVE-2023-1972, CVE-2023-2222, CVE-2023-25585, CVE-2023-25587, CVE-2023-25588 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| cups | CVE-2023-32360, CVE-2023-4504 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| gcc | CVE-2023-4039 | CVE-2023-4039 |
| glibc | CVE-2023-4813 | CVE-2023-4813 |
| java-11-openjdk | CVE-2023-22006,CVE-2023-22036,CVE-2023-22041,CVE-2023-22044,CVE-2023-22045,CVE-2023-22049,CVE-2023-25193 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| kernel-default | CVE-2023-3358,CVE-2023-3390,CVE-2023-23455,CVE-2023-23454 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| krb5 | CVE-2023-36054 | CVE-2023-36054 |
| libnghttp2 | CVE-2023-35945 | CVE-2023-35945 |
| open-vm-tools | CVE-2023-20867,CVE-2023-20900 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| openssl-1_1 | CVE-2022-4304,CVE-2023-3446,CVE-2023-3817 | See SUSE link for individual scores for each CVE https://www.suse.com/security/cve/ |
| python2 | CVE-2023-39615 | CVE-2023-39615 |
| python3 | CVE-2023-40217 | CVE-2023-40217 |
受影響的產品與補救措施
| Product | Software/Firmware | Affected Versions | Updated Version | Link |
|---|---|---|---|---|
| Cloud Tiering Appliance | CTA and CTA-HA | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-appliance/drivers |
| Cloud Tiering Appliance | CTA/VE and CTA-HA/VE | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
| Product | Software/Firmware | Affected Versions | Updated Version | Link |
|---|---|---|---|---|
| Cloud Tiering Appliance | CTA and CTA-HA | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-appliance/drivers |
| Cloud Tiering Appliance | CTA/VE and CTA-HA/VE | Versions prior to 13.2.0.2.26 | Version 13.2.0.2.26 | https://www.dell.com/support/home/product-support/product/cloud-tiering-applianceve/drivers |
修訂歷史記錄
| Revision | Date | Description |
|---|---|---|
| 1.0 | 29-11-2023 | Initial Release |
相關資訊
法律免責聲明
受影響的產品
Cloud Tiering Appliance, Cloud Tiering Appliance Platform, Cloud Tiering Appliance/VE文章屬性
文章編號: 000219980
文章類型: Dell Security Advisory
上次修改時間: 19 9月 2025
向其他 Dell 使用者尋求您問題的答案
支援服務
檢查您的裝置是否在支援服務的涵蓋範圍內。