Dell patches digital storage software program towards OpenSSL, Apache bugs


Dell has been moved to patch vulnerabilities inherited from Apache and OpenSSL.

The fixes are for the Dell Digital Storage Integrator for VMware vSphere shopper and are outlined in this advisory.

The Apache repair is for the Text4Shell vulnerability, CVE-2022-42889, revealed in mid-October. 

In some instances, the CVE advisory defined, Apache Commons variations 1.5 to 1.9 use a Java textual content manipulation library that may be attacked to realize entry to the underlying host.

The OpenSSL bugs, CVE-2022-3602 and CVE-2022-3786, are buffer overruns in how the encryption library handles X.509 certificates and have been disclosed and patched earlier this month.

Dell has additionally up to date two older advisories protecting its EMC VxRail software program.

In a single, fixes have been added for plenty of VxM SUSE Linux bugs; and within the different, plenty of CVEs have been added to the advisory.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *