Latest News

NSW' $969m single digital patient record at risk of cost overruns

QBE backs leadership and startup culture to deliver transformation

ATA asks fed gov to make triple zero "compliant" device list public

Australian teenagers ask High Court to block social media ban

TPG Telecom says disaster roaming deal with Telstra and Optus is close

Dell patches virtual storage software against OpenSSL, Apache bugs

By Richard Chirgwin

Nov 25 2022 11:54AM

Text4Shell among the bug-fixes.

Dell has been moved to patch vulnerabilities inherited from Apache and OpenSSL.

Dell patches virtual storage software against OpenSSL, Apache bugs

The fixes are for the Dell Virtual Storage Integrator for VMware vSphere client and are outlined in this advisory.

The Apache fix is for the Text4Shell vulnerability, CVE-2022-42889, revealed in mid-October.

In some cases, the CVE advisory explained, Apache Commons versions 1.5 to 1.9 use a Java text manipulation library that can be attacked to gain access to the underlying host.

The OpenSSL bugs, CVE-2022-3602 and CVE-2022-3786, are buffer overruns in how the encryption library handles X.509 certificates and were disclosed and patched earlier this month.

Dell has also updated two older advisories covering its EMC VxRail software.

In one, fixes have been added for a number of VxM SUSE Linux bugs; and in the other, a number of CVEs have been added to the advisory.

Got a news tip for our journalists? Share it with us anonymously here.

Copyright © iTnews.com.au . All rights reserved.

Tags:

apache dell openssl security text4shell vcenter vulnerability

Partner Content

Machine identity a key priority for organisations’ security strategies: CyberArk

Partner Content Machine identity a key priority for organisations’ security strategies: CyberArk

Suntory Oceania’s $30 million IT transformation powers carbon-neutral multi beverage facility

Partner Content Suntory Oceania’s $30 million IT transformation powers carbon-neutral multi beverage facility

What Embracing the AI Platform Shift Really Means

Partner Content What Embracing the AI Platform Shift Really Means

How small audio upgrades can enhance your hybrid work and improve business ROI

Partner Content How small audio upgrades can enhance your hybrid work and improve business ROI

Sponsored Whitepapers

Make cloud predictable again

Make cloud predictable again

Cut through the SASE confusion

Cut through the SASE confusion

AI Readiness Starts Here: Build a Future-Proof, Value-Driven AI Strategy with Brennan

AI Readiness Starts Here: Build a Future-Proof, Value-Driven AI Strategy with Brennan

Build the Infrastructure for Your AI Revolution

Build the Infrastructure for Your AI Revolution

2026 Engineering Reality Report

2026 Engineering Reality Report

Events

iTnews Executive Retreat - Security Leaders Edition

Most Read Articles

Labor bets on agency to monitor AI companies

Labor bets on agency to monitor AI companies

Australia, US and UK sanction Russian cyber firms over ransomware links

Australia, US and UK sanction Russian cyber firms over ransomware links

Startup finds flaws in popular VoIP products

Startup finds flaws in popular VoIP products

JPMorgan, Citi, Morgan Stanley client data may be exposed by vendor's hack

JPMorgan, Citi, Morgan Stanley client data may be exposed by vendor's hack

Sydney-based AI-cloud waste startup raises $3m

Sydney-based AI-cloud waste startup raises $3m

Brennan uses NiCE to modernise its contact centre

Brennan uses NiCE to modernise its contact centre

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Interactive introduces private cloud platform

Interactive introduces private cloud platform

Digital61 expands cybersecurity portfolio

Digital61 expands cybersecurity portfolio

Most popular tech stories