Article Number: 000211926
DSA-2023-130: Dell Container Storage Modules Security Update for a smuggling attack Vulnerability
Summary: Dell Container Storage Modules remediation is available for golang.org/x/net package that could be exploited by malicious users to compromise the affected system.
Article Content
Impact
High
Details
| Third-party Component |
CVEs | More Information |
|---|---|---|
| golang.org/x/net | CVE-2022-41721 | https://access.redhat.com/security/cve/cve-2022-41721 |
Affected Products and Remediation
| CVEs Addressed |
Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| CVE-2022-41721 |
Dell Container Storage Modules | Versions prior to 1.6 | Version 1.6 | https://github.com/dell/csm/tree/v1.6.0 |
| CVEs Addressed |
Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|---|
| CVE-2022-41721 |
Dell Container Storage Modules | Versions prior to 1.6 | Version 1.6 | https://github.com/dell/csm/tree/v1.6.0 |
Workarounds and Mitigations
None
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2023-04-03 | Initial Release |
| 2.0 | 2023-09-01 | Updated for enhanced presentation with no changes to content. |
Related Information
Legal Information
Article Properties
Affected Product
Container Storage Interface (CSI) Family, Container Storage Interface (CSI) Drivers Family, CSI Driver for PowerFlex, CSI Driver for PowerScale, CSI Driver for PowerMax, CSI Driver for PowerStore, CSI Driver for Unity
, Container Storage Interface (CSI) Drivers Series
...
Last Published Date
01 Sep 2023
Version
3
Article Type
Dell Security Advisory