Manuals+

Dell Avamar Platform OS Security Patch Rollup 2023R3 Release Notes

Revision: Rev. 01

Date: October 2023

Company: Dell Inc.

These release notes provide supplemental information about the Avamar OS security patch rollup and list common vulnerabilities and exposures (CVEs) addressed in 2023R3. For CVEs pertaining to 2019R4 and earlier rollups, refer to the Avamar Platform OS Security Patch Rollup Release Notes.

Revision History

RevisionDateDescription
01October, 2023First release of this document for 2023R3.

Avamar Platform OS Security Patch Rollup

The Avamar platform OS security patch rollup automates the application of security and operating system updates released between scheduled Avamar server software releases. These notes list the common vulnerabilities and exposures (CVEs) addressed by each security patch.

The security patches apply to the following products:

  • Avamar server
  • Avamar combined proxy
  • Avamar Virtual Edition (AVE)
  • Avamar Data Store (ADS)
  • Avamar NDMP accelerator node
  • NetWorker Virtual Edition (NVE)
  • PowerProtect DP Series Appliance/Integrated Data Protection Appliance (IDPA)

This rollup also updates the following third-party components, if present:

  • Java Runtime Environment (JRE)
  • Apache Tomcat
  • BSAFE OwB FIPS package

Clean /boot Volume Procedure

This section details the procedure to free space on the server's /boot volume when applying the OS security patch rollup on ADS.

NOTE: To ensure all nodes in a multi-node server have the required free space on the /boot volume, perform this procedure on the utility node, all storage nodes, spare nodes, and accelerator nodes (if applicable).

NOTE: When manually applying the Security Rollup, the required free space on the /boot volume is 80MB. When applying via avinstaller, the required free space may differ between releases. Refer to Table 2 for specific requirements.

Free Space Targets

Rollup versionFree space target
2022R1 and laterNA

Steps

  1. Open a command shell and log in. Use one of the following methods:
    • For a single-node server: Log in as admin, then switch user to root using su -.
    • For a multi-node server: Log in to the utility node as admin, then switch user to root using su -.
  2. Check the size and free space on the /boot volume by typing: df -h /boot/. Verify if the volume meets the free space target.
  3. Check for *-kdump files on the /boot volume by typing: ls -l /boot/*kdump.
  4. Remove kdump files from the /boot volume by typing: rm /boot/*kdump.
  5. List installed kernels by typing: rpm -qa | grep kernel-default.
  6. Display the running kernel version by typing: uname -a.
  7. Identify any old kernels from the list of installed kernels, excluding the running kernel version.
  8. If old kernels are present, remove them by typing: rpm -ev kernel-default-VERSION_OLD kernel-default-base-VERSION_OLD.
  9. Re-check the installed and running kernel for any old kernel files in /boot. If present, remove them manually.
  10. Check for archived .gz files on the /boot volume by typing: ls -l /boot/*.gz.
  11. If necessary, remove any archived .gz files from the /boot volume by typing: rm /boot/*.gz.
  12. If the space on the /boot volume is still insufficient (less than 80MB for manual installation), back up and remove the running kernel:
    • Create a backup directory: mkdir /usr/local/avamar/var/rollup_bak
    • Move kernel files: mv /boot/*VERSION_NEW* /usr/local/avamar/var/rollup_bak

    NOTE: After the security rollup installation is complete, restore the running kernel files by following step 14.

  13. Check the size and free space on the /boot volume again by typing: df -h /boot/.
  14. For manual installation, after rollup installation is complete, restore the running kernel (if backed up in step 12) by typing: mv /usr/local/avamar/var/rollup_bak/*-default /boot and then rm -r /usr/local/avamar/var/rollup_bak.

2023R3 CVEs

This release contains patches for numerous Common Vulnerabilities and Exposures (CVEs) across various Dell Avamar platform components and SUSE Linux Enterprise Server (SLES) versions, including:

  • Avamar server on SLES 12 SP5
  • Avamar combined proxy on SLES 12 SP5
  • NetWorker Virtual Edition (NVE) on SLES 12 SP5
  • Avamar Data Store (ADS) Gen5A NDMP accelerator node on SLES 12 SP5

The document lists a comprehensive set of CVEs addressed by this patch. Due to the extensive nature of these lists, they are not reproduced here. Please refer to the original release notes for the complete details of all applicable CVEs.

Notes, Cautions, and Warnings

NOTE: A NOTE indicates important information that helps you make better use of your product.

CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem.

WARNING: A WARNING indicates a potential for property damage, personal injury, or death.

Models: Avamar server, Avamar combined proxy, Avamar Virtual Edition AVE, Avamar Data Store ADS, Avamar NDMP accelerator node, NetWorker Virtual Edition NVE, PowerProtect DP Series Appliance-Integrated Data Protection Appliance IDPA, 2023R3 Avamar Platform OS Security Patch Rollup, 2023R3, Avamar Platform OS Security Patch Rollup, Security Patch Rollup, Patch Rollup

File Info : application/pdf, 13 Pages, 216.22KB

PDF preview unavailable. Download the PDF instead.

avamar platform os security patch rollup 2023r3 release notes Antenna House PDF Output Library 7.3.1866; modified using iTextSharp™ 5.5.13.3 ©2000-2022 iText Group NV (AGPL-version)

Related Documents

Preview Dell Integrated Remote Access Controller 6 (iDRAC6) Version 2.92.00 Release Notes
This document provides release notes for Dell Integrated Remote Access Controller 6 (iDRAC6) version 2.92.00, detailing new features, fixes, known issues, and important notes for Dell PowerEdge systems.
Preview Dell PowerEdge R900 Getting Started Guide
A comprehensive guide for setting up and operating Dell PowerEdge R900 server systems, covering hardware features, installation procedures, supported operating systems, and technical specifications.
Preview Dell™ Online Diagnostics Version 2.16 Benutzerhandbuch
Dell™ Online Diagnostics Version 2.16 Benutzerhandbuch: Eine umfassende Anleitung zur Installation, Konfiguration und Nutzung der Diagnose-Software von Dell. Dieses Handbuch beschreibt, wie Sie mit Dell Online Diagnostics Hardwareprobleme auf Dell-Systemen, einschließlich PowerEdge-Servern, mithilfe der GUI- oder CLI-Schnittstelle identifizieren und beheben können, um die Systemverfügbarkeit zu maximieren. Enthält Informationen zu unterstützten Betriebssystemen wie Windows, Red Hat Enterprise Linux, SUSE Linux Enterprise Server und VMware ESX sowie zu kompatibler Hardware.
Preview Dell PowerEdge R470 Technisches Handbuch
Umfassendes technisches Handbuch für den Dell PowerEdge R470 Server, das Konfigurationen, Funktionen, technische Spezifikationen, Installation, Verwaltung und Services detailliert beschreibt.
Preview iDRAC9 Version 7.10.50.10 Release Notes
This document provides release notes for iDRAC9 Version 7.10.50.10, detailing new features, resolved issues, and known issues for Dell PowerEdge 15th and 16th generation servers.
Preview Dell Security Management Server Virtual Quick Start and Installation Guide v11.9
This guide provides instructions for installing and configuring Dell Security Management Server Virtual v11.9, covering quick start, detailed installation, proxy mode, and administrative tasks for enterprise security management.
Preview Dell iDRAC8 and Lifecycle Controller v2.43.43.43 Release Notes for PowerEdge Servers
Detailed release notes for Dell Integrated Dell Remote Access Controller 8 (iDRAC8) and Lifecycle Controller version 2.43.43.43, covering new features, fixes, known issues, and supported platforms for Dell PowerEdge servers.
Preview Unattended Installation of Red Hat Enterprise Linux 7 on Dell PowerEdge Servers
Dell's technical white paper guides IT professionals through the unattended installation of Red Hat Enterprise Linux 7 on Dell PowerEdge servers using iDRAC and Lifecycle Controller, streamlining server deployment.