Hewlett Packard Enterprise Product Security Vulnerability Alerts

Dirty Cow Vulnerability (CVE-2016-5195)

Version 1.0 :  Last Updated: January 5th, 2017

This website is updated frequently, as new product information becomes available.

On October 19, 2016, a privilege escalation vulnerability in Linux kernel was disclosed. A race condition was found in a way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. This flaw allows an unprivileged local user to gain write access to otherwise read-only memory mappings and thus gaining increased privileges on the Linux kernel. This vulnerability is referred to as “Dirty COW”.

Additional information about the vulnerability is available on the NIST website.

Usage Instructions and Definitions for CVE Vulnerability Information

Data

Definition

Product Family

High-level product description.

Product Name

Detailed product description.

CVE-XXXX

Indicates whether the specific product is affected by the cited vulnerability.

(Impacted Y/N)

Impacted

Indicates whether the specific product is directly affected by the cited vulnerability or is indirectly affected due to a dependence on a separate, embedded or associated product.

Direct/Indirect

If Impacted

Information regarding how to address a vulnerability.

Mitigation Info

Notes

Miscellaneous information regarding the vulnerability.

Link to Security Bulletin

Link to HPE's Security Bulletin

 

Use the following table to find vulnerability information.

Product Category

Product

Sub- Category

Product Name

HTTPoxy (impacted Y/N)

If Impacted - Mitigation

Link(s) to security bulletin (PSRT or Vendor)

CDI

Converged Systems

HP Converged System 700 2.0 Foundation

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP Converged System 700 2.0 VMWare

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 700X (727178-B21)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 700X for Microsoft (727177-B21)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 700X for Vmware (721223-B21)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 700X v1.1 Foundation Kit (J0H71A)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 700X v1.1 Microsoft Kit (J0H73A)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 700X v1.1 Vmware Kit (J0H72A)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HPE Converged Architecture 700

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HPE Converged System 700 2.0 Hyper-V

Yes - Indirect

Under Investigation

 

Networking

HPE Network

SDN Applications

Yes - Indirect

Under Investigation

 

Networking

HPE Network

SDN Controller

Yes - Indirect

Only affects customers who have created unprivileged local users. Fix under investigation.

 

Networking

Aruba Network

Aurba Airwave

Yes - Indirect

Only impacts customers who have unprivileged local Linux shell accounts in use. Fix using "yum update --disableexcludes=main kernel".

 

CDI

Converged Systems

HP AppSystem for SAP HANA Scale Out 1.2

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem  500 for SAP HANA - Single-Node (Scale-up)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 500 for SAP HANA - Scale Out

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 900 for SAP HANA - Scale Out (IVB only)

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP ConvergedSystem 900 for SAP HANA - Scale Up

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP AppSystems for SAP HANA Scale-up Gen 1.0

Yes - Indirect

Under Investigation

 

CDI

Converged Systems

HP AppSystems for SAP HANA Scale-out Gen 1.0

Yes - Indirect

Under Investigation

 

CDI

Platform Software

System Management Homepage for Linux

Yes - Indirect

Under Investigation

 

CDI

Platform Software

Version Control Repository Manager

Yes - Indirect

Under Investigation

 

Servers

Platform Software

SPP Custom Download

Yes - Direct

Under Investigation

 

Servers

Non-HP OS

SUSE Linux Enterprise Server

Yes - Direct

Under Investigation

 

Servers

Non-HP OS

CentOS

Yes - Direct

Under Investigation

 

Servers

Non-HP OS

Oracle Linux

Yes - Direct

Under Investigation

 

Servers

Non-HP OS

Red Hat Enterprise Linux

Yes - Direct

Under Investigation

 

Servers

Non-HP OS

Ubuntu

Yes - Direct

Under Investigation

 

Networking

H3C Network

Comware v7

Yes - Direct

Under Investigation

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/secBullArchive

Software

Security Products

ArcSight Logger

Yes - Direct

Logger Appliances supply RHEL OS and are affected. Issued the RHEL kernel patch as a security update to appliance customers, bundled with Logger 6.3.1.

 

Software

Security Products

ArcSight ArcMC

Yes - Direct

ArcMC Appliances supply RHEL OS and are affected. Issued the RHEL kernel patch as a security update to appliance customers, bundled with ArcMC 2.5.1.

 

Software

Security Products

ArcSight ESM

Yes - Direct

ESM Express Appliances supply RHEL OS and are affected. Issued the RHEL kernel patch as a security update.

 

Servers

MX990X

MX990X

Yes - Direct

Under Investigation

 

Software

Security Products

Enterprise Secure Key Manager (ESKM) - versions 4.x

Yes - Direct

Under Investigation

 

Software

Security Products

Enterprise Secure Key Manager (ESKM) - versions 5.x

Yes - Direct

Under Investigation

 

Servers

NonStop

CLIM

Yes - Direct

Under Investigation

 

Storage

StoreEver

MSL6480 Tape Library

Yes - Direct

Despite containing impacted kernel, the product is not vulnerable as it isn't possible to create an unprivileged local user.  Regardless, a kernel fix is under investigation

 

Storage

StoreEver

ESL G3 Tape Library

Yes - Direct

Vulnerability requires local user with pre-existing credentials to be realized.  Fix under investigation.

 

Servers

Platform Software

HPAPM, HP Apollo Platform Manager

Yes - Direct

Under Investigation

 

Storage

StoreFabric

SN4000B

Yes - Direct

Under Investigation

 

Storage

StoreFabric

Gen5 B-series switches (running FOS prior to 8.0.2a or 8.1.0a)

Yes - Direct

Under Investigation

 

Servers

Non-HP OS

Citrix XenServer

Under Investigation

 

 

Servers

Platform Software

HP Insight Management Agents (Linux)

Under Investigation

 

 

Servers

Platform Software

HP ProLiant Solaris 11 Support Bundle

Under Investigation

 

 

CDI

Converged Systems

HPE HC380 1.0

Under Investigation

 

 

CDI

Converged Systems

HC380 1.0 U1

Under Investigation

 

 

CDI

Converged Systems

HC380 1.1

Under Investigation

 

 

Servers

Platform Software

HP SUM ISO

Under Investigation

 

 

Networking

HPE Network

Smal Medium Business Solutions

Under Investigation

 

 

Servers

Integrity

Integrity BL8x0C i2 & i4

Under Investigation

 

 

Storage

3PAR

3PAR

Under Investigation

 

 

CDI

Converged Systems

HP OneView

Under Investigation

 

 

CDI

Platform Software

Oneview for Virtual Center(OV4VC)

Under Investigation

 

 

CDI

Platform Software

OpsA

Under Investigation

 

 

CDI

Platform Software

vPV

Under Investigation

 

 

Servers

NonStop

Virtual TapeSystem (VTS)

Under Investigation

 

 

Storage

StoreEver

LTO-7 Ultrium 15000 Tape Drive

Under Investigation

 

 

Servers

Platform Software

HP Modular Cooling System, HP MCS x00 Cooling Unit

Under Investigation

 

 

 

Platform Software

HP Intelligent Modular Power Distribution Unit/Kit

No

 

 

Servers

Platform Software

HP IP Console Switch, HP Server Console Switch

No

 

 

Servers

Platform Software

Service Pack for ProLiant

No

 

 

Servers

Platform Software

Integrated Management Log Viewer for Windows

No

 

 

Servers

Platform Software

HP SNMP Agents for Citrix XenServer

No

 

 

Servers

Platform Software

HP System Management Homepage for Solaris 10 (x86[/x64]) Systems

No

 

 

Servers

Platform Software

Management Component Pack CD for dpkg-based distributions

No

 

 

Servers

Platform Software

Management Component Pack for Asianux 4 (i386 and x86_64)

No

 

 

Servers

Platform Software

Management Component Pack for CentOS 5 (i386 and x86_64)

No

 

 

Servers

Platform Software

Management Component Pack for CentOS 6 (i386 and x86_64)

No

 

 

Servers

Platform Software

Management Component Pack for CentOS 7

No

 

 

Servers

Platform Software

Management Component Pack for Oracle 5[.x] (i386 and x86_64)

No

 

 

Servers

Platform Software

Management Component Pack for Oracle 6.x (x86_64)

No

 

 

Servers

Platform Software

Management Component Pack for Oracle 7.x (x86_64)

No

 

 

Servers

Platform Software

ProLiant Support Pack for Asianux 3 (i386 and x86_64)

No

 

 

Servers

Platform Software

ProLiant Support Pack for Fedora 14 (i386 and x86_64)

No

 

 

Servers

Platform Software

ProLiant Support Pack for openSUSE 11.3 (i386 and x86_64)

No

 

 

Servers

Non-HP OS

Solaris

No

 

 

Servers

Platform Software

Support Bundle for Oracle Solaris 10 (x86/x64) on ProLiant

No

 

 

Servers

Platform Software

Support Bundle for Oracle Solaris 10 1/13 (x86/x64) on ProLiant

No

 

 

Storage

MSA

MSA

No

 

 

Servers

Platform Software

HP Insight Management VCEM Web Client SDK

No

 

 

Servers

Platform Software

HP BladeSystem c-Class Virtual Connect Support Utility

No

 

 

Servers

Platform Software

Virtual Connect

No

 

 

Servers

Platform Software

Virtual Connect Enterprise Manager

No

 

 

Servers

Platform Software

HP Integrated Lights Out (iLO)

No

 

 

Servers

Platform Software

SUM

No

 

 

Servers

Platform Software

HP SUT Win/Lin

No

 

 

Servers

Platform Foftware

HP SUT ESXi

No

 

 

Networking

HPE Network

MSM Wireless

No

 

 

Networking

HPE Network

PVOS Legacy

No

 

 

Networking

HPE Network

ProVision Switches

No

 

 

Networking

H3C Network

Comware v5

No

 

 

Networking

H3C Network

Intelligent Management Center (IMC)

No

 

 

Networking

H3C Network

SecBlade SSL VPN (Comware v3)

No

 

 

Networking

H3C Network

Unified Wireless Solutions (Comware V5)

No

 

 

Networking

H3C Network

VoIP (VCX)

No

 

 

Networking

H3C Network

vSwitch

No

 

 

Networking

H3C Network

HP Small Biz Network (SBN) solutions

No

 

 

Networking

Aruba Network

Aruba OS

No

 

 

Networking

Aruba Network

Aruba ClearPass

No

 

 

Software

Security Products

ArcSight Connectors

No

 

 

Servers

Platform Software

HP Intelligent Provisioning

No

 

 

Servers

Integrity

HP Integrity CB900s i2 & i4 Superdome 2 Server

No

 

 

Servers

Integrity

HP Integrity cx2600, cx2620, BL60P, rx1600, rx1620, rx4640, rx5670,  rx2600,  rx2620, zx2000,  zx8000

No

 

 

Servers

Integrity

HP Integrity rx8640 Server; HP 9000 rp8420 Server; HP Integrity rx7640 Server; HP 9000 rp7420 Server

No

 

 

Servers

Integrity

HP Integrity Superdome X

No

 

 

Servers

Integrity

Integrity BL860c & BL870c

No

 

 

Servers

Integrity

Integrity rx2800 i2 &  i4

No

 

 

Servers

Integrity

Integrity rx6600, rx3600, rx2660

No

 

 

Servers

DL Platform

Proliant DL785

No

 

 

Servers

DL Platform

Proliant DL980 G7 Server

No

 

 

Servers

Platform Software

SD 2/SD X OA2

No

 

 

Servers

Integrity

SD 9000 Superdome OA

No

 

 

Storage

XP Storage

HP XP7 Storage System Service Processor

No

 

 

Storage

XP Storage

HP XP P9500 Disk Array Service Processor

No

 

 

Storage

XP Storage

HP XP24000/XP20000 Disk Array Service Processor

No

 

 

Storage

XP Software

HPE Command View Advanced Edition software v8.x

No

 

 

Servers

HP-UX

HP-UX KERNEL-PROVIDERS

No

 

 

Servers

HP-UX

HP-UX LVM Providers

No

 

 

Servers

HP-UX

HP-UX NParProvider

No

 

 

Servers

HP-UX

HP-UX NPartition

No

 

 

Servers

HP-UX

HP-UX olosProvider

No

 

 

Servers

HP-UX

HP-UX PartitionManager

No

 

 

Servers

HP-UX

HP-UX ProviderSvcsCore

No

 

 

Servers

HP-UX

HP-UX RAIDSA-PROVIDER

No

 

 

Servers

HP-UX

HP-UX SAS-PROVIDER

No

 

 

Servers

HP-UX

HP-UX SCSI-Provider

No

 

 

Servers

HP-UX

HP-UX SFM-CORE

No

 

 

Servers

HP-UX

HP-UX VParProvider

No

 

 

Servers

HP-UX

HP-UX WBEMP-FCP

No

 

 

Servers

HP-UX

HP-UX WBEMP-FS

No

 

 

Servers

HP-UX

HP-UX WBEMP-IOTreeIP

No

 

 

Servers

HP-UX

HP-UX WBEMP-LAN

No

 

 

Servers

HP-UX

HP-UX WBEMP-Storage

No

 

 

Servers

HP-UX

HP-UX WBEMServices

No

 

 

Servers

Platform Software

System Management Homepage for HPUX

No

 

 

CDI

Platform Software

HP Systems Insight Manager (SIM)

No

 

 

CDI

Platform Software

Insight Control performance pack (PMP)

No

 

 

CDI

Platform Software

Insight Control server deployment

No

 

 

CDI

Platform Software

Insight Control server migration (SMP, V2V/P2P etc.))

No

 

 

CDI

Platform Software

Insight Control server provisioning

No

 

 

CDI

Platform Software

Insight Control Virt/ Virt Machine Mgt (VMM)

No

 

 

CDI

Platform Software

Insight Orchestration

No

 

 

CDI

Platform Software

IS-Installer

No

 

 

CDI

Platform Software

Matrix Recovery Management

No

 

 

CDI

Platform Software

MOE Capacity Advisor

No

 

 

CDI

Platform Software

MOE- global Workforce Load Manager ; gWLM

No

 

 

CDI

Platform Software

SPM (Storage) (SSI Plug-in)

No

 

 

CDI

Platform Software

System Management Homepage for Windows

No

 

 

CDI

Platform Software

Version Control Agent (Linux)

No

 

 

CDI

Platform Software

Version Control Agent (Windows)

No

 

 

CDI

Platform Software

WMI Mapper*

No

 

 

CDI

Converged Systems

Oneview for System center(OV4SC)

No

 

 

CDI

Platform Software

vROPS

No

 

 

CDI

Platform Software

LSM Adaptor

No

 

 

CDI

Platform Software

AD, iCAP Mgr, WLM, Vman, VseAssist, MSSW, IS Advisor, IS Installer, MXSYNC, SD Plug-in

No

 

 

CDI

Platform Software

HP Insight Power Management(IPM)

No

 

 

CDI

Platform Software

OO

No

 

 

CDI

Platform Software

Onboard Administrator(OA)

No

 

 

CDI

Platform Software

System Insight Manager (SIM)

No

 

 

Software

Security Products

Atalla Payments HSM (Axx160 NSP)

No

 

 

Storage

StoreOnce

StoreOnce

No

 

 

Storage

StoreEver

MSL 1/8 Autoloader

No

 

 

Storage

StoreEver

MSL G3 Tape Libraries

No

 

 

Storage

StoreEver

Archive Manager

No

 

 

Storage

StoreEver

Archive Migrator

No

 

 

Storage

StoreEver

Command View for Tape Libraries (CVTL)

No

 

 

Storage