Hewlett Packard Enterprise Product Security Vulnerability Alerts
Dirty Cow Vulnerability (CVE-2016-5195)
Version 1.0 : Last Updated: January 5th, 2017
This website is updated frequently, as new product information becomes available.
On October 19, 2016, a privilege escalation vulnerability in Linux kernel was disclosed. A race condition was found in a way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. This flaw allows an unprivileged local user to gain write access to otherwise read-only memory mappings and thus gaining increased privileges on the Linux kernel. This vulnerability is referred to as “Dirty COW”.
Additional information about the vulnerability is available on the NIST website.
- Resources
- HPE Vulnerability Homepage
- NIST Website
|
Usage Instructions and Definitions for CVE Vulnerability Information |
|
|
Data |
Definition |
|
Product Family |
High-level product description. |
|
Product Name |
Detailed product description. |
|
CVE-XXXX |
Indicates whether the specific product is affected by the cited vulnerability. |
|
(Impacted Y/N) |
|
|
Impacted |
Indicates whether the specific product is directly affected by the cited vulnerability or is indirectly affected due to a dependence on a separate, embedded or associated product. |
|
Direct/Indirect |
|
|
If Impacted |
Information regarding how to address a vulnerability. |
|
Mitigation Info |
|
|
Notes |
Miscellaneous information regarding the vulnerability. |
|
Link to Security Bulletin |
Link to HPE's Security Bulletin |
Use the following table to find vulnerability information.
|
Product Sub- Category |
Product Name |
HTTPoxy (impacted Y/N) |
If Impacted - Mitigation |
Link(s) to security bulletin (PSRT or Vendor) |
|
|
CDI |
Converged
Systems |
HP
Converged System 700 2.0 Foundation |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP Converged System 700 2.0 VMWare |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HP
ConvergedSystem 700X (727178-B21) |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP ConvergedSystem 700X for Microsoft
(727177-B21) |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HP
ConvergedSystem 700X for Vmware (721223-B21) |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP ConvergedSystem 700X v1.1
Foundation Kit (J0H71A) |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HP
ConvergedSystem 700X v1.1 Microsoft Kit (J0H73A) |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP ConvergedSystem 700X v1.1 Vmware
Kit (J0H72A) |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HPE
Converged Architecture 700 |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HPE Converged System 700 2.0 Hyper-V |
Yes - Indirect |
Under Investigation |
|
|
Networking |
HPE
Network |
SDN
Applications |
Yes
- Indirect |
Under
Investigation |
|
|
Networking |
HPE Network |
SDN Controller |
Yes - Indirect |
Only affects customers who have
created unprivileged local users. Fix under investigation. |
|
|
Networking |
Aruba
Network |
Aurba
Airwave |
Yes
- Indirect |
Only
impacts customers who have unprivileged local Linux shell accounts in use.
Fix using "yum update --disableexcludes=main kernel". |
|
|
CDI |
Converged Systems |
HP AppSystem for SAP HANA Scale Out
1.2 |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HP
ConvergedSystem 500 for SAP HANA -
Single-Node (Scale-up) |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP ConvergedSystem 500 for SAP HANA -
Scale Out |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HP
ConvergedSystem 900 for SAP HANA - Scale Out (IVB only) |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP ConvergedSystem 900 for SAP HANA -
Scale Up |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Converged
Systems |
HP
AppSystems for SAP HANA Scale-up Gen 1.0 |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Converged Systems |
HP AppSystems for SAP HANA Scale-out
Gen 1.0 |
Yes - Indirect |
Under Investigation |
|
|
CDI |
Platform
Software |
System
Management Homepage for Linux |
Yes
- Indirect |
Under
Investigation |
|
|
CDI |
Platform Software |
Version Control Repository Manager |
Yes - Indirect |
Under Investigation |
|
|
Servers |
Platform
Software |
SPP
Custom Download |
Yes
- Direct |
Under
Investigation |
|
|
Servers |
Non-HP OS |
SUSE Linux Enterprise Server |
Yes - Direct |
Under Investigation |
|
|
Servers |
Non-HP
OS |
CentOS |
Yes
- Direct |
Under
Investigation |
|
|
Servers |
Non-HP OS |
Oracle Linux |
Yes - Direct |
Under Investigation |
|
|
Servers |
Non-HP
OS |
Red
Hat Enterprise Linux |
Yes
- Direct |
Under
Investigation |
|
|
Servers |
Non-HP OS |
Ubuntu |
Yes - Direct |
Under Investigation |
|
|
Networking |
H3C
Network |
Comware
v7 |
Yes
- Direct |
Under
Investigation |
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/secBullArchive |
|
Software |
Security Products |
ArcSight Logger |
Yes - Direct |
Logger Appliances supply RHEL OS and
are affected. Issued the RHEL kernel patch as a security update to appliance
customers, bundled with Logger 6.3.1. |
|
|
Software |
Security
Products |
ArcSight
ArcMC |
Yes
- Direct |
ArcMC
Appliances supply RHEL OS and are affected. Issued the RHEL kernel patch as a
security update to appliance customers, bundled with ArcMC 2.5.1. |
|
|
Software |
Security Products |
ArcSight ESM |
Yes - Direct |
ESM Express Appliances supply RHEL OS
and are affected. Issued the RHEL kernel patch as a security update. |
|
|
Servers |
MX990X |
MX990X |
Yes
- Direct |
Under
Investigation |
|
|
Software |
Security Products |
Enterprise Secure Key Manager (ESKM)
- versions 4.x |
Yes - Direct |
Under Investigation |
|
|
Software |
Security
Products |
Enterprise
Secure Key Manager (ESKM) - versions 5.x |
Yes
- Direct |
Under
Investigation |
|
|
Servers |
NonStop |
CLIM |
Yes - Direct |
Under Investigation |
|
|
Storage |
StoreEver |
MSL6480
Tape Library |
Yes
- Direct |
Despite
containing impacted kernel, the product is not vulnerable as it isn't
possible to create an unprivileged local user. Regardless, a kernel fix is under
investigation |
|
|
Storage |
StoreEver |
ESL G3 Tape Library |
Yes - Direct |
Vulnerability requires local user
with pre-existing credentials to be realized.
Fix under investigation. |
|
|
Servers |
Platform
Software |
HPAPM,
HP Apollo Platform Manager |
Yes
- Direct |
Under
Investigation |
|
|
Storage |
StoreFabric |
SN4000B |
Yes - Direct |
Under Investigation |
|
|
Storage |
StoreFabric |
Gen5
B-series switches (running FOS prior to 8.0.2a or 8.1.0a) |
Yes
- Direct |
Under
Investigation |
|
|
Servers |
Non-HP OS |
Citrix XenServer |
Under Investigation |
|
|
|
Servers |
Platform
Software |
HP
Insight Management Agents (Linux) |
Under
Investigation |
|
|
|
Servers |
Platform Software |
HP ProLiant Solaris 11 Support Bundle |
Under Investigation |
|
|
|
CDI |
Converged
Systems |
HPE
HC380 1.0 |
Under
Investigation |
|
|
|
CDI |
Converged Systems |
HC380 1.0 U1 |
Under Investigation |
|
|
|
CDI |
Converged
Systems |
HC380
1.1 |
Under
Investigation |
|
|
|
Servers |
Platform Software |
HP SUM ISO |
Under Investigation |
|
|
|
Networking |
HPE
Network |
Smal
Medium Business Solutions |
Under
Investigation |
|
|
|
Servers |
Integrity |
Integrity BL8x0C i2 & i4 |
Under Investigation |
|
|
|
Storage |
3PAR |
3PAR |
Under
Investigation |
|
|
|
CDI |
Converged Systems |
HP OneView |
Under Investigation |
|
|
|
CDI |
Platform
Software |
Oneview
for Virtual Center(OV4VC) |
Under
Investigation |
|
|
|
CDI |
Platform Software |
OpsA |
Under Investigation |
|
|
|
CDI |
Platform
Software |
vPV |
Under
Investigation |
|
|
|
Servers |
NonStop |
Virtual TapeSystem (VTS) |
Under Investigation |
|
|
|
Storage |
StoreEver |
LTO-7
Ultrium 15000 Tape Drive |
Under
Investigation |
|
|
|
Servers |
Platform Software |
HP Modular Cooling System, HP MCS x00
Cooling Unit |
Under Investigation |
|
|
|
|
Platform
Software |
HP
Intelligent Modular Power Distribution Unit/Kit |
No |
|
|
|
Servers |
Platform Software |
HP IP Console Switch, HP Server
Console Switch |
No |
|
|
|
Servers |
Platform
Software |
Service
Pack for ProLiant |
No |
|
|
|
Servers |
Platform Software |
Integrated Management Log Viewer for
Windows |
No |
|
|
|
Servers |
Platform
Software |
HP
SNMP Agents for Citrix XenServer |
No |
|
|
|
Servers |
Platform Software |
HP System Management Homepage for
Solaris 10 (x86[/x64]) Systems |
No |
|
|
|
Servers |
Platform
Software |
Management
Component Pack CD for dpkg-based distributions |
No |
|
|
|
Servers |
Platform Software |
Management Component Pack for Asianux
4 (i386 and x86_64) |
No |
|
|
|
Servers |
Platform
Software |
Management
Component Pack for CentOS 5 (i386 and x86_64) |
No |
|
|
|
Servers |
Platform Software |
Management Component Pack for CentOS
6 (i386 and x86_64) |
No |
|
|
|
Servers |
Platform
Software |
Management
Component Pack for CentOS 7 |
No |
|
|
|
Servers |
Platform Software |
Management Component Pack for Oracle
5[.x] (i386 and x86_64) |
No |
|
|
|
Servers |
Platform
Software |
Management
Component Pack for Oracle 6.x (x86_64) |
No |
|
|
|
Servers |
Platform Software |
Management Component Pack for Oracle
7.x (x86_64) |
No |
|
|
|
Servers |
Platform
Software |
ProLiant
Support Pack for Asianux 3 (i386 and x86_64) |
No |
|
|
|
Servers |
Platform Software |
ProLiant Support Pack for Fedora 14
(i386 and x86_64) |
No |
|
|
|
Servers |
Platform
Software |
ProLiant
Support Pack for openSUSE 11.3 (i386 and x86_64) |
No |
|
|
|
Servers |
Non-HP OS |
Solaris |
No |
|
|
|
Servers |
Platform
Software |
Support
Bundle for Oracle Solaris 10 (x86/x64) on ProLiant |
No |
|
|
|
Servers |
Platform Software |
Support Bundle for Oracle Solaris 10
1/13 (x86/x64) on ProLiant |
No |
|
|
|
Storage |
MSA |
MSA |
No |
|
|
|
Servers |
Platform Software |
HP Insight Management VCEM Web Client
SDK |
No |
|
|
|
Servers |
Platform
Software |
HP
BladeSystem c-Class Virtual Connect Support Utility |
No |
|
|
|
Servers |
Platform Software |
Virtual Connect |
No |
|
|
|
Servers |
Platform
Software |
Virtual
Connect Enterprise Manager |
No |
|
|
|
Servers |
Platform Software |
HP Integrated Lights Out (iLO) |
No |
|
|
|
Servers |
Platform
Software |
SUM |
No |
|
|
|
Servers |
Platform Software |
HP SUT Win/Lin |
No |
|
|
|
Servers |
Platform
Foftware |
HP
SUT ESXi |
No |
|
|
|
Networking |
HPE Network |
MSM Wireless |
No |
|
|
|
Networking |
HPE
Network |
PVOS
Legacy |
No |
|
|
|
Networking |
HPE Network |
ProVision Switches |
No |
|
|
|
Networking |
H3C
Network |
Comware
v5 |
No |
|
|
|
Networking |
H3C Network |
Intelligent Management Center (IMC) |
No |
|
|
|
Networking |
H3C
Network |
SecBlade
SSL VPN (Comware v3) |
No |
|
|
|
Networking |
H3C Network |
Unified Wireless Solutions (Comware
V5) |
No |
|
|
|
Networking |
H3C
Network |
VoIP
(VCX) |
No |
|
|
|
Networking |
H3C Network |
vSwitch |
No |
|
|
|
Networking |
H3C
Network |
HP
Small Biz Network (SBN) solutions |
No |
|
|
|
Networking |
Aruba Network |
Aruba OS |
No |
|
|
|
Networking |
Aruba
Network |
Aruba
ClearPass |
No |
|
|
|
Software |
Security Products |
ArcSight Connectors |
No |
|
|
|
Servers |
Platform
Software |
HP
Intelligent Provisioning |
No |
|
|
|
Servers |
Integrity |
HP Integrity CB900s i2 & i4
Superdome 2 Server |
No |
|
|
|
Servers |
Integrity |
HP
Integrity cx2600, cx2620, BL60P, rx1600, rx1620, rx4640, rx5670,
rx2600, rx2620, zx2000, zx8000 |
No |
|
|
|
Servers |
Integrity |
HP Integrity rx8640 Server; HP 9000
rp8420 Server; HP Integrity rx7640 Server; HP 9000 rp7420 Server |
No |
|
|
|
Servers |
Integrity |
HP
Integrity Superdome X |
No |
|
|
|
Servers |
Integrity |
Integrity BL860c & BL870c |
No |
|
|
|
Servers |
Integrity |
Integrity
rx2800 i2 & i4 |
No |
|
|
|
Servers |
Integrity |
Integrity rx6600, rx3600, rx2660 |
No |
|
|
|
Servers |
DL
Platform |
Proliant
DL785 |
No |
|
|
|
Servers |
DL Platform |
Proliant DL980 G7 Server |
No |
|
|
|
Servers |
Platform
Software |
SD
2/SD X OA2 |
No |
|
|
|
Servers |
Integrity |
SD 9000 Superdome OA |
No |
|
|
|
Storage |
XP
Storage |
HP
XP7 Storage System Service Processor |
No |
|
|
|
Storage |
XP Storage |
HP XP P9500 Disk Array Service
Processor |
No |
|
|
|
Storage |
XP
Storage |
HP
XP24000/XP20000 Disk Array Service Processor |
No |
|
|
|
Storage |
XP Software |
HPE Command View Advanced Edition
software v8.x |
No |
|
|
|
Servers |
HP-UX |
HP-UX
KERNEL-PROVIDERS |
No |
|
|
|
Servers |
HP-UX |
HP-UX LVM Providers |
No |
|
|
|
Servers |
HP-UX |
HP-UX
NParProvider |
No |
|
|
|
Servers |
HP-UX |
HP-UX NPartition |
No |
|
|
|
Servers |
HP-UX |
HP-UX
olosProvider |
No |
|
|
|
Servers |
HP-UX |
HP-UX PartitionManager |
No |
|
|
|
Servers |
HP-UX |
HP-UX
ProviderSvcsCore |
No |
|
|
|
Servers |
HP-UX |
HP-UX RAIDSA-PROVIDER |
No |
|
|
|
Servers |
HP-UX |
HP-UX
SAS-PROVIDER |
No |
|
|
|
Servers |
HP-UX |
HP-UX SCSI-Provider |
No |
|
|
|
Servers |
HP-UX |
HP-UX
SFM-CORE |
No |
|
|
|
Servers |
HP-UX |
HP-UX VParProvider |
No |
|
|
|
Servers |
HP-UX |
HP-UX
WBEMP-FCP |
No |
|
|
|
Servers |
HP-UX |
HP-UX WBEMP-FS |
No |
|
|
|
Servers |
HP-UX |
HP-UX
WBEMP-IOTreeIP |
No |
|
|
|
Servers |
HP-UX |
HP-UX WBEMP-LAN |
No |
|
|
|
Servers |
HP-UX |
HP-UX
WBEMP-Storage |
No |
|
|
|
Servers |
HP-UX |
HP-UX WBEMServices |
No |
|
|
|
Servers |
Platform
Software |
System
Management Homepage for HPUX |
No |
|
|
|
CDI |
Platform Software |
HP Systems Insight Manager (SIM) |
No |
|
|
|
CDI |
Platform
Software |
Insight
Control performance pack (PMP) |
No |
|
|
|
CDI |
Platform Software |
Insight Control server deployment |
No |
|
|
|
CDI |
Platform
Software |
Insight
Control server migration (SMP, V2V/P2P etc.)) |
No |
|
|
|
CDI |
Platform Software |
Insight Control server provisioning |
No |
|
|
|
CDI |
Platform
Software |
Insight
Control Virt/ Virt Machine Mgt (VMM) |
No |
|
|
|
CDI |
Platform Software |
Insight Orchestration |
No |
|
|
|
CDI |
Platform
Software |
IS-Installer |
No |
|
|
|
CDI |
Platform Software |
Matrix Recovery Management |
No |
|
|
|
CDI |
Platform
Software |
MOE
Capacity Advisor |
No |
|
|
|
CDI |
Platform Software |
MOE- global Workforce Load Manager ;
gWLM |
No |
|
|
|
CDI |
Platform
Software |
SPM
(Storage) (SSI Plug-in) |
No |
|
|
|
CDI |
Platform Software |
System Management Homepage for
Windows |
No |
|
|
|
CDI |
Platform
Software |
Version
Control Agent (Linux) |
No |
|
|
|
CDI |
Platform Software |
Version Control Agent (Windows) |
No |
|
|
|
CDI |
Platform
Software |
WMI
Mapper* |
No |
|
|
|
CDI |
Converged Systems |
Oneview for System center(OV4SC) |
No |
|
|
|
CDI |
Platform
Software |
vROPS |
No |
|
|
|
CDI |
Platform Software |
LSM Adaptor |
No |
|
|
|
CDI |
Platform
Software |
AD,
iCAP Mgr, WLM, Vman, VseAssist, MSSW, IS Advisor, IS Installer, MXSYNC, SD
Plug-in |
No |
|
|
|
CDI |
Platform Software |
HP Insight Power Management(IPM) |
No |
|
|
|
CDI |
Platform
Software |
OO |
No |
|
|
|
CDI |
Platform Software |
Onboard Administrator(OA) |
No |
|
|
|
CDI |
Platform
Software |
System
Insight Manager (SIM) |
No |
|
|
|
Software |
Security Products |
Atalla Payments HSM (Axx160 NSP) |
No |
|
|
|
Storage |
StoreOnce |
StoreOnce |
No |
|
|
|
Storage |
StoreEver |
MSL 1/8 Autoloader |
No |
|
|
|
Storage |
StoreEver |
MSL
G3 Tape Libraries |
No |
|
|
|
Storage |
StoreEver |
Archive Manager |
No |
|
|
|
Storage |
StoreEver |
Archive
Migrator |
No |
|
|
|
Storage |
StoreEver |
Command View for Tape Libraries
(CVTL) |
No |
|
|
|
Storage |
StoreEver |
Library
and Tape Tools (L&TT) |
No |
|
|
|
Storage |
StoreOpen |
Automation and Standalone (LTFS) |
No |
|
|
|
Storage |
StoreEver |
LTO-6
Ultrium 6260/6650 Tape Drive |
No |
|
|
|
Storage |
StoreEver |
LTO-5 Ultrium 3000/3280 Tape Drive |
No |
|
|
|
Storage |
StoreEver |
LTO-4
Ultrium 1760 Tape Drive |
No |
|
|
|
Storage |
StoreEver |
LTO-3 Ultrium 920 Tape Drive |
No |
|
|
|
Storage |
Store
Virtual |
Store
Virtual |
No |
|
|
|
Servers |
Platform Software |
SLAPM, HP ProLiant SL Advanced Power
Manager |
No |
|
|
|
Servers |
Platform
Software |
SL
Chassis Firmware |
No |
|
|