[gpfsug-discuss] CVE-2021-29740

Fri Aug 6 19:20:52 BST 2021

I contacted them about the GUI fix and they said that there would be no fix until the next DSS-G package, and that I could turn off the GUI if that wasn’t good enough.

Not exactly the same situation, but “not fast” has been my experience. Maybe there’s someone here from Lenovo who could comment on the SLA situation.

--
#BlackLivesMatter
____
|| \\UTGERS,  	 |---------------------------*O*---------------------------
||_// the State	 |         Ryan Novosielski - novosirj at rutgers.edu
|| \\ University | Sr. Technologist - 973/972.0922 (2x0922) ~*~ RBHS Campus
||  \\    of NJ	 | Office of Advanced Research Computing - MSB C630, Newark
     `'

> On Jun 4, 2021, at 5:12 AM, Jonathan Buzzard <jonathan.buzzard at strath.ac.uk> wrote:
> 
> On 01/06/2021 17:48, Damir Krstic wrote:
> 
>> IBM posted a security bulletin for the spectrum scale (CVE-2021-29740). Not a lot of detail provided in that bulletin. Has anyone installed this fix? Does anyone have more information about it?
> 
> Anyone know how quickly Lenovo are at putting up security fixes like this?
> 
> Two days in and there is still nothing to download, which in the current security threat environment we are all operating in is bordering on unacceptable.
> 
> 
> JAB.
> 
> -- 
> Jonathan A. Buzzard                         Tel: +44141-5483420
> HPC System Administrator, ARCHIE-WeSt.
> University of Strathclyde, John Anderson Building, Glasgow. G4 0NG
> _______________________________________________
> gpfsug-discuss mailing list
> gpfsug-discuss at spectrumscale.org
> http://gpfsug.org/mailman/listinfo/gpfsug-discuss