It looks like the version on libcurl.dll in the base commvault path needs to be upgraded in general:
/opt/commvault/commvault/Base64/VMware/vddk/VDDK602/lib64/libcurl.
Has anyone done this yet? Or will an upgrade of CV resolve the issue?
Answer
libcurl.dll upgrade in base folder
+1Best answer by Dheeraj Shetty
Hi
To update the version of libcurl in your Commvault environment, you can upgrade to a Service Pack that includes the updated library. For example, upgrading to SP36 will bring libcurl to version 8.9.1, which addresses the identified vulnerability.
It's important to note that the vulnerability CVE-2024-7264, which affects libcurl versions from 7.32.0 up to (but not including) 8.9.1, does not impact Commvault products directly. This is because Commvault does not use the specific functionality of libcurl that's affected. Therefore, you can continue to use your existing Commvault installation without concerns for backup or restore operations.
For more details, refer to Commvault’s official security advisory:https://documentation.commvault.com/securityadvisories/CV_2024_08_2.html
Regards,
Dheeraj
If you have a question or comment, please create a topic
- Vaulter
- Answer
Hi
To update the version of libcurl in your Commvault environment, you can upgrade to a Service Pack that includes the updated library. For example, upgrading to SP36 will bring libcurl to version 8.9.1, which addresses the identified vulnerability.
It's important to note that the vulnerability CVE-2024-7264, which affects libcurl versions from 7.32.0 up to (but not including) 8.9.1, does not impact Commvault products directly. This is because Commvault does not use the specific functionality of libcurl that's affected. Therefore, you can continue to use your existing Commvault installation without concerns for backup or restore operations.
For more details, refer to Commvault’s official security advisory:https://documentation.commvault.com/securityadvisories/CV_2024_08_2.html
Regards,
Dheeraj
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.