Integrated Dell Remote Access Controller 6 (iDRAC6) Version 2.90.04 Release Notes iDRAC6 v2.90.
Release notes iDRAC is a systems management hardware and software solution that provides remote management capabilities, crashed system recovery, and power control functions for Dell PowerEdge systems. Version iDRAC6 2.90.04 Rev A00 Release date July 2017 Previous version iDRAC6 2.85 Importance RECOMMENDED: Dell recommends applying this update during your next scheduled update cycle.
• Red Hat Enterprise Linux (RHEL) 5.5 (x86, x86_64) SP7 • Red Hat Enterprise Linux (RHEL) 5.8 (x86, x86_64) • Red Hat Enterprise Linux (RHEL) 6.0 (x86_64) SP1 • Red Hat Enterprise Linux (RHEL) 6.2 (x86, x86_64) • Red Hat Enterprise Linux (RHEL) 6.3 (x86, x86_64) • Red Hat Enterprise Linux (RHEL) 6.5 (x86, x86_64) • Red Hat Enterprise Linux (RHEL) 6.7 (x86, x86_64) • Hyper-V and Hyper-V R2 • VMware ESX 4.0 Update 3 • VMware ESX 4.1 Update 1 • VMware ESX 5.0 • ESXi 4.0 Update3 Flash and HDD • ESXi 4.
What’s new • • • • • • OpenSSL upgraded to v1.0.2h OpenSSH upgraded to v7.4p1 Disabled SSL RC4 Cipher CVE-2015-2808 (Bar Mitzvah) ActiveX scauth plugin:scadplugin.cab is SHA-2 signed Console Redirection plug-in: avct_kvm_vm.cab is updated to SHA2 Capability to disable TLS1.0 through CLI:Use racadm command: racadm tlsencryptionstrength get/set.
Versions/Systems affected All iDRAC6 supported Dell PowerEdge systems. Issue 3 Description When you try to upload files other than the original SSL certificate files in the Upload Certificate page, iDRAC Web interface may log out. Resolution Log in to the Web interface again and upload the correct SSL certificate. Versions/Systems affected All iDRAC6 supported Dell PowerEdge systems. Issue 4 Description If you add more than 800 work notes, the web interface may take additional time to load the page.
Create a certificate request and issue it to a trusted domain. Register it to a domain DNS server. Use a trusted domain name, instead of the IPv6 address. Versions/Systems affected All iDRAC6 supported Dell PowerEdge systems. Issue 8 Description iDRAC browse a page that uses JavaScript functions to retrieve page data, the progress bar in Internet Explorer may not always be accurate. Versions/Systems affected All iDRAC6 supported Dell PowerEdge systems.
Issue 10 Description When the Certificate Authority (CA) is enabled, the Domain Controller (DC) is specified as FQDN and Global Catalog (GC) as IP address, the authentication using Test Settings fails and normal login succeeds. The expected behavior is the authentication using Test Settings must succeed by using DC FQDN. Resolution Specify the FQDN for GC. Versions/Systems affected All iDRAC6 supported Dell PowerEdge systems.
Resolution There is no patch for this vulnerability it is an inherent problem with the specification for IPMI v2.0. Suggested mitigations include: • • • Disabling IPMI over LAN if it is not needed. Using strong passwords to limit the successfulness of off-line dictionary attacks. Using Access Control Lists (ACLs) or isolated networks to limit access to your IPMI management interfaces. Versions/Systems affected All iDRAC6 supported Dell PowerEdge systems.
Contacting Dell NOTE: If you do not have an active Internet connection, you can find contact information on your purchase invoice, packing slip, bill, or Dell product catalog. Dell provides several online and telephone-based support and service options. Availability varies by country and product, and some services may not be available in your area. To contact Dell for sales, technical support, or customer service issues, go to dell.com/contactdell.