Rockylinux Product ErrataRLSA-2024:0150

HistoryJan 12, 2024 - 7:57 p.m.

.NET 8.0 security update

2024-01-1219:57:42

Rockylinux Product Errata

errata.rockylinux.org

.net framework

security update

rocky linux 8

md.sqlclient

x509 certificates

azure validation bypass

denial of service

cve

cvss score

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.3%

JSON

An update is available for dotnet8.0.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.

New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.101 and .NET Runtime 8.0.1.

Security Fix(es):

dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS) (CVE-2024-0056)
dotnet: X509 Certificates - Validation Bypass across Azure (CVE-2024-0057)
dotnet: .NET Denial of Service Vulnerability (CVE-2024-21319)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
rocky8aarch64aspnetcore-runtime-8.0< 8.0.1-1.el8_9aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64.rpm
rocky8aarch64aspnetcore-targeting-pack-8.0< 8.0.1-1.el8_9aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64.rpm
rocky8aarch64dotnet< 8.0.101-1.el8_9dotnet-0:8.0.101-1.el8_9.aarch64.rpm
rocky8aarch64dotnet8.0-debuginfo< 8.0.101-1.el8_9dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64.rpm
rocky8aarch64dotnet8.0-debugsource< 8.0.101-1.el8_9dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64.rpm
rocky8aarch64dotnet-apphost-pack-8.0< 8.0.1-1.el8_9dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64.rpm
rocky8aarch64dotnet-apphost-pack-8.0-debuginfo< 8.0.1-1.el8_9dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64.rpm
rocky8aarch64dotnet-host< 8.0.1-1.el8_9dotnet-host-0:8.0.1-1.el8_9.aarch64.rpm
rocky8aarch64dotnet-host-debuginfo< 8.0.1-1.el8_9dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64.rpm
rocky8aarch64dotnet-hostfxr-8.0< 8.0.1-1.el8_9dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
rocky	8	aarch64	aspnetcore-runtime-8.0	< 8.0.1-1.el8_9	aspnetcore-runtime-8.0-0:8.0.1-1.el8_9.aarch64.rpm
rocky	8	aarch64	aspnetcore-targeting-pack-8.0	< 8.0.1-1.el8_9	aspnetcore-targeting-pack-8.0-0:8.0.1-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet	< 8.0.101-1.el8_9	dotnet-0:8.0.101-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet8.0-debuginfo	< 8.0.101-1.el8_9	dotnet8.0-debuginfo-0:8.0.101-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet8.0-debugsource	< 8.0.101-1.el8_9	dotnet8.0-debugsource-0:8.0.101-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet-apphost-pack-8.0	< 8.0.1-1.el8_9	dotnet-apphost-pack-8.0-0:8.0.1-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet-apphost-pack-8.0-debuginfo	< 8.0.1-1.el8_9	dotnet-apphost-pack-8.0-debuginfo-0:8.0.1-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet-host	< 8.0.1-1.el8_9	dotnet-host-0:8.0.1-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet-host-debuginfo	< 8.0.1-1.el8_9	dotnet-host-debuginfo-0:8.0.1-1.el8_9.aarch64.rpm
rocky	8	aarch64	dotnet-hostfxr-8.0	< 8.0.1-1.el8_9	dotnet-hostfxr-8.0-0:8.0.1-1.el8_9.aarch64.rpm

Rows per page:

1-10 of 191

.NET 8.0 security update

Related