ELSA-2025-7600

Опубликовано: 22 мая 2025

Источник: oracle-oval

Платформа: Oracle Linux 9

Описание

ELSA-2025-7600: .NET 9.0 security update (IMPORTANT)

[9.0.106-1.0.1]

Add support for Oracle Linux

[9.0.106-1]

Update to .NET SDK 9.0.106 and Runtime 9.0.5
Resolves: RHEL-89453

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

aspnetcore-runtime-9.0

9.0.5-1.0.1.el9_6

aspnetcore-runtime-dbg-9.0

9.0.5-1.0.1.el9_6

aspnetcore-targeting-pack-9.0

9.0.5-1.0.1.el9_6

dotnet-apphost-pack-9.0

9.0.5-1.0.1.el9_6

dotnet-host

9.0.5-1.0.1.el9_6

dotnet-hostfxr-9.0

9.0.5-1.0.1.el9_6

dotnet-runtime-9.0

9.0.5-1.0.1.el9_6

dotnet-runtime-dbg-9.0

9.0.5-1.0.1.el9_6

dotnet-sdk-9.0

9.0.106-1.0.1.el9_6

dotnet-sdk-9.0-source-built-artifacts

9.0.106-1.0.1.el9_6

dotnet-sdk-aot-9.0

9.0.106-1.0.1.el9_6

dotnet-sdk-dbg-9.0

9.0.106-1.0.1.el9_6

dotnet-targeting-pack-9.0

9.0.5-1.0.1.el9_6

dotnet-templates-9.0

9.0.106-1.0.1.el9_6

netstandard-targeting-pack-2.1

9.0.106-1.0.1.el9_6

Oracle Linux x86_64

aspnetcore-runtime-9.0

9.0.5-1.0.1.el9_6

aspnetcore-runtime-dbg-9.0

9.0.5-1.0.1.el9_6

aspnetcore-targeting-pack-9.0

9.0.5-1.0.1.el9_6

dotnet-apphost-pack-9.0

9.0.5-1.0.1.el9_6

dotnet-host

9.0.5-1.0.1.el9_6

dotnet-hostfxr-9.0

9.0.5-1.0.1.el9_6

dotnet-runtime-9.0

9.0.5-1.0.1.el9_6

dotnet-runtime-dbg-9.0

9.0.5-1.0.1.el9_6

dotnet-sdk-9.0

9.0.106-1.0.1.el9_6

dotnet-sdk-9.0-source-built-artifacts

9.0.106-1.0.1.el9_6

dotnet-sdk-aot-9.0

9.0.106-1.0.1.el9_6

dotnet-sdk-dbg-9.0

9.0.106-1.0.1.el9_6

dotnet-targeting-pack-9.0

9.0.5-1.0.1.el9_6

dotnet-templates-9.0

9.0.106-1.0.1.el9_6

netstandard-targeting-pack-2.1

9.0.106-1.0.1.el9_6

Связанные CVE

CVE-2025-26646

Ссылки на источники

Связанные уязвимости

CVE-2025-26646

CVSS3: 8

ubuntu

около 1 месяца назад

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

CVE-2025-26646

CVSS3: 8

redhat

около 1 месяца назад

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

CVE-2025-26646

CVSS3: 8

nvd

около 1 месяца назад

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

CVE-2025-26646

CVSS3: 8

msrc

около 1 месяца назад

.NET, Visual Studio, and Build Tools for Visual Studio Spoofing Vulnerability

GHSA-h4j7-5rxr-p4wc

CVSS3: 8

github

около 1 месяца назад

Microsoft.Build.Tasks.Core .NET Spoofing Vulnerability