RLSA-2023:5144

Опубликовано: 19 сент. 2023

Источник: rocky

Оценка: Moderate

Описание

Moderate: .NET 6.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.

New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.122 and .NET Runtime 6.0.22.

Security Fix(es):

dotnet: Denial of Service with Client Certificates using .NET Kestrel (CVE-2023-36799)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Связанные CVE

CVE-2023-36799

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2237317
Red Hat - 2237317

Связанные уязвимости

CVE-2023-36799

CVSS3: 6.5

ubuntu

больше 2 лет назад

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2023-36799

CVSS3: 6.5

redhat

больше 2 лет назад

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2023-36799

CVSS3: 6.5

nvd

больше 2 лет назад

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2023-36799

CVSS3: 6.5

msrc

больше 2 лет назад

.NET Core and Visual Studio Denial of Service Vulnerability

RLSA-2023:6245

rocky

около 2 лет назад

Moderate: .NET 6.0 security update