Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:7571

Опубликовано: 29 июл. 2025
Источник: rocky
Оценка: Important

Описание

Important: .NET 9.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.

New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.106 and .NET Runtime 9.0.5.Security Fix(es):

  • dotnet: .NET and Visual Studio Spoofing Vulnerability (CVE-2025-26646)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
aspnetcore-runtime-9.0x86_641.el8_10aspnetcore-runtime-9.0-9.0.5-1.el8_10.x86_64.rpm
aspnetcore-targeting-pack-9.0x86_641.el8_10aspnetcore-targeting-pack-9.0-9.0.5-1.el8_10.x86_64.rpm
dotnetx86_641.el8_10dotnet-9.0.106-1.el8_10.x86_64.rpm
dotnet-apphost-pack-9.0x86_641.el8_10dotnet-apphost-pack-9.0-9.0.5-1.el8_10.x86_64.rpm
dotnet-hostx86_641.el8_10dotnet-host-9.0.5-1.el8_10.x86_64.rpm
dotnet-hostfxr-9.0x86_641.el8_10dotnet-hostfxr-9.0-9.0.5-1.el8_10.x86_64.rpm
dotnet-runtime-9.0x86_641.el8_10dotnet-runtime-9.0-9.0.5-1.el8_10.x86_64.rpm
dotnet-sdk-9.0x86_641.el8_10dotnet-sdk-9.0-9.0.106-1.el8_10.x86_64.rpm
dotnet-targeting-pack-9.0x86_641.el8_10dotnet-targeting-pack-9.0-9.0.5-1.el8_10.x86_64.rpm
dotnet-templates-9.0x86_641.el8_10dotnet-templates-9.0-9.0.106-1.el8_10.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-26646

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2025-26646

CVSS3: 8
ubuntu
6 месяцев назад

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

redhat логотип

CVE-2025-26646

CVSS3: 8
redhat
6 месяцев назад

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

nvd логотип

CVE-2025-26646

CVSS3: 8
nvd
6 месяцев назад

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

msrc логотип

CVE-2025-26646

CVSS3: 8
msrc
6 месяцев назад

.NET, Visual Studio, and Build Tools for Visual Studio Spoofing Vulnerability

rocky логотип

RLSA-2025:7601

rocky
около 1 месяца назад

Important: .NET 9.0 security update