Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:4451

Опубликовано: 13 мар. 2026
Источник: rocky
Оценка: Important

Описание

Important: .NET 8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.

New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.125 and .NET Runtime 8.0.25.Security Fix(es):

  • asp.net: ASP.NET Core: Denial of Service via uncontrolled resource allocation (CVE-2026-26130)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
aspnetcore-runtime-dbg-8.0x86_641.el10_1aspnetcore-runtime-dbg-8.0-8.0.25-1.el10_1.x86_64.rpm
dotnet-runtime-8.0x86_641.el10_1dotnet-runtime-8.0-8.0.25-1.el10_1.x86_64.rpm
dotnet-targeting-pack-8.0x86_641.el10_1dotnet-targeting-pack-8.0-8.0.25-1.el10_1.x86_64.rpm
dotnet-runtime-dbg-8.0x86_641.el10_1dotnet-runtime-dbg-8.0-8.0.25-1.el10_1.x86_64.rpm
dotnet-apphost-pack-8.0x86_641.el10_1dotnet-apphost-pack-8.0-8.0.25-1.el10_1.x86_64.rpm
aspnetcore-runtime-8.0x86_641.el10_1aspnetcore-runtime-8.0-8.0.25-1.el10_1.x86_64.rpm
dotnet-sdk-8.0x86_641.el10_1dotnet-sdk-8.0-8.0.125-1.el10_1.x86_64.rpm
dotnet-templates-8.0x86_641.el10_1dotnet-templates-8.0-8.0.125-1.el10_1.x86_64.rpm
dotnet-sdk-dbg-8.0x86_641.el10_1dotnet-sdk-dbg-8.0-8.0.125-1.el10_1.x86_64.rpm
aspnetcore-targeting-pack-8.0x86_641.el10_1aspnetcore-targeting-pack-8.0-8.0.25-1.el10_1.x86_64.rpm

Показывать по

Связанные CVE

CVE-2026-26130

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2026-26130

CVSS3: 7.5
ubuntu
16 дней назад

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

redhat логотип

CVE-2026-26130

CVSS3: 7.5
redhat
16 дней назад

A flaw was found in ASP.NET Core. This vulnerability allows an unauthorized attacker to perform a Denial of Service (DoS) attack over a network by allocating resources without limits or throttling. This can lead to the unavailability of the service for legitimate users.

nvd логотип

CVE-2026-26130

CVSS3: 7.5
nvd
16 дней назад

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

msrc логотип

CVE-2026-26130

CVSS3: 7.5
msrc
17 дней назад

ASP.NET Core Denial of Service Vulnerability

rocky логотип

RLSA-2026:4455

rocky
14 дней назад

Important: .NET 8.0 security update