Description:
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 3.1.422 and .NET Runtime 3.1.28.
Security Fix(es):
* dotnet: External Entity Injection during XML signature verification (CVE-2022-34716)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| x86_64 |
dotnet-apphost-pack-3.1-3.1.28-1.el8_6.x86_64.rpm |
0e1fcb4cc96dc1329dd24cab430080fc50c60a50a954dedf170ae7c6b717e39f |
| x86_64 |
aspnetcore-targeting-pack-3.1-3.1.28-1.el8_6.x86_64.rpm |
22cba7545f594f64cb48a44b2d1ac3464f2b726d22ceda267ff47e03967ec9f0 |
| x86_64 |
dotnet-targeting-pack-3.1-3.1.28-1.el8_6.x86_64.rpm |
2c44f6d80457996fd0e8e18c4df53c4971d8c828b8f7387280ec3f535d4c5f46 |
| x86_64 |
dotnet-templates-3.1-3.1.422-1.el8_6.x86_64.rpm |
57b259b4f50a6bdec044a2457ad9be4e3893952af9268b669d5c022f70e3486c |
| x86_64 |
dotnet-runtime-3.1-3.1.28-1.el8_6.x86_64.rpm |
934c302a6a650904ba75471afbdc9a7de9993f30201241c5b03d2bba63628844 |
| x86_64 |
aspnetcore-runtime-3.1-3.1.28-1.el8_6.x86_64.rpm |
e1cc272d95c611d657c076a67fddb5b12e4a4ba6832597444aae86d0457437b7 |
| x86_64 |
dotnet-sdk-3.1-source-built-artifacts-3.1.422-1.el8_6.x86_64.rpm |
e5c0d157e231e0e1cd7945559fea8ed87b6737e881983a630cd83e2f0e197ccc |
| x86_64 |
dotnet-sdk-3.1-3.1.422-1.el8_6.x86_64.rpm |
eaf87971bdb1a777cfbc50fc7e17cbbc8b9bd1bdf5209d5527237769f620cbe1 |
| x86_64 |
dotnet-hostfxr-3.1-3.1.28-1.el8_6.x86_64.rpm |
f45e55353b8abe2a4d21c19b5fcd3f64912a7065807992080e4926a2004fdb27 |
