Description:
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 3.1.424 and .NET Runtime 3.1.30.
Security Fix(es):
* dotnet: Nuget cache poisoning on Linux via world-writable cache directory (CVE-2022-41032)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| x86_64 |
dotnet-apphost-pack-3.1-3.1.30-1.el8_6.x86_64.rpm |
04d9bd05f3b2d728a9477c9b79082324bb0a26348f186e986dca652519b13023 |
| x86_64 |
dotnet-hostfxr-3.1-3.1.30-1.el8_6.x86_64.rpm |
15cab40eaa8e85effc1ea0fada7ff88364c642d32563047a9acab65bf7ee929d |
| x86_64 |
dotnet-templates-3.1-3.1.424-1.el8_6.x86_64.rpm |
1932cc839e4789282804769af407db73934549f4141f0b219f703bb3c7f17bc1 |
| x86_64 |
aspnetcore-targeting-pack-3.1-3.1.30-1.el8_6.x86_64.rpm |
1987607a428a50ccd00aef23d3fc3117bdc57fdecadf0c791bf3e3ce3bd181f6 |
| x86_64 |
dotnet-sdk-3.1-source-built-artifacts-3.1.424-1.el8_6.x86_64.rpm |
3548118df619cc39fd8391c888c33d904f6f0f5c75eefac431b6d7ddcd3d9ba7 |
| x86_64 |
aspnetcore-runtime-3.1-3.1.30-1.el8_6.x86_64.rpm |
6e26421689672fe26476d7197a37584ecf120ee38c6265d3c4c467c73d7bc354 |
| x86_64 |
dotnet-sdk-3.1-3.1.424-1.el8_6.x86_64.rpm |
7b475380b325244282596cb3d53aae3c7aeb9a71f36373e267a47d4432fe2b90 |
| x86_64 |
dotnet-runtime-3.1-3.1.30-1.el8_6.x86_64.rpm |
c8f0867c421632a6a1187c02277e014e72209e34e6ed06d0ec328d1acde43a25 |
| x86_64 |
dotnet-targeting-pack-3.1-3.1.30-1.el8_6.x86_64.rpm |
f109348c34edc1f1ca2d2dd17c1224607013fbe695b1bdf3cd2d9048e20aeaeb |
