[ALSA-2023:5710] Important: dotnet6.0 security update
Type:
security
Severity:
important
Release date:
2023-10-20
Description:
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23. Security Fix(es): * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 dotnet-apphost-pack-6.0-6.0.23-1.el8_8.aarch64.rpm 09cf1d9db224ab45925592b4feb8448105adac06ff93c4c3fd176c8273792100
aarch64 aspnetcore-runtime-6.0-6.0.23-1.el8_8.aarch64.rpm 1437ba2fdfcec1730b971119f0cc6697531e770bc2add423378c1f0dc64a5028
aarch64 aspnetcore-targeting-pack-6.0-6.0.23-1.el8_8.aarch64.rpm 5a06bf0720a8a06ad85eb8948763ee5a6260eed92ca49d98b28b05593a3a0043
aarch64 dotnet-templates-6.0-6.0.123-1.el8_8.aarch64.rpm 5bb9c4d768d3c594968aa8f90ffd8e820f76367975ac357c004ad3c4df8519f0
aarch64 dotnet-runtime-6.0-6.0.23-1.el8_8.aarch64.rpm 7fff8c642690baff99e8c633a9b9e6931ee7d841d51f91cb513d89d56c733772
aarch64 dotnet-sdk-6.0-6.0.123-1.el8_8.aarch64.rpm 881fdd479f61bb818b795d118d890f357ccfbc6ad1e6ba11ab3468019f879131
aarch64 dotnet-targeting-pack-6.0-6.0.23-1.el8_8.aarch64.rpm a08bc3d821dbd9c56de4001a0b1c765b4d5535e773599b7efed96974f19ea5ae
aarch64 dotnet-hostfxr-6.0-6.0.23-1.el8_8.aarch64.rpm a6f82d29e8df7b6e3c6def24260b4347ff60e301222bc46d05d3cbf47c9ddf35
aarch64 dotnet-sdk-6.0-source-built-artifacts-6.0.123-1.el8_8.aarch64.rpm acc655b5c8413bfd6a2f0b458a5ec206e11379a12363be7514af2626abe41f73
s390x dotnet-templates-6.0-6.0.123-1.el8_8.s390x.rpm 4499b2d116f425532aacb870fa7ac16ddbb29d606dd9f4aae9939bdd7853bb1b
s390x dotnet-apphost-pack-6.0-6.0.23-1.el8_8.s390x.rpm 45e565d91e570ddee277464a9b0809bccc5453eef2ac1026726b00a76fad8375
s390x aspnetcore-targeting-pack-6.0-6.0.23-1.el8_8.s390x.rpm 4fa063a93216f862d2c683d0f7174c1c0f0b16e76874c019da7b1f32fb982fb6
s390x dotnet-sdk-6.0-source-built-artifacts-6.0.123-1.el8_8.s390x.rpm 87751f05ea5dd628e0cc809a5b3d3e636707b269b729be93fb022adb7174e02a
s390x dotnet-targeting-pack-6.0-6.0.23-1.el8_8.s390x.rpm a1abfad623ddf25ded8bbf77dc5f6cbeed2cf4f7e06bdd5fce96bf018ca66c6d
s390x dotnet-hostfxr-6.0-6.0.23-1.el8_8.s390x.rpm ab97338c4f6252d1d61d5a5bc225cf14c9dcfec971284c18299d98cc5ff75940
s390x dotnet-sdk-6.0-6.0.123-1.el8_8.s390x.rpm acb79da09057add146a2eff77631d4683d4a7d68dfce620cdbf0a96f7ea84583
s390x aspnetcore-runtime-6.0-6.0.23-1.el8_8.s390x.rpm c4395e8882accab171cfb6d2eb68a1350b47019f131e4f05944b717edea2e1cf
s390x dotnet-runtime-6.0-6.0.23-1.el8_8.s390x.rpm caa862e26358eb1aafdd26fbb3c65353345518471061e8ebd5cd07ee50e441b3
x86_64 dotnet-sdk-6.0-source-built-artifacts-6.0.123-1.el8_8.x86_64.rpm 1e8c9326b18f1dcf3d3608c4dade90da09c53680be324beb7ceb3d96c28bdc17
x86_64 dotnet-targeting-pack-6.0-6.0.23-1.el8_8.x86_64.rpm 341b26b0fff10a43efa6dcce3ddc6e609254198e82712a0f97afdb225570e930
x86_64 dotnet-hostfxr-6.0-6.0.23-1.el8_8.x86_64.rpm 4784caefaae309098a55f328d1503209d7feaca77c6b7d1779ac3b9365207c05
x86_64 aspnetcore-runtime-6.0-6.0.23-1.el8_8.x86_64.rpm 5ecf2a1219f47397c6ccb013584a6808565429001fe809067a99600d070f285b
x86_64 dotnet-templates-6.0-6.0.123-1.el8_8.x86_64.rpm 67b1d6f38c5f5d97788da1e408827844e0f7ab5f288b3cce3e10a7e08378909a
x86_64 dotnet-runtime-6.0-6.0.23-1.el8_8.x86_64.rpm 863f758a507688ef139105bc0c3e400bb12eeb3be5279d2ac05a260f4a5fcd24
x86_64 aspnetcore-targeting-pack-6.0-6.0.23-1.el8_8.x86_64.rpm 9a278dd48db17314f0f55b91219c43a585b0f9ac2c7528f293b1d63dd898c413
x86_64 dotnet-apphost-pack-6.0-6.0.23-1.el8_8.x86_64.rpm c966e76ac7ce523a5a0d8e1103e60a8dd960104c2f664f072be75269e03e1d61
x86_64 dotnet-sdk-6.0-6.0.123-1.el8_8.x86_64.rpm cdbcfbacb63c094a88a33afdedddf8b897737ba92f7b747c6082bf5197125251
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.