[ALSA-2023:6242] Moderate: .NET 6.0 security update
Type:
security
Severity:
moderate
Release date:
2023-11-03
Description:
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.124 and .NET Runtime 6.0.24. Security Fix(es): * dotnet: Denial of Service with Client Certificates using .NET Kestrel (CVE-2023-36799) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 dotnet-templates-6.0-6.0.124-1.el9_2.aarch64.rpm 00772b0212626b3065ff83693b9ca48857d76a2c03951235b42a6a0d0938195c
aarch64 dotnet-sdk-6.0-6.0.124-1.el9_2.aarch64.rpm 038905ee4ef4970b92050ffb0c454496fff6c630bb7031e02ef737b33ede9068
aarch64 dotnet-sdk-6.0-source-built-artifacts-6.0.124-1.el9_2.aarch64.rpm 12a0db26ad889963cbefa1dc369657a6c426832d57df5dd09dce3b0e3f184a32
aarch64 aspnetcore-runtime-6.0-6.0.24-1.el9_2.aarch64.rpm 1739bc820386cba5f7bfec740cf6ba7065639b0e116bdec96452fa5fd5f1fe67
aarch64 aspnetcore-targeting-pack-6.0-6.0.24-1.el9_2.aarch64.rpm 180cebaf470f7dc372baf919e799e66974fdf70c57d4f7bf1fb3fa7453f3191b
aarch64 dotnet-targeting-pack-6.0-6.0.24-1.el9_2.aarch64.rpm 549d0dfc0b6a69bf9d75eeb56ec53ca497c9e2d595ba8c4fdfd9a587a6e8270c
aarch64 dotnet-runtime-6.0-6.0.24-1.el9_2.aarch64.rpm d2b935224dc46fe4d44eb3b00b2628c0081b7ca723b559a0f6db4d9485eccfea
aarch64 dotnet-hostfxr-6.0-6.0.24-1.el9_2.aarch64.rpm d425c9d93dc7952c0e8f0168611ea2fca03784be622df50e6e286c785d9b41ee
aarch64 dotnet-apphost-pack-6.0-6.0.24-1.el9_2.aarch64.rpm d973b0355ba0bf07d5e8a2cc91ab9db42afa7fffa056b200275e4eeb8c7d595a
s390x dotnet-hostfxr-6.0-6.0.24-1.el9_2.s390x.rpm 0c44d741c362a3cc22325dff149ddc78480048c47d6fb4cd62fa53da8b654070
s390x dotnet-apphost-pack-6.0-6.0.24-1.el9_2.s390x.rpm 2ca13562611dd380625783de2973783d96fe14e3ce16c078b53dcd7f65a86a78
s390x dotnet-targeting-pack-6.0-6.0.24-1.el9_2.s390x.rpm 467c3b12d39eedcfe927bb227790dd97dd129d3aeb3145bc58ae7e651c07dd40
s390x aspnetcore-runtime-6.0-6.0.24-1.el9_2.s390x.rpm 79d4af42f3ec8c587a7f4acb1fb444a200d31a7fac28e5cbd92801793e0ae757
s390x dotnet-runtime-6.0-6.0.24-1.el9_2.s390x.rpm 7f5dc8d5f4d4db22875a2613aacb8601103300a59e3f90b597ae4353f0f0cb9b
s390x dotnet-sdk-6.0-source-built-artifacts-6.0.124-1.el9_2.s390x.rpm 9937fccc1e79155b87e55b1c4ad1245ea7b2fc0c640595441b2fc51fca7e955e
s390x dotnet-templates-6.0-6.0.124-1.el9_2.s390x.rpm a9de69dd7c1e5a3b41020b79c5bd84dcac0edc6416cd1edc6be8cb5ba6b45e5f
s390x dotnet-sdk-6.0-6.0.124-1.el9_2.s390x.rpm b6aad4a2967ed7bed0e3c79ae4ceae325103fd3162be63f6cab344f9ac535df8
s390x aspnetcore-targeting-pack-6.0-6.0.24-1.el9_2.s390x.rpm e6e64d96fd2f82adf2cfbb4e28a79260ea0fac82ff01fcc7165a484a6dea8629
x86_64 dotnet-sdk-6.0-source-built-artifacts-6.0.124-1.el9_2.x86_64.rpm 25053eaa49c1489e6582b3888b9d4a5c9d96d581cbdbad423fff1181aa2636f7
x86_64 dotnet-templates-6.0-6.0.124-1.el9_2.x86_64.rpm 48ffbaadbfdf4237f7934da809a82f268b16c59eb801c02f83c574241bf630c0
x86_64 dotnet-targeting-pack-6.0-6.0.24-1.el9_2.x86_64.rpm 59f05afc270158347ca8369a64c226356ac52018b08e5c1b785688ff4905da41
x86_64 aspnetcore-runtime-6.0-6.0.24-1.el9_2.x86_64.rpm 931acdf48eea3d6c5c22aa11b513d648927568b0a21c9a017f782ae3fdffc89b
x86_64 dotnet-apphost-pack-6.0-6.0.24-1.el9_2.x86_64.rpm 9e41ab7c9f78515dd80c2b0564873cb6b95f37c8baa5be56176643cfb09767d1
x86_64 aspnetcore-targeting-pack-6.0-6.0.24-1.el9_2.x86_64.rpm 9f0efcd46c47b6927675887ee51276ff853814722c5960d3de9efa0f42ed956b
x86_64 dotnet-hostfxr-6.0-6.0.24-1.el9_2.x86_64.rpm bac6512b462bdbf3eedc4f51743b06e6fad34448bbf2def1926420c971f364a2
x86_64 dotnet-runtime-6.0-6.0.24-1.el9_2.x86_64.rpm c2be1f2341710f65a3977dcc3dc5b0c0554bbe69d475e2adb5284cc5fc8bf2c0
x86_64 dotnet-sdk-6.0-6.0.124-1.el9_2.x86_64.rpm c641becd0326049f37772fa88efd823a8911a77995513ca428b7d57bc5e50d08
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.