--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-cbc688b8ca
2023-08-20 00:48:10.269313
--------------------------------------------------------------------------------

Name        : dotnet6.0
Product     : Fedora 38
Version     : 6.0.121
Release     : 1.fc38
URL         : https://github.com/dotnet/
Summary     : .NET Runtime and SDK
Description :
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, macOS and Windows.

It particularly focuses on creating console applications, web
applications and micro-services.

.NET contains a runtime conforming to .NET Standards a set of
framework libraries, an SDK containing compilers and a 'dotnet'
application to drive everything.

--------------------------------------------------------------------------------
Update Information:

This is the August 2023 update for .NET 6 and .NET 7.  Release Notes:  - 7.0
SDK: -
notes/7.0/7.0.10/7.0.110.md - 7.0 Runtime:
-notes/7.0/7.0.10/7.0.10.md -
6.0 SDK: -
notes/6.0/6.0.21/6.0.121.md - 6.0 Runtime:
-notes/6.0/6.0.21/6.0.21.md
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug  8 2023 Omair Majid  - 6.0.121-1
- Update to .NET SDK 6.0.121 and Runtime 6.0.21
* Wed Jul 19 2023 Fedora Release Engineering  - 6.0.120-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2230088 - CVE-2023-35390 dotnet7.0: dotnet:  RCE under dotnet commands [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2230088
  [ 2 ] Bug #2230089 - CVE-2023-35390 dotnet6.0: dotnet:  RCE under dotnet commands [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2230089
  [ 3 ] Bug #2230090 - CVE-2023-38180 dotnet6.0: dotnet:  Kestrel vulnerability to slow read attacks leading to Denial of Service attack [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2230090
  [ 4 ] Bug #2230091 - CVE-2023-38180 dotnet7.0: dotnet:  Kestrel vulnerability to slow read attacks leading to Denial of Service attack [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2230091
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-cbc688b8ca' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Do not reply to spam, report it: https://pagure.io/login/

Fedora 38: dotnet6.0 2023-cbc688b8ca

August 20, 2023
This is the August 2023 update for .NET 6 and .NET 7

Summary

.NET is a fast, lightweight and modular platform for creating

cross platform applications that work on Linux, macOS and Windows.

It particularly focuses on creating console applications, web

applications and micro-services.

.NET contains a runtime conforming to .NET Standards a set of

framework libraries, an SDK containing compilers and a 'dotnet'

application to drive everything.

Update Information:

This is the August 2023 update for .NET 6 and .NET 7. Release Notes: - 7.0 SDK: - notes/7.0/7.0.10/7.0.110.md - 7.0 Runtime: -notes/7.0/7.0.10/7.0.10.md - 6.0 SDK: - notes/6.0/6.0.21/6.0.121.md - 6.0 Runtime: -notes/6.0/6.0.21/6.0.21.md

Change Log

* Tue Aug 8 2023 Omair Majid - 6.0.121-1 - Update to .NET SDK 6.0.121 and Runtime 6.0.21 * Wed Jul 19 2023 Fedora Release Engineering - 6.0.120-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

References

[ 1 ] Bug #2230088 - CVE-2023-35390 dotnet7.0: dotnet: RCE under dotnet commands [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2230088 [ 2 ] Bug #2230089 - CVE-2023-35390 dotnet6.0: dotnet: RCE under dotnet commands [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2230089 [ 3 ] Bug #2230090 - CVE-2023-38180 dotnet6.0: dotnet: Kestrel vulnerability to slow read attacks leading to Denial of Service attack [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2230090 [ 4 ] Bug #2230091 - CVE-2023-38180 dotnet7.0: dotnet: Kestrel vulnerability to slow read attacks leading to Denial of Service attack [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2230091

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-cbc688b8ca' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
Name : dotnet6.0
Product : Fedora 38
Version : 6.0.121
Release : 1.fc38
URL : https://github.com/dotnet/
Summary : .NET Runtime and SDK

Related News

22.Lock ScreenEffect Esm H320
2 - 3 min read
Red Hat recently released its newest enterprise Linux distro, Red Hat Enterprise Linux (RHEL) 9.4 , which introduces several features designed to
8.Locks HexConnections CodeGlobe Esm H320
1 - 2 min read
The latest release of Debian , one of the oldest and most trusted distributions within the Linux ecosystem, redefines security, stability, and
20.Lock AbstractDigital Circular Esm H320
1 - 2 min read
The Ubuntu security team has recently discovered and addressed multiple vulnerabilities in the Apache HTTP Server. The vulnerabilities affected
1.Penguin Landscape Esm H320
1 - 2 min read
A critical vulnerability was discovered in the Linux kernel's netfilter subsystem, specifically within the nf_tables component, posing potential
19.Laptop Bed Esm H320
2 - 3 min read
The release of Google Chrome 124 addresses four vulnerabilities, including a critical security flaw that can enable attackers to execute arbitrary
23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved