Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Ubuntu 8216-1 .NET Essential Vulnerability and Privilege Elevation Updates

ubuntu
Calendar Grey April 29, 2026
Scroller Ubuntu
A security advisory revealing multiple .NET issues fixed in Ubuntu, ranging from denial of service to network attacks.
Several security issues were fixed in .NET.

Summary

Several security issues were fixed in .NET.

Software Description:

Details:

Ludvig Pedersen discovered that the System.Security.Cryptography.Xml

library in .NET incorrectly handled certain XML inputs. An attacker could

possibly use this issue to consume excessive resources, resulting in a

denial of service. (CVE-2026-33116, CVE-2026-26171)

Ludvig Pedersen and Kevin Jones discovered that the

System.Security.Cryptography.Xml library in .NET incorrectly handled

certain XML inputs. An attacker could possibly use this issue to cause

.NET to crash, resulting in a denial of service. (CVE-2026-32203)

Ludvig Pedersen discovered that the System.Net.Mail component in .NET

incorrectly handled certain inputs. An attacker could possibly use this

issue to perform a network spoofing attack. (CVE-2026-32178)

It was discovered that the Microsoft.AspNetCore.DataProtection library in

.NET did not properly verify cryptographic signatures under certain

conditions. A remote attacker could possibly u...

Read the Full Advisory

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

After a standard system update, it is recommended to rotate the
DataProtection key ring.

References

https://ubuntu.com/security/notices/USN-8216-1

CVE-2026-26171, CVE-2026-32178, CVE-2026-32203, CVE-2026-33116,

CVE-2026-40372

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8216-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.