Action not permitted
Modal body text goes here.
CVE-2023-29331
Vulnerability from cvelistv5
▼ | URL | Tags | |
---|---|---|---|
secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331 | Patch, Vendor Advisory |
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-02T14:07:45.647Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "cpes": [ "cpe:2.3:a:microsoft:.net:6.0.0:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": ".NET 6.0", "vendor": "Microsoft", "versions": [ { "lessThan": "6.0.18", "status": "affected", "version": "6.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": ".NET 7.0", "vendor": "Microsoft", "versions": [ { "lessThan": "7.0.7", "status": "affected", "version": "7.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.0", "vendor": "Microsoft", "versions": [ { "lessThan": "17.0.22", "status": "affected", "version": "17.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio_2022:17.2:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.2", "vendor": "Microsoft", "versions": [ { "lessThan": "17.2.16", "status": "affected", "version": "17.2.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio_2022:17.4:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.4", "vendor": "Microsoft", "versions": [ { "lessThan": "17.4.8", "status": "affected", "version": "17.4.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:visual_studio:2022:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "Microsoft Visual Studio 2022 version 17.6", "vendor": "Microsoft", "versions": [ { "lessThan": "17.6.3", "status": "affected", "version": "17.6.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:powershell:7.2:*:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "PowerShell 7.2", "vendor": "Microsoft", "versions": [ { "lessThan": "7.2.12", "status": "affected", "version": "7.2.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:powershell:7.3:-:*:*:*:*:*:*" ], "platforms": [ "Unknown" ], "product": "PowerShell 7.3", "vendor": "Microsoft", "versions": [ { "lessThan": "7.3.5", "status": "affected", "version": "7.3.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2012", "Windows Server 2016", "Windows Server 2012 (Server Core installation)", "Windows 10 Version 1607 for 32-bit Systems", "Windows Server 2016 (Server Core installation)", "Windows Server 2012 R2 (Server Core installation)", "Windows 10 Version 1607 for x64-based Systems", "Windows Server 2008 R2 for x64-based Systems Service Pack 1", "Windows Server 2012 R2", "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)" ], "product": "Microsoft .NET Framework 4.8", "vendor": "Microsoft", "versions": [ { "lessThan": "4.8.4644.0", "status": "affected", "version": "4.8.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2022", "Windows Server 2019", "Windows Server 2019 (Server Core installation)", "Windows 10 Version 1809 for 32-bit Systems", "Windows 10 Version 1809 for x64-based Systems", "Windows Server 2022 (Server Core installation)", "Windows 10 Version 21H2 for 32-bit Systems", "Windows 11 version 21H2 for ARM64-based Systems", "Windows 11 version 21H2 for x64-based Systems", "Windows 10 Version 21H2 for ARM64-based Systems", "Windows 10 Version 22H2 for x64-based Systems", "Windows 10 Version 21H2 for x64-based Systems", "Windows 10 Version 22H2 for ARM64-based Systems", "Windows 10 Version 22H2 for 32-bit Systems" ], "product": "Microsoft .NET Framework 3.5 AND 4.8", "vendor": "Microsoft", "versions": [ { "lessThan": "4.8.4644.0", "status": "affected", "version": "4.8.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*" ], "platforms": [ "Windows 10 Version 1809 for 32-bit Systems", "Windows 10 Version 1809 for x64-based Systems", "Windows 10 Version 1809 for ARM64-based Systems", "Windows Server 2019", "Windows Server 2019 (Server Core installation)" ], "product": "Microsoft .NET Framework 3.5 AND 4.7.2", "vendor": "Microsoft", "versions": [ { "lessThan": "4.7.4050.0", "status": "affected", "version": "4.7.0", "versionType": "custom" }, { "lessThan": "4.8.4644.0", "status": "affected", "version": "4.7.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*" ], "platforms": [ "Windows 10 Version 1607 for 32-bit Systems", "Windows 10 Version 1607 for x64-based Systems", "Windows Server 2016", "Windows Server 2016 (Server Core installation)" ], "product": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", "vendor": "Microsoft", "versions": [ { "lessThan": "10.0.14393.5989", "status": "affected", "version": "3.0.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2008 R2 for x64-based Systems Service Pack 1", "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)", "Windows Server 2012 (Server Core installation)", "Windows Server 2012", "Windows Server 2012 R2", "Windows Server 2012 R2 (Server Core installation)" ], "product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", "vendor": "Microsoft", "versions": [ { "lessThan": "4.7.04043.0", "status": "affected", "version": "4.7.0", "versionType": "custom" }, { "lessThan": "4.7.4050.0", "status": "affected", "version": "4.7.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.8.1:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2022", "Windows Server 2022 (Server Core installation)", "Windows 11 version 21H2 for ARM64-based Systems", "Windows 11 version 21H2 for x64-based Systems", "Windows 10 Version 21H2 for 32-bit Systems", "Windows 10 Version 21H2 for x64-based Systems", "Windows 10 Version 21H2 for ARM64-based Systems", "Windows 11 Version 22H2 for ARM64-based Systems", "Windows 11 Version 22H2 for x64-based Systems", "Windows 10 Version 22H2 for x64-based Systems", "Windows 10 Version 22H2 for ARM64-based Systems", "Windows 10 Version 22H2 for 32-bit Systems" ], "product": "Microsoft .NET Framework 3.5 AND 4.8.1", "vendor": "Microsoft", "versions": [ { "lessThan": "4.8.9166.0", "status": "affected", "version": "4.8.1", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.6.2:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2008 for 32-bit Systems Service Pack 2", "Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)", "Windows Server 2008 for x64-based Systems Service Pack 2", "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)" ], "product": "Microsoft .NET Framework 4.6.2", "vendor": "Microsoft", "versions": [ { "lessThan": "4.7.04043.0", "status": "affected", "version": "4.7.0", "versionType": "custom" }, { "lessThan": "4.7.4050.0", "status": "affected", "version": "4.7.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:4.6.2:*:*:*:*:*:*:*" ], "platforms": [ "Windows 10 for 32-bit Systems", "Windows 10 for x64-based Systems" ], "product": "Microsoft .NET Framework 3.5 and 4.6.2", "vendor": "Microsoft", "versions": [ { "lessThan": "10.0.10240.19983", "status": "affected", "version": "4.7.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:2.0:sp2:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2008 for x64-based Systems Service Pack 2", "Windows Server 2008 for 32-bit Systems Service Pack 2" ], "product": "Microsoft .NET Framework 2.0 Service Pack 2", "vendor": "Microsoft", "versions": [ { "lessThan": "3.0.6920.8954; 2.0.50727.8970", "status": "affected", "version": "2.0.0", "versionType": "custom" }, { "lessThan": "4.7.4050.0", "status": "affected", "version": "2.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:3.0:sp2:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2008 for 32-bit Systems Service Pack 2", "Windows Server 2008 for x64-based Systems Service Pack 2" ], "product": "Microsoft .NET Framework 3.0 Service Pack 2", "vendor": "Microsoft", "versions": [ { "lessThan": "3.0.6920.8954; 2.0.50727.8970", "status": "affected", "version": "3.0.0", "versionType": "custom" }, { "lessThan": "4.7.4050.0", "status": "affected", "version": "3.0.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:3.5:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2012 (Server Core installation)", "Windows Server 2012 R2", "Windows Server 2012", "Windows Server 2012 R2 (Server Core installation)" ], "product": "Microsoft .NET Framework 3.5", "vendor": "Microsoft", "versions": [ { "lessThan": "3.0.6920.8954; 2.0.50727.8970", "status": "affected", "version": "3.5.0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:a:microsoft:.net:3.5.1:*:*:*:*:*:*:*" ], "platforms": [ "Windows Server 2008 R2 for x64-based Systems Service Pack 1", "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)" ], "product": "Microsoft .NET Framework 3.5.1", "vendor": "Microsoft", "versions": [ { "lessThan": "3.0.6920.8954; 2.0.50727.8970", "status": "affected", "version": "3.5.0", "versionType": "custom" } ] } ], "datePublic": "2023-06-13T07:00:00+00:00", "descriptions": [ { "lang": "en-US", "value": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability" } ], "metrics": [ { "cvssV3_1": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en-US", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-400", "description": "CWE-400: Uncontrolled Resource Consumption", "lang": "en-US", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2024-07-19T20:21:59.804Z", "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft" }, "references": [ { "name": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "tags": [ "vendor-advisory" ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331" } ], "title": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability" } }, "cveMetadata": { "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "assignerShortName": "microsoft", "cveId": "CVE-2023-29331", "datePublished": "2023-06-14T14:52:19.830Z", "dateReserved": "2023-04-04T22:34:18.378Z", "dateUpdated": "2024-08-02T14:07:45.647Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2023-29331\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2023-06-14T15:15:09.763\",\"lastModified\":\"2024-05-29T02:15:39.133\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]},{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"42A6DF09-B8E1-414D-97E7-453566055279\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DE0C8DD-9C73-4876-8193-068F18074B58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4E2C6C0-FD91-40D9-B1A4-C1C348A156C7\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}" } }
rhsa-2023_3592
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3592", "url": "https://access.redhat.com/errata/RHSA-2023:3592" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json" } ], "title": "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-06T03:11:08+00:00", "generator": { "date": "2024-11-06T03:11:08+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:3592", "initial_release_date": "2023-06-14T09:51:37+00:00", "revision_history": [ { "date": "2023-06-14T09:51:37+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T09:51:37+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:11:08+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 9)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-host-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-host-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet7.0-0:7.0.107-1.el9_2.src", "product": { "name": "dotnet7.0-0:7.0.107-1.el9_2.src", "product_id": "dotnet7.0-0:7.0.107-1.el9_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el9_2.src", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el9_2.src", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-32032", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212615" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-32032" }, { "category": "external", "summary": "RHBZ#2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-32032", "url": "https://www.cve.org/CVERecord?id=CVE-2023-32032" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T09:51:37+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3592" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3593
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3593", "url": "https://access.redhat.com/errata/RHSA-2023:3593" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json" } ], "title": "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-06T03:11:29+00:00", "generator": { "date": "2024-11-06T03:11:29+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:3593", "initial_release_date": "2023-06-14T10:02:32+00:00", "revision_history": [ { "date": "2023-06-14T10:02:32+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T10:02:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:11:29+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 8)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-host-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-host-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_id": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "product": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "product_id": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "product_id": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet7.0-0:7.0.107-1.el8_8.src", "product": { "name": "dotnet7.0-0:7.0.107-1.el8_8.src", "product_id": "dotnet7.0-0:7.0.107-1.el8_8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el8_8.src", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src" }, "product_reference": "dotnet7.0-0:7.0.107-1.el8_8.src", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-32032", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212615" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-32032" }, { "category": "external", "summary": "RHBZ#2212615", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212615" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-32032", "url": "https://www.cve.org/CVERecord?id=CVE-2023-32032" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32032" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T10:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3593" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_4448
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:4448", "url": "https://access.redhat.com/errata/RHSA-2023:4448" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security update", "tracking": { "current_release_date": "2024-11-06T03:27:46+00:00", "generator": { "date": "2024-11-06T03:27:46+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:4448", "initial_release_date": "2023-08-03T07:58:53+00:00", "revision_history": [ { "date": "2023-08-03T07:58:53+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-08-03T07:58:53+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:27:46+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product": { "name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.6::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v.8.6)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.6::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-host-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-host-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.120-1.el8_6.src", "product": { "name": "dotnet6.0-0:6.0.120-1.el8_6.src", "product_id": "dotnet6.0-0:6.0.120-1.el8_6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el8_6.src", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", "product_id": "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "AppStream-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el8_6.src", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", "product_id": "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "relates_to_product_reference": "CRB-8.6.0.Z.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-362", "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)" }, "discovery_date": "2023-07-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2221854" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33170" }, { "category": "external", "summary": "RHBZ#2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33170", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33170" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170" }, { "category": "external", "summary": "https://devblogs.microsoft.com/dotnet/july-2023-updates/", "url": "https://devblogs.microsoft.com/dotnet/july-2023-updates/" }, { "category": "external", "summary": "https://github.com/advisories/GHSA-25c8-p796-jg6r", "url": "https://github.com/advisories/GHSA-25c8-p796-jg6r" }, { "category": "external", "summary": "https://github.com/dotnet/announcements/issues/264", "url": "https://github.com/dotnet/announcements/issues/264" }, { "category": "external", "summary": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170" } ], "release_date": "2023-07-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:58:53+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4448" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method" } ] }
rhsa-2023_4449
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:4449", "url": "https://access.redhat.com/errata/RHSA-2023:4449" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security update", "tracking": { "current_release_date": "2024-11-06T03:27:55+00:00", "generator": { "date": "2024-11-06T03:27:55+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:4449", "initial_release_date": "2023-08-03T07:57:34+00:00", "revision_history": [ { "date": "2023-08-03T07:57:34+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-08-03T07:57:34+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:27:55+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product": { "name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:9.0::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v.9.0)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:9.0::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-host-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-host-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "product": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "product_id": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.120-1.el9_0.src", "product": { "name": "dotnet6.0-0:6.0.120-1.el9_0.src", "product_id": "dotnet6.0-0:6.0.120-1.el9_0.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el9_0.src", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", "product_id": "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "AppStream-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src" }, "product_reference": "dotnet6.0-0:6.0.120-1.el9_0.src", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", "product_id": "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" }, "product_reference": "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "relates_to_product_reference": "CRB-9.0.0.Z.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-362", "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)" }, "discovery_date": "2023-07-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2221854" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33170" }, { "category": "external", "summary": "RHBZ#2221854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2221854" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33170", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33170" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33170" }, { "category": "external", "summary": "https://devblogs.microsoft.com/dotnet/july-2023-updates/", "url": "https://devblogs.microsoft.com/dotnet/july-2023-updates/" }, { "category": "external", "summary": "https://github.com/advisories/GHSA-25c8-p796-jg6r", "url": "https://github.com/advisories/GHSA-25c8-p796-jg6r" }, { "category": "external", "summary": "https://github.com/dotnet/announcements/issues/264", "url": "https://github.com/dotnet/announcements/issues/264" }, { "category": "external", "summary": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170" } ], "release_date": "2023-07-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-08-03T07:57:34+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:4449" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: race condition in Core SignInManager\u003cTUser\u003e PasswordSignInAsync method" } ] }
rhsa-2023_3581
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3581", "url": "https://access.redhat.com/errata/RHSA-2023:3581" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-06T03:10:30+00:00", "generator": { "date": "2024-11-06T03:10:30+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:3581", "initial_release_date": "2023-06-14T08:03:19+00:00", "revision_history": [ { "date": "2023-06-14T08:03:19+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T08:03:19+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:10:30+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 9)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:9::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.118-1.el9_2.src", "product": { "name": "dotnet6.0-0:6.0.118-1.el9_2.src", "product_id": "dotnet6.0-0:6.0.118-1.el9_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el9_2.src", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", "product_id": "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el9_2.src", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", "product_id": "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:03:19+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3581" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3582
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3582", "url": "https://access.redhat.com/errata/RHSA-2023:3582" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-06T03:11:02+00:00", "generator": { "date": "2024-11-06T03:11:02+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:3582", "initial_release_date": "2023-06-14T08:41:36+00:00", "revision_history": [ { "date": "2023-06-14T08:41:36+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T08:41:36+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:11:02+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux CRB (v. 8)", "product": { "name": "Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_id": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x" } } }, { "category": "product_version", "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "product": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "product_id": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "dotnet6.0-0:6.0.118-1.el8_8.src", "product": { "name": "dotnet6.0-0:6.0.118-1.el8_8.src", "product_id": "dotnet6.0-0:6.0.118-1.el8_8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el8_8.src", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64" }, "product_reference": "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src" }, "product_reference": "dotnet6.0-0:6.0.118-1.el8_8.src", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", "product_id": "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" }, "product_reference": "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "relates_to_product_reference": "CRB-8.8.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:41:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3582" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
rhsa-2023_3580
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2023:3580", "url": "https://access.redhat.com/errata/RHSA-2023:3580" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json" } ], "title": "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-06T03:10:41+00:00", "generator": { "date": "2024-11-06T03:10:41+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2023:3580", "initial_release_date": "2023-06-14T08:54:51+00:00", "revision_history": [ { "date": "2023-06-14T08:54:51+00:00", "number": "1", "summary": "Initial version" }, { "date": "2023-06-14T08:54:51+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-06T03:10:41+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product": { "name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7" } } }, { "category": "product_name", "name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)", "product": { "name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7" } } }, { "category": "product_name", "name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_dotnet:6.0::el7" } } } ], "category": "product_family", "name": ".NET Core on Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64" } } }, { "category": "product_version", "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "product": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "product_id": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "product": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "product_id": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", "product_id": "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7ComputeNode-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Server-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" }, "product_reference": "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "relates_to_product_reference": "7Workstation-dotNET-6.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-24936", "discovery_date": "2023-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2192438" } ], "notes": [ { "category": "description", "text": "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-24936" }, { "category": "external", "summary": "RHBZ#2192438", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192438" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24936", "url": "https://www.cve.org/CVERecord?id=CVE-2023-24936" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24936" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML" }, { "cve": "CVE-2023-29331", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212617" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29331" }, { "category": "external", "summary": "RHBZ#2212617", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212617" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29331", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29331" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates" }, { "cve": "CVE-2023-29337", "discovery_date": "2023-06-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2213703" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-29337" }, { "category": "external", "summary": "RHBZ#2213703", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2213703" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-29337", "url": "https://www.cve.org/CVERecord?id=CVE-2023-29337" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29337" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack" }, { "cve": "CVE-2023-33128", "discovery_date": "2023-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2212618" } ], "notes": [ { "category": "description", "text": "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2023-33128" }, { "category": "external", "summary": "RHBZ#2212618", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212618" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2023-33128", "url": "https://www.cve.org/CVERecord?id=CVE-2023-33128" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-33128" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md" }, { "category": "external", "summary": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", "url": "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md" } ], "release_date": "2023-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2023-06-14T08:54:51+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2023:3580" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption" } ] }
icsa-23-320-12
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Siemens ProductCERT", "summary": "reporting these vulnerabilities to CISA." } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "SINEC PNI before V2.0 is affected by multiple vulnerabilities.\n\nSiemens has released an update for SINEC PNI and recommends to update to the latest version.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", "title": "Terms of Use" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "other", "text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.", "title": "Advisory Conversion Disclaimer" }, { "category": "other", "text": "Multiple", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Germany", "title": "Company headquarters location" }, { "category": "general", "text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", "title": "Recommended Practices" }, { "category": "general", "text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", "title": "Recommended Practices" }, { "category": "general", "text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", "title": "Recommended Practices" }, { "category": "general", "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" } ], "publisher": { "category": "other", "contact_details": "central@cisa.dhs.gov", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-150063.json" }, { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-150063.html" }, { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-150063.pdf" }, { "category": "self", "summary": "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-150063.txt" }, { "category": "self", "summary": "ICS Advisory ICSA-23-320-12 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-320-12.json" }, { "category": "self", "summary": "ICS Advisory ICSA-23-320-12 - Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-12" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/topics/industrial-control-systems" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B" } ], "title": "Siemens PNI", "tracking": { "current_release_date": "2023-11-14T00:00:00Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1" } }, "id": "ICSA-23-320-12", "initial_release_date": "2023-11-14T00:00:00Z", "revision_history": [ { "date": "2023-11-14T00:00:00Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003cV2.0", "product": { "name": "SINEC PNI", "product_id": "1" } } ], "category": "product_name", "name": "SINEC PNI" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-30184", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Information Disclosure Vulnerability.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-30184" }, { "cve": "CVE-2022-37434", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-37434" }, { "cve": "CVE-2022-41032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "NuGet Client Elevation of Privilege Vulnerability.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-41032" }, { "cve": "CVE-2023-21808", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-21808" }, { "cve": "CVE-2023-24895", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24895" }, { "cve": "CVE-2023-24897", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24936", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24936" }, { "cve": "CVE-2023-28260", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET DLL Hijacking Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-28260" }, { "cve": "CVE-2023-29331", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-29331" }, { "cve": "CVE-2023-32032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-32032" }, { "cve": "CVE-2023-33126", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33126" }, { "cve": "CVE-2023-33128", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33135", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V2.0 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109825079/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33135" } ] }
icsa-24-165-04
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Siemens ProductCERT", "summary": "reporting these vulnerabilities to CISA." } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", "title": "Terms of Use" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "other", "text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.", "title": "Advisory Conversion Disclaimer" }, { "category": "other", "text": "Multiple", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Germany", "title": "Company headquarters location" }, { "category": "general", "text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", "title": "Recommended Practices" }, { "category": "general", "text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", "title": "Recommended Practices" }, { "category": "general", "text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", "title": "Recommended Practices" }, { "category": "general", "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" } ], "publisher": { "category": "other", "contact_details": "central@cisa.dhs.gov", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-341067.html" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt" }, { "category": "self", "summary": "ICS Advisory ICSA-24-165-04 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-165-04.json" }, { "category": "self", "summary": "ICS Advisory ICSA-24-165-04 - Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-04" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/topics/industrial-control-systems" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B" } ], "title": "Siemens ST7 ScadaConnect", "tracking": { "current_release_date": "2024-06-11T00:00:00.000000Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1" } }, "id": "ICSA-24-165-04", "initial_release_date": "2024-06-11T00:00:00.000000Z", "revision_history": [ { "date": "2024-06-11T00:00:00.000000Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003cV1.1", "product": { "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", "product_id": "CSAFPID-0001", "product_identification_helper": { "model_numbers": [ "6NH7997-5DA10-0AA0" ] } } } ], "category": "product_name", "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-40303", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-40303" }, { "cve": "CVE-2022-40304", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2022-40304" }, { "cve": "CVE-2023-0464", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-0464" }, { "cve": "CVE-2023-0465", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-0465" }, { "cve": "CVE-2023-0466", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-0466" }, { "cve": "CVE-2023-3446", "cwe": { "id": "CWE-1333", "name": "Inefficient Regular Expression Complexity" }, "notes": [ { "category": "summary", "text": "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus (\u0027p\u0027 parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the \u0027-check\u0027 option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-3446" }, { "cve": "CVE-2023-5678", "cwe": { "id": "CWE-754", "name": "Improper Check for Unusual or Exceptional Conditions" }, "notes": [ { "category": "summary", "text": "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn\u0027t make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn\u0027t check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-5678" }, { "cve": "CVE-2023-21808", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-21808" }, { "cve": "CVE-2023-24895", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-24895" }, { "cve": "CVE-2023-24897", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24936", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-24936" }, { "cve": "CVE-2023-28260", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET DLL Hijacking Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-28260" }, { "cve": "CVE-2023-28484", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-28484" }, { "cve": "CVE-2023-29331", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-29331" }, { "cve": "CVE-2023-29469", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the \u0027\\0\u0027 value).", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-29469" }, { "cve": "CVE-2023-32032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-32032" }, { "cve": "CVE-2023-33126", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33126" }, { "cve": "CVE-2023-33127", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33127" }, { "cve": "CVE-2023-33128", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33135", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33135" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-33170" }, { "cve": "CVE-2023-35390", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-35390" }, { "cve": "CVE-2023-35391", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-35391" }, { "cve": "CVE-2023-36038", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36038" }, { "cve": "CVE-2023-36049", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36049" }, { "cve": "CVE-2023-36435", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36435" }, { "cve": "CVE-2023-36558", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core - Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36558" }, { "cve": "CVE-2023-36792", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36792" }, { "cve": "CVE-2023-36793", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36793" }, { "cve": "CVE-2023-36794", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36794" }, { "cve": "CVE-2023-36796", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36796" }, { "cve": "CVE-2023-36799", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-36799" }, { "cve": "CVE-2023-38171", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-38171" }, { "cve": "CVE-2023-38178", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-38178" }, { "cve": "CVE-2023-38180", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-38180" }, { "cve": "CVE-2023-39615", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "summary", "text": "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor\u0027s position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-39615" }, { "cve": "CVE-2023-44487", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", "title": "Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "CSAFPID-0001" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "CSAFPID-0001" ] } ], "title": "CVE-2023-44487" } ] }
ssa-341067
Vulnerability from csaf_siemens
Notes
{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)", "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", "title": "Summary" }, { "category": "general", "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", "title": "General Recommendations" }, { "category": "general", "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", "title": "Additional Resources" }, { "category": "legal_disclaimer", "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "productcert@siemens.com", "name": "Siemens ProductCERT", "namespace": "https://www.siemens.com" }, "references": [ { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", "url": "https://cert-portal.siemens.com/productcert/html/ssa-341067.html" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf" }, { "category": "self", "summary": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", "url": "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt" } ], "title": "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1", "tracking": { "current_release_date": "2024-06-11T00:00:00Z", "generator": { "engine": { "name": "Siemens ProductCERT CSAF Generator", "version": "1" } }, "id": "SSA-341067", "initial_release_date": "2024-06-11T00:00:00Z", "revision_history": [ { "date": "2024-06-11T00:00:00Z", "legacy_version": "1.0", "number": "1", "summary": "Publication Date" } ], "status": "interim", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "\u003cV1.1", "product": { "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", "product_id": "1", "product_identification_helper": { "model_numbers": [ "6NH7997-5DA10-0AA0" ] } } } ], "category": "product_name", "name": "ST7 ScadaConnect (6NH7997-5DA10-0AA0)" } ], "category": "vendor", "name": "Siemens" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-40303", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-40303" }, { "cve": "CVE-2022-40304", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2022-40304" }, { "cve": "CVE-2023-0464", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-0464" }, { "cve": "CVE-2023-0465", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-0465" }, { "cve": "CVE-2023-0466", "cwe": { "id": "CWE-295", "name": "Improper Certificate Validation" }, "notes": [ { "category": "summary", "text": "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-0466" }, { "cve": "CVE-2023-3446", "cwe": { "id": "CWE-1333", "name": "Inefficient Regular Expression Complexity" }, "notes": [ { "category": "summary", "text": "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus (\u0027p\u0027 parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the \u0027-check\u0027 option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-3446" }, { "cve": "CVE-2023-5678", "cwe": { "id": "CWE-754", "name": "Improper Check for Unusual or Exceptional Conditions" }, "notes": [ { "category": "summary", "text": "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn\u0027t make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn\u0027t check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-5678" }, { "cve": "CVE-2023-21808", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-21808" }, { "cve": "CVE-2023-24895", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24895" }, { "cve": "CVE-2023-24897", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24936", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-24936" }, { "cve": "CVE-2023-28260", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET DLL Hijacking Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-28260" }, { "cve": "CVE-2023-28484", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-28484" }, { "cve": "CVE-2023-29331", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-29331" }, { "cve": "CVE-2023-29469", "cwe": { "id": "CWE-415", "name": "Double Free" }, "notes": [ { "category": "summary", "text": "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the \u0027\\0\u0027 value).", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-29469" }, { "cve": "CVE-2023-32032", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-32032" }, { "cve": "CVE-2023-33126", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33126" }, { "cve": "CVE-2023-33127", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33127" }, { "cve": "CVE-2023-33128", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33135", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33135" }, { "cve": "CVE-2023-33170", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-33170" }, { "cve": "CVE-2023-35390", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-35390" }, { "cve": "CVE-2023-35391", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-35391" }, { "cve": "CVE-2023-36038", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36038" }, { "cve": "CVE-2023-36049", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36049" }, { "cve": "CVE-2023-36435", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36435" }, { "cve": "CVE-2023-36558", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "ASP.NET Core - Security Feature Bypass Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.2, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36558" }, { "cve": "CVE-2023-36792", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36792" }, { "cve": "CVE-2023-36793", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36793" }, { "cve": "CVE-2023-36794", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36794" }, { "cve": "CVE-2023-36796", "cwe": { "id": "CWE-311", "name": "Missing Encryption of Sensitive Data" }, "notes": [ { "category": "summary", "text": "Visual Studio Remote Code Execution Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36796" }, { "cve": "CVE-2023-36799", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-36799" }, { "cve": "CVE-2023-38171", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": "Microsoft QUIC Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-38171" }, { "cve": "CVE-2023-38178", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET Core and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-38178" }, { "cve": "CVE-2023-38180", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "summary", "text": ".NET and Visual Studio Denial of Service Vulnerability", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-38180" }, { "cve": "CVE-2023-39615", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "summary", "text": "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor\u0027s position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-39615" }, { "cve": "CVE-2023-44487", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "summary", "text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", "title": "Summary" } ], "product_status": { "known_affected": [ "1" ] }, "remediations": [ { "category": "vendor_fix", "details": "Update to V1.1 or later version", "product_ids": [ "1" ], "url": "https://support.industry.siemens.com/cs/ww/en/view/109955597/" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" }, "products": [ "1" ] } ], "title": "CVE-2023-44487" } ] }
ghsa-555c-2p6r-68mm
Vulnerability from github
Microsoft Security Advisory CVE-2023-29331: .NET Denial of Service vulnerability
Executive summary
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
A vulnerability exists in .NET when processing X.509 certificates that may result in Denial of Service.
Details: KB5025823
Announcement
Announcement for this issue can be found at https://github.com/dotnet/announcements/issues/257
Mitigation factors
Microsoft has not identified any mitigating factors for this vulnerability.
Affected software
- Any .NET 7.0 application running on .NET 7.0.5 or earlier.
- Any .NET 6.0 application running on .NET 6.0.16 or earlier.
If your application uses the following package versions, ensure you update to the latest version of .NET.
.NET 7
Package name | Affected version | Patched version ------------ | ---------------- | ------------------------- Microsoft.Windows.Compatibility | >= 7.0.0, < 7.0.1 | 7.0.3 System.Security.Cryptography.Pkcs | >= 7.0.0, < 7.0.1 | 7.0.2 Microsoft.NetCore.App.Runtime.linux-arm | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x86 | >= 7.0.0, < 7.0.5 | 7.0.7
.NET 6
Package name | Affected version | Patched version ------------ | ---------------- | ------------------------- Microsoft.Windows.Compatibility | >= 6.0.0, < 6.0.4 | 6.0.6 System.Security.Cryptography.Pkcs | >= 6.0.0, < 6.0.2 | 6.0.3 Microsoft.NetCore.App.Runtime.linux-arm | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-musl-arm | >= 6.0.1, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-musl-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-musl-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.osx-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.osx-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-arm | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-x86 | >= 6.0.0, < 6.0.16 | 6.0.18
Advisory FAQ
How do I know if I am affected?
If you have a runtime or SDK with a version listed, or an affected package listed in affected software, you're exposed to the vulnerability.
How do I fix the issue?
- To fix the issue please install the latest version of .NET 6.0 or .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.
- If you are using one of the affected packages, please update to the patched version listed above.
- If you have .NET 6.0 or greater installed, you can list the versions you have installed by running the
dotnet --info
command. You will see output like the following;
``` .NET Core SDK (reflecting any global.json):
Version: 6.0.300 Commit: 8473146e7d
Runtime Environment:
OS Name: Windows OS Version: 10.0.18363 OS Platform: Windows RID: win10-x64 Base Path: C:\Program Files\dotnet\sdk\6.0.300\
Host (useful for support):
Version: 6.0.5 Commit: 8473146e7d
.NET Core SDKs installed:
6.0.300 [C:\Program Files\dotnet\sdk]
.NET Core runtimes installed:
Microsoft.AspNetCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.AspNetCore.App] Microsoft.NETCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.NETCore.App] Microsoft.WindowsDesktop.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App]
To install additional .NET Core runtimes or SDKs: https://aka.ms/dotnet-download ```
- If you're using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.
- If you're using .NET 6.0, you should download and install Runtime 6.0.18 or SDK 6.0.312 (for Visual Studio 2022 v17.2) from https://dotnet.microsoft.com/download/dotnet-core/6.0.
.NET 6.0 and and .NET 7.0 updates are also available from Microsoft Update. To access this either type "Check for updates" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.
Once you have installed the updated runtime or SDK, restart your apps for the update to take effect.
Additionally, if you've deployed self-contained applications targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.
Other Information
Reporting Security Issues
If you have found a potential security issue in .NET 6.0 or .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at https://aka.ms/corebounty.
Support
You can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.
Disclaimer
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
External Links
Revisions
V1.0 (June 13, 2023): Advisory published.
Version 1.0
Last Updated 2023-06-13
{ "affected": [ { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.1" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.Windows.Compatibility" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.3" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.4" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.Windows.Compatibility" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.6" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.1" }, "package": { "ecosystem": "NuGet", "name": "System.Security.Cryptography.Pkcs" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.2" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.2" }, "package": { "ecosystem": "NuGet", "name": "System.Security.Cryptography.Pkcs" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.3" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-arm" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-arm" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-arm64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-arm" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-arm" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-arm64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-x64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-musl-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-x64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.linux-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.osx-arm64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.osx-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.osx-x64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.osx-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-arm" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-arm" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-arm64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-arm64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-x64" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-x64" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 7.0.5" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-x86" }, "ranges": [ { "events": [ { "introduced": "7.0.0" }, { "fixed": "7.0.7" } ], "type": "ECOSYSTEM" } ] }, { "database_specific": { "last_known_affected_version_range": "\u003c= 6.0.16" }, "package": { "ecosystem": "NuGet", "name": "Microsoft.NETCore.App.Runtime.win-x86" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.18" } ], "type": "ECOSYSTEM" } ] } ], "aliases": [ "CVE-2023-29331" ], "database_specific": { "cwe_ids": [ "CWE-400" ], "github_reviewed": true, "github_reviewed_at": "2023-06-14T17:08:54Z", "nvd_published_at": "2023-06-14T15:15:09Z", "severity": "HIGH" }, "details": "# Microsoft Security Advisory CVE-2023-29331: .NET Denial of Service vulnerability\n\n## \u003ca name=\"executive-summary\"\u003e\u003c/a\u003eExecutive summary\n\nMicrosoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.\n\nA vulnerability exists in .NET when processing X.509 certificates that may result in Denial of Service. \n\nDetails: [KB5025823 ](https://support.microsoft.com/kb/5025823)\n\n## Announcement\n\nAnnouncement for this issue can be found at https://github.com/dotnet/announcements/issues/257\n\n### \u003ca name=\"mitigation-factors\"\u003e\u003c/a\u003eMitigation factors\n\nMicrosoft has not identified any mitigating factors for this vulnerability.\n\n## \u003ca name=\"affected-software\"\u003e\u003c/a\u003eAffected software\n\n* Any .NET 7.0 application running on .NET 7.0.5 or earlier.\n* Any .NET 6.0 application running on .NET 6.0.16 or earlier.\n\nIf your application uses the following package versions, ensure you update to the latest version of .NET.\n\n### \u003ca name=\".NET 7\"\u003e\u003c/a\u003e.NET 7\n\nPackage name | Affected version | Patched version\n------------ | ---------------- | -------------------------\n[Microsoft.Windows.Compatibility](https://www.nuget.org/packages/Microsoft.Windows.Compatibility) | \u003e= 7.0.0, \u003c 7.0.1 | 7.0.3\n[System.Security.Cryptography.Pkcs](https://www.nuget.org/packages/System.Security.Cryptography.Pkcs) | \u003e= 7.0.0, \u003c 7.0.1 | 7.0.2\n[Microsoft.NetCore.App.Runtime.linux-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-x64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-x64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-arm64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-x64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x64) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x86](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x86) | \u003e= 7.0.0, \u003c 7.0.5 | 7.0.7\n\n### \u003ca name=\".NET 6\"\u003e\u003c/a\u003e.NET 6\n\nPackage name | Affected version | Patched version\n------------ | ---------------- | -------------------------\n[Microsoft.Windows.Compatibility](https://www.nuget.org/packages/Microsoft.Windows.Compatibility) | \u003e= 6.0.0, \u003c 6.0.4 | 6.0.6\n[System.Security.Cryptography.Pkcs](https://www.nuget.org/packages/System.Security.Cryptography.Pkcs) | \u003e= 6.0.0, \u003c 6.0.2 | 6.0.3\n[Microsoft.NetCore.App.Runtime.linux-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-musl-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm) | \u003e= 6.0.1, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-musl-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-musl-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-x64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-x64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.osx-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-arm64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.osx-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-x64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x64) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-x86](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x86) | \u003e= 6.0.0, \u003c 6.0.16 | 6.0.18\n\n\n## Advisory FAQ\n\n### \u003ca name=\"how-affected\"\u003e\u003c/a\u003eHow do I know if I am affected?\n\nIf you have a runtime or SDK with a version listed, or an affected package listed in [affected software](#affected-software), you\u0027re exposed to the vulnerability.\n\n### \u003ca name=\"how-fix\"\u003e\u003c/a\u003eHow do I fix the issue?\n\n* To fix the issue please install the latest version of .NET 6.0 or .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.\n* If you are using one of the affected packages, please update to the patched version listed above.\n* If you have .NET 6.0 or greater installed, you can list the versions you have installed by running the `dotnet --info` command. You will see output like the following;\n\n```\n.NET Core SDK (reflecting any global.json):\n\n Version: 6.0.300\n Commit: 8473146e7d\n\nRuntime Environment:\n\n OS Name: Windows\n OS Version: 10.0.18363\n OS Platform: Windows\n RID: win10-x64\n Base Path: C:\\Program Files\\dotnet\\sdk\\6.0.300\\\n\nHost (useful for support):\n\n Version: 6.0.5\n Commit: 8473146e7d\n\n.NET Core SDKs installed:\n\n 6.0.300 [C:\\Program Files\\dotnet\\sdk]\n\n.NET Core runtimes installed:\n\n Microsoft.AspNetCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.AspNetCore.App]\n Microsoft.NETCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.NETCore.App]\n Microsoft.WindowsDesktop.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.WindowsDesktop.App]\n\nTo install additional .NET Core runtimes or SDKs:\n https://aka.ms/dotnet-download\n```\n\n* If you\u0027re using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.\n* If you\u0027re using .NET 6.0, you should download and install Runtime 6.0.18 or SDK 6.0.312 (for Visual Studio 2022 v17.2) from https://dotnet.microsoft.com/download/dotnet-core/6.0.\n\n.NET 6.0 and and .NET 7.0 updates are also available from Microsoft Update. To access this either type \"Check for updates\" in your Windows search, or open Settings, choose Update \u0026 Security and then click Check for Updates.\n\nOnce you have installed the updated runtime or SDK, restart your apps for the update to take effect.\n\nAdditionally, if you\u0027ve deployed [self-contained applications](https://docs.microsoft.com/dotnet/core/deploying/#self-contained-deployments-scd) targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.\n\n## Other Information\n\n### Reporting Security Issues\n\nIf you have found a potential security issue in .NET 6.0 or .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core \u0026 .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at \u003chttps://aka.ms/corebounty\u003e.\n\n### Support\n\nYou can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.\n\n### Disclaimer\n\nThe information provided in this advisory is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\n\n### External Links\n\n[CVE-2023-29331]( https://www.cve.org/CVERecord?id=2023-29331)\n\n### Revisions\n\nV1.0 (June 13, 2023): Advisory published.\n\n_Version 1.0_\n\n_Last Updated 2023-06-13_", "id": "GHSA-555c-2p6r-68mm", "modified": "2024-07-30T21:16:01Z", "published": "2023-06-14T17:08:54Z", "references": [ { "type": "WEB", "url": "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29331" }, { "type": "WEB", "url": "https://github.com/dotnet/announcements/issues/257" }, { "type": "PACKAGE", "url": "https://github.com/dotnet/runtime" }, { "type": "WEB", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331" }, { "type": "WEB", "url": "https://support.microsoft.com/kb/5025823" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ], "summary": ".NET Denial of Service vulnerability" }
gsd-2023-29331
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2023-29331", "id": "GSD-2023-29331" }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2023-29331" ], "details": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "id": "GSD-2023-29331", "modified": "2023-12-13T01:20:57.339477Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secure@microsoft.com", "ID": "CVE-2023-29331", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": ".NET 6.0", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "6.0.0", "version_value": "6.0.18" } ] } }, { "product_name": ".NET 7.0", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.0.0", "version_value": "7.0.7" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.0", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.0.0", "version_value": "17.0.22" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.2.0", "version_value": "17.2.16" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.4", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.4.0", "version_value": "17.4.8" } ] } }, { "product_name": "Microsoft Visual Studio 2022 version 17.6", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "17.6.0", "version_value": "17.6.3" } ] } }, { "product_name": "PowerShell 7.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.2.0", "version_value": "7.2.12" } ] } }, { "product_name": "PowerShell 7.3", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "7.3.0", "version_value": "7.3.5" } ] } }, { "product_name": "Microsoft .NET Framework 4.8", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.8.0", "version_value": "4.8.4644.0" } ] } }, { "product_name": "Microsoft .NET Framework 3.5 AND 4.8", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.8.0", "version_value": "4.8.4644.0" } ] } }, { "product_name": "Microsoft .NET Framework 3.5 AND 4.7.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.7.0", "version_value": "4.7.4050.0" } ] } }, { "product_name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "3.0.0.0", "version_value": "10.0.14393.5989" } ] } }, { "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.7.0", "version_value": "4.7.04043.0" } ] } }, { "product_name": "Microsoft .NET Framework 3.5 AND 4.8.1", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.8.1", "version_value": "4.8.9166.0" } ] } }, { "product_name": "Microsoft .NET Framework 4.6.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.7.0", "version_value": "4.7.04043.0" } ] } }, { "product_name": "Microsoft .NET Framework 3.5 and 4.6.2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "4.7.0", "version_value": "10.0.10240.19983" } ] } }, { "product_name": "Microsoft .NET Framework 2.0 Service Pack 2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "2.0.0", "version_value": "3.0.6920.8954; 2.0.50727.8970" } ] } }, { "product_name": "Microsoft .NET Framework 3.0 Service Pack 2", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "3.0.0", "version_value": "3.0.6920.8954; 2.0.50727.8970" } ] } }, { "product_name": "Microsoft .NET Framework 3.5", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "3.5.0", "version_value": "3.0.6920.8954; 2.0.50727.8970" } ] } }, { "product_name": "Microsoft .NET Framework 3.5.1", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "3.5.0", "version_value": "3.0.6920.8954; 2.0.50727.8970" } ] } } ] }, "vendor_name": "Microsoft" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability" } ] }, "impact": { "cvss": [ { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "version": "3.1" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Denial of Service" } ] } ] }, "references": { "reference_data": [ { "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "refsource": "MISC", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331" } ] } }, "gitlab.com": { "advisories": [ { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-arm", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "8ab9cb12-3676-4e67-a839-39398a119561" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "6a4dde3a-9bc4-45c8-9440-57f4f178ff2f" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "afd23bc7-0c19-4550-9755-9298430bf755" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "576af8c9-35cd-4278-bf12-eecfc787a316" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-musl-x64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "b53e7dcb-ee87-454f-8896-ab6771a03c9f" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.linux-x64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "67f548a5-aafc-4993-be9f-edaf0cf4bb10" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.osx-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "6100ceb5-8a24-4636-8422-eed7c6998f76" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.osx-x64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "d543efed-a86f-452d-9c4f-0fe2ad14b89b" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-arm", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "73adc168-5a6b-418a-bd7b-4a314dd9de45" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-arm64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "37245832-eba3-46cd-86b0-2c42e98aa6d9" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-x64", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "349a2425-1bfc-4f9a-8ba4-35d5dc01a242" }, { "affected_range": "[6.0.0,6.0.16],[7.0.0,7.0.5]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.18", "7.0.7" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", "package_slug": "nuget/Microsoft.NetCore.App.Runtime.win-x86", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.18, 7.0.7 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "cf50bd57-0888-4fcb-b1b7-011368d2a866" }, { "affected_range": "[6.0.0,6.0.4],[7.0.0,7.0.1]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.4, all versions starting from 7.0.0 up to 7.0.1", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.6", "7.0.3" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.4 before 7.0.0, all versions after 7.0.1", "package_slug": "nuget/Microsoft.Windows.Compatibility", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.6, 7.0.3 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "cfdc2e84-d6f7-4817-834f-eefcc064e4fd" }, { "affected_range": "[6.0.0,6.0.2],[7.0.0,7.0.1]", "affected_versions": "All versions starting from 6.0.0 up to 6.0.2, all versions starting from 7.0.0 up to 7.0.1", "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cwe_ids": [ "CWE-1035", "CWE-78", "CWE-937" ], "date": "2023-06-14", "description": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", "fixed_versions": [ "6.0.3", "7.0.2" ], "identifier": "CVE-2023-29331", "identifiers": [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331" ], "not_impacted": "All versions before 6.0.0, all versions after 6.0.2 before 7.0.0, all versions after 7.0.1", "package_slug": "nuget/System.Security.Cryptography.Pkcs", "pubdate": "2023-06-14", "solution": "Upgrade to versions 6.0.3, 7.0.2 or above.", "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)", "urls": [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm" ], "uuid": "9ed7a65b-c26c-43fd-b75e-2af118075399" } ] }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secure@microsoft.com", "ID": "CVE-2023-29331" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "refsource": "MISC", "tags": [ "Patch", "Vendor Advisory" ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331" } ] } }, "impact": { "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "exploitabilityScore": 3.9, "impactScore": 3.6 } }, "lastModifiedDate": "2023-06-22T20:10Z", "publishedDate": "2023-06-14T15:15Z" } } }
wid-sec-w-2023-1446
Vulnerability from csaf_certbund
Notes
{ "document": { "aggregate_severity": { "text": "hoch" }, "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "de-DE", "notes": [ { "category": "legal_disclaimer", "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen." }, { "category": "description", "text": "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausf\u00fchrung von Softwareanwendungen und Webdiensten erm\u00f6glicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. f\u00fcr die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform f\u00fcr kollaborative Softwareprojekte.\r\nNuGet ist ein Programm f\u00fcr die Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung f\u00fcr Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.", "title": "Produktbeschreibung" }, { "category": "summary", "text": "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren.", "title": "Angriff" }, { "category": "general", "text": "- Linux\n- MacOS X\n- Windows", "title": "Betroffene Betriebssysteme" } ], "publisher": { "category": "other", "contact_details": "csaf-provider@cert-bund.de", "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik", "namespace": "https://www.bsi.bund.de" }, "references": [ { "category": "self", "summary": "WID-SEC-W-2023-1446 - CSAF Version", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json" }, { "category": "self", "summary": "WID-SEC-2023-1446 - Portal Version", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446" }, { "category": "external", "summary": "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26", "url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03", "url": "https://access.redhat.com/errata/RHSA-2023:4449" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03", "url": "https://access.redhat.com/errata/RHSA-2023:4448" }, { "category": "external", "summary": "Ubuntu Security Notice USN-6161-2 vom 2023-06-23", "url": "https://ubuntu.com/security/notices/USN-6161-2" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17", "url": "https://linux.oracle.com/errata/ELSA-2023-3592.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17", "url": "https://linux.oracle.com/errata/ELSA-2023-3593.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16", "url": "https://linux.oracle.com/errata/ELSA-2023-3582.html" }, { "category": "external", "summary": "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15", "url": "http://linux.oracle.com/errata/ELSA-2023-3581.html" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3593" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3581" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3580" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3582" }, { "category": "external", "summary": "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14", "url": "https://access.redhat.com/errata/RHSA-2023:3592" }, { "category": "external", "summary": "Ubuntu Security Notice USN-6161-1 vom 2023-06-13", "url": "https://ubuntu.com/security/notices/USN-6161-1" }, { "category": "external", "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2023-06-13", "url": "https://msrc.microsoft.com/update-guide" } ], "source_lang": "en-US", "title": "Microsoft Developer Tools: Mehrere Schwachstellen", "tracking": { "current_release_date": "2023-09-25T22:00:00.000+00:00", "generator": { "date": "2024-02-15T17:31:01.244+00:00", "engine": { "name": "BSI-WID", "version": "1.3.0" } }, "id": "WID-SEC-W-2023-1446", "initial_release_date": "2023-06-13T22:00:00.000+00:00", "revision_history": [ { "date": "2023-06-13T22:00:00.000+00:00", "number": "1", "summary": "Initiale Fassung" }, { "date": "2023-06-14T22:00:00.000+00:00", "number": "2", "summary": "Neue Updates von Red Hat aufgenommen" }, { "date": "2023-06-15T22:00:00.000+00:00", "number": "3", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2023-06-18T22:00:00.000+00:00", "number": "4", "summary": "Neue Updates von Oracle Linux aufgenommen" }, { "date": "2023-06-25T22:00:00.000+00:00", "number": "5", "summary": "Neue Updates von Ubuntu aufgenommen" }, { "date": "2023-08-02T22:00:00.000+00:00", "number": "6", "summary": "Neue Updates von Red Hat aufgenommen" }, { "date": "2023-09-25T22:00:00.000+00:00", "number": "7", "summary": "Neue Updates von HITACHI aufgenommen" } ], "status": "final", "version": "7" } }, "product_tree": { "branches": [ { "branches": [ { "category": "product_name", "name": "Hitachi Storage Virtual Storage Platform", "product": { "name": "Hitachi Storage Virtual Storage Platform", "product_id": "T020487", "product_identification_helper": { "cpe": "cpe:/h:hitachi:storage:virtual_storage_platform" } } } ], "category": "vendor", "name": "Hitachi" }, { "branches": [ { "branches": [ { "category": "product_name", "name": "Microsoft .NET Framework 4.8.1", "product": { "name": "Microsoft .NET Framework 4.8.1", "product_id": "1273212", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.8.1" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 3.5.1", "product": { "name": "Microsoft .NET Framework 3.5.1", "product_id": "130815", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:3.5.1" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.6.2", "product": { "name": "Microsoft .NET Framework 4.6.2", "product_id": "336763", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.6.2" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.7", "product": { "name": "Microsoft .NET Framework 4.7", "product_id": "432554", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.7" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.7.1", "product": { "name": "Microsoft .NET Framework 4.7.1", "product_id": "432555", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.7.1" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.7.2", "product": { "name": "Microsoft .NET Framework 4.7.2", "product_id": "432556", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.7.2" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 4.8", "product": { "name": "Microsoft .NET Framework 4.8", "product_id": "432557", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:4.8" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 3.5", "product": { "name": "Microsoft .NET Framework 3.5", "product_id": "834793", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:3.5:-" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 2.0 SP2", "product": { "name": "Microsoft .NET Framework 2.0 SP2", "product_id": "T021515", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:2.0_sp2" } } }, { "category": "product_name", "name": "Microsoft .NET Framework 3.0 SP2", "product": { "name": "Microsoft .NET Framework 3.0 SP2", "product_id": "T024564", "product_identification_helper": { "cpe": "cpe:/a:microsoft:.net_framework:3.0_sp2" } } } ], "category": "product_name", "name": ".NET Framework" }, { "category": "product_name", "name": "Microsoft Azure DevOps Server 2020.1.2", "product": { "name": "Microsoft Azure DevOps Server 2020.1.2", "product_id": "1342801", "product_identification_helper": { "cpe": "cpe:/o:microsoft:azure_devops_server:2020.1.2:-" } } }, { "branches": [ { "category": "product_name", "name": "Microsoft NuGet 6.0.4", "product": { "name": "Microsoft NuGet 6.0.4", "product_id": "T028096", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.0.4" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.2.3", "product": { "name": "Microsoft NuGet 6.2.3", "product_id": "T028097", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.2.3" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.3.2", "product": { "name": "Microsoft NuGet 6.3.2", "product_id": "T028098", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.3.2" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.4.1", "product": { "name": "Microsoft NuGet 6.4.1", "product_id": "T028099", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.4.1" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.5.0", "product": { "name": "Microsoft NuGet 6.5.0", "product_id": "T028100", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.5.0" } } }, { "category": "product_name", "name": "Microsoft NuGet 6.6.0", "product": { "name": "Microsoft NuGet 6.6.0", "product_id": "T028101", "product_identification_helper": { "cpe": "cpe:/a:microsoft:nuget:6.6.0" } } } ], "category": "product_name", "name": "NuGet" }, { "category": "product_name", "name": "Microsoft Visual Studio 2013 Update 5", "product": { "name": "Microsoft Visual Studio 2013 Update 5", "product_id": "T014512", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2013:update_5" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2015 Update 3", "product": { "name": "Microsoft Visual Studio 2015 Update 3", "product_id": "T014511", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2015:update_3" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2017 version 15.9", "product": { "name": "Microsoft Visual Studio 2017 version 15.9", "product_id": "T015502", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2017:version_15.9" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2019 version 16.11", "product": { "name": "Microsoft Visual Studio 2019 version 16.11", "product_id": "T024563", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2019:version_16.11" } } }, { "branches": [ { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.0", "product": { "name": "Microsoft Visual Studio 2022 version 17.0", "product_id": "T026754", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.0" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.2", "product": { "name": "Microsoft Visual Studio 2022 version 17.2", "product_id": "T028102", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.2" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.4", "product": { "name": "Microsoft Visual Studio 2022 version 17.4", "product_id": "T028103", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.4" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.5", "product": { "name": "Microsoft Visual Studio 2022 version 17.5", "product_id": "T028104", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.5" } } }, { "category": "product_name", "name": "Microsoft Visual Studio 2022 version 17.6", "product": { "name": "Microsoft Visual Studio 2022 version 17.6", "product_id": "T028105", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.6" } } } ], "category": "product_name", "name": "Visual Studio 2022" }, { "category": "product_name", "name": "Microsoft Visual Studio Code", "product": { "name": "Microsoft Visual Studio Code", "product_id": "699261", "product_identification_helper": { "cpe": "cpe:/a:microsoft:visual_studio_code:-" } } } ], "category": "vendor", "name": "Microsoft" }, { "branches": [ { "category": "product_name", "name": "Oracle Linux", "product": { "name": "Oracle Linux", "product_id": "T004914", "product_identification_helper": { "cpe": "cpe:/o:oracle:linux:-" } } } ], "category": "vendor", "name": "Oracle" }, { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux", "product": { "name": "Red Hat Enterprise Linux", "product_id": "67646", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:-" } } } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "category": "product_name", "name": "Ubuntu Linux", "product": { "name": "Ubuntu Linux", "product_id": "T000126", "product_identification_helper": { "cpe": "cpe:/o:canonical:ubuntu_linux:-" } } } ], "category": "vendor", "name": "Ubuntu" } ] }, "vulnerabilities": [ { "cve": "CVE-2023-33144", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-33144" }, { "cve": "CVE-2023-33141", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-33141" }, { "cve": "CVE-2023-33139", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-33139" }, { "cve": "CVE-2023-33135", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-33135" }, { "cve": "CVE-2023-33128", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-33128" }, { "cve": "CVE-2023-33126", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-33126" }, { "cve": "CVE-2023-32032", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-32032" }, { "cve": "CVE-2023-32030", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-32030" }, { "cve": "CVE-2023-29353", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29353" }, { "cve": "CVE-2023-29337", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29337" }, { "cve": "CVE-2023-29331", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29331" }, { "cve": "CVE-2023-29326", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29326" }, { "cve": "CVE-2023-29012", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29012" }, { "cve": "CVE-2023-29011", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29011" }, { "cve": "CVE-2023-29007", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-29007" }, { "cve": "CVE-2023-27911", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-27911" }, { "cve": "CVE-2023-27910", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-27910" }, { "cve": "CVE-2023-27909", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-27909" }, { "cve": "CVE-2023-25815", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-25815" }, { "cve": "CVE-2023-25652", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-25652" }, { "cve": "CVE-2023-24936", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-24936" }, { "cve": "CVE-2023-24897", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-24897" }, { "cve": "CVE-2023-24895", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-24895" }, { "cve": "CVE-2023-21569", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-21569" }, { "cve": "CVE-2023-21565", "notes": [ { "category": "description", "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion." } ], "product_status": { "known_affected": [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754" ] }, "release_date": "2023-06-13T22:00:00Z", "title": "CVE-2023-21565" } ] }
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.