Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-0980 (GCVE-0-2019-0980)
Vulnerability from cvelistv5 – Published: 2019-05-16 18:24 – Updated: 2024-08-04 18:06
VLAI
EPSS
Summary
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Severity
No CVSS data available.
CWE
- Denial of Service
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://portal.msrc.microsoft.com/en-US/security-… | x_refsource_MISC |
| https://access.redhat.com/errata/RHSA-2019:1259 | vendor-advisoryx_refsource_REDHAT |
Impacted products
47 products
| Vendor | Product | Version | |
|---|---|---|---|
| Microsoft | Microsoft .NET Framework 4.5.2 |
Affected:
Windows 7 for 32-bit Systems Service Pack 1
Affected: Windows 7 for x64-based Systems Service Pack 1 Affected: Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Affected: Windows Server 2008 R2 for x64-based Systems Service Pack 1 Affected: Windows Server 2012 Affected: Windows Server 2012 (Server Core installation) Affected: Windows 8.1 for 32-bit systems Affected: Windows 8.1 for x64-based systems Affected: Windows Server 2012 R2 Affected: Windows RT 8.1 Affected: Windows Server 2012 R2 (Server Core installation) Affected: Windows Server 2008 for 32-bit Systems Service Pack 2 Affected: Windows Server 2008 for x64-based Systems Service Pack 2 |
|
| Microsoft | Microsoft .NET Framework 4.6 |
Affected:
Windows Server 2008 for 32-bit Systems Service Pack 2
Affected: Windows Server 2008 for x64-based Systems Service Pack 2 |
|
| Microsoft | Microsoft .NET Framework 4.6.2 on Windows 10 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.6.2 on Windows 10 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | .NET Core |
Affected:
1
Affected: 1.1 Affected: 2.1 Affected: 2.2 |
|
| Microsoft | Microsoft .NET Framework 4.7.2 |
Affected:
Windows 10 Version 1803 for 32-bit Systems
Affected: Windows 10 Version 1803 for x64-based Systems Affected: Windows Server, version 1803 (Server Core Installation) Affected: Windows 10 Version 1803 for ARM64-based Systems Affected: Windows 10 Version 1809 for 32-bit Systems Affected: Windows 10 Version 1809 for x64-based Systems Affected: Windows Server 2019 Affected: Windows Server 2019 (Server Core installation) |
|
| Microsoft | Microsoft .NET Framework 4.7.2 on Windows 10 Version 1809 for ARM64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 |
Affected:
Windows 7 for 32-bit Systems Service Pack 1
Affected: Windows 7 for x64-based Systems Service Pack 1 Affected: Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Affected: Windows Server 2008 R2 for x64-based Systems Service Pack 1 Affected: Windows Server 2012 Affected: Windows Server 2012 (Server Core installation) Affected: Windows 8.1 for 32-bit systems Affected: Windows 8.1 for x64-based systems Affected: Windows Server 2012 R2 Affected: Windows RT 8.1 Affected: Windows Server 2012 R2 (Server Core installation) |
|
| Microsoft | Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 |
Affected:
Windows Server 2016
Affected: Windows 10 Version 1607 for 32-bit Systems Affected: Windows 10 Version 1607 for x64-based Systems Affected: Windows Server 2016 (Server Core installation) |
|
| Microsoft | Microsoft .NET Framework 4.7/4.7.1/4.7.2 |
Affected:
Windows 10 Version 1703 for 32-bit Systems
Affected: Windows 10 Version 1703 for x64-based Systems |
|
| Microsoft | Microsoft .NET Framework 4.7.1/4.7.2 |
Affected:
Windows 10 Version 1709 for 32-bit Systems
Affected: Windows 10 Version 1709 for x64-based Systems Affected: Windows 10 Version 1709 for ARM64-based Systems |
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 R2 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows RT 8.1 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2016 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server, version 1803 (Server Core Installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2019 |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2019 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server, version 1903 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 3.5 |
Affected:
Windows Server 2012
Affected: Windows Server 2012 (Server Core installation) Affected: Windows 8.1 for 32-bit systems Affected: Windows 8.1 for x64-based systems Affected: Windows Server 2012 R2 Affected: Windows Server 2012 R2 (Server Core installation) Affected: Windows 10 for 32-bit Systems Affected: Windows 10 for x64-based Systems Affected: Windows Server 2016 Affected: Windows 10 Version 1607 for 32-bit Systems Affected: Windows 10 Version 1607 for x64-based Systems Affected: Windows Server 2016 (Server Core installation) Affected: Windows 10 Version 1703 for 32-bit Systems Affected: Windows 10 Version 1703 for x64-based Systems Affected: Windows 10 Version 1709 for 32-bit Systems Affected: Windows 10 Version 1709 for x64-based Systems Affected: Windows 10 Version 1803 for 32-bit Systems Affected: Windows 10 Version 1803 for x64-based Systems Affected: Windows Server, version 1803 (Server Core Installation) Affected: Windows 10 Version 1803 for ARM64-based Systems Affected: Windows 10 Version 1809 for 32-bit Systems Affected: Windows 10 Version 1809 for x64-based Systems Affected: Windows Server 2019 Affected: Windows Server 2019 (Server Core installation) Affected: Windows 10 Version 1709 for ARM64-based Systems |
|
| Microsoft | Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for 32-bit Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for x64-based Systems |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 3.5 on Windows Server, version 1903 (Server Core installation) |
Affected:
unspecified
|
|
| Microsoft | Microsoft .NET Framework 3.0 |
Affected:
Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2
Affected: Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Affected: Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 |
|
| Microsoft | Microsoft .NET Framework 2.0 |
Affected:
Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2
Affected: Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2 Affected: Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 |
|
| Microsoft | Microsoft .NET Framework 3.5.1 |
Affected:
Windows 7 for 32-bit Systems Service Pack 1
Affected: Windows 7 for x64-based Systems Service Pack 1 Affected: Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Affected: Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Affected: Windows Server 2008 R2 for x64-based Systems Service Pack 1 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T18:06:30.801Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"name": "RHSA-2019:1259",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Microsoft .NET Framework 4.5.2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2012"
},
{
"status": "affected",
"version": "Windows Server 2012 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows 8.1 for 32-bit systems"
},
{
"status": "affected",
"version": "Windows 8.1 for x64-based systems"
},
{
"status": "affected",
"version": "Windows Server 2012 R2"
},
{
"status": "affected",
"version": "Windows RT 8.1"
},
{
"status": "affected",
"version": "Windows Server 2012 R2 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"status": "affected",
"version": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
},
{
"product": "Microsoft .NET Framework 4.6",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"status": "affected",
"version": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
},
{
"product": "Microsoft .NET Framework 4.6.2 on Windows 10 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.6.2 on Windows 10 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": ".NET Core",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "1"
},
{
"status": "affected",
"version": "1.1"
},
{
"status": "affected",
"version": "2.1"
},
{
"status": "affected",
"version": "2.2"
}
]
},
{
"product": "Microsoft .NET Framework 4.7.2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server, version 1803 (Server Core Installation)"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2019"
},
{
"status": "affected",
"version": "Windows Server 2019 (Server Core installation)"
}
]
},
{
"product": "Microsoft .NET Framework 4.7.2 on Windows 10 Version 1809 for ARM64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2012"
},
{
"status": "affected",
"version": "Windows Server 2012 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows 8.1 for 32-bit systems"
},
{
"status": "affected",
"version": "Windows 8.1 for x64-based systems"
},
{
"status": "affected",
"version": "Windows Server 2012 R2"
},
{
"status": "affected",
"version": "Windows RT 8.1"
},
{
"status": "affected",
"version": "Windows Server 2012 R2 (Server Core installation)"
}
]
},
{
"product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows Server 2016"
},
{
"status": "affected",
"version": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1607 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2016 (Server Core installation)"
}
]
},
{
"product": "Microsoft .NET Framework 4.7/4.7.1/4.7.2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1703 for x64-based Systems"
}
]
},
{
"product": "Microsoft .NET Framework 4.7.1/4.7.2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2012",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows RT 8.1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2016",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server, version 1803 (Server Core Installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2019",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server 2019 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 4.8 on Windows Server, version 1903 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 3.5",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows Server 2012"
},
{
"status": "affected",
"version": "Windows Server 2012 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows 8.1 for 32-bit systems"
},
{
"status": "affected",
"version": "Windows 8.1 for x64-based systems"
},
{
"status": "affected",
"version": "Windows Server 2012 R2"
},
{
"status": "affected",
"version": "Windows Server 2012 R2 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows 10 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2016"
},
{
"status": "affected",
"version": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1607 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2016 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1703 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server, version 1803 (Server Core Installation)"
},
{
"status": "affected",
"version": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"status": "affected",
"version": "Windows 10 Version 1809 for x64-based Systems"
},
{
"status": "affected",
"version": "Windows Server 2019"
},
{
"status": "affected",
"version": "Windows Server 2019 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
},
{
"product": "Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for 32-bit Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for x64-based Systems",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 3.5 on Windows Server, version 1903 (Server Core installation)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft .NET Framework 3.0",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
},
{
"status": "affected",
"version": "Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"status": "affected",
"version": "Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
},
{
"product": "Microsoft .NET Framework 2.0",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
},
{
"status": "affected",
"version": "Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"status": "affected",
"version": "Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
},
{
"product": "Microsoft .NET Framework 3.5.1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1"
},
{
"status": "affected",
"version": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial of Service",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-22T12:06:04.000Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"name": "RHSA-2019:1259",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2019-0980",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Microsoft .NET Framework 4.5.2",
"version": {
"version_data": [
{
"version_value": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"version_value": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2012"
},
{
"version_value": "Windows Server 2012 (Server Core installation)"
},
{
"version_value": "Windows 8.1 for 32-bit systems"
},
{
"version_value": "Windows 8.1 for x64-based systems"
},
{
"version_value": "Windows Server 2012 R2"
},
{
"version_value": "Windows RT 8.1"
},
{
"version_value": "Windows Server 2012 R2 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6",
"version": {
"version_data": [
{
"version_value": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6.2 on Windows 10 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6.2 on Windows 10 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": ".NET Core",
"version": {
"version_data": [
{
"version_value": "1"
},
{
"version_value": "1.1"
},
{
"version_value": "2.1"
},
{
"version_value": "2.2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1803 for x64-based Systems"
},
{
"version_value": "Windows Server, version 1803 (Server Core Installation)"
},
{
"version_value": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"version_value": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1809 for x64-based Systems"
},
{
"version_value": "Windows Server 2019"
},
{
"version_value": "Windows Server 2019 (Server Core installation)"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7.2 on Windows 10 Version 1809 for ARM64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"version_value": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2012"
},
{
"version_value": "Windows Server 2012 (Server Core installation)"
},
{
"version_value": "Windows 8.1 for 32-bit systems"
},
{
"version_value": "Windows 8.1 for x64-based systems"
},
{
"version_value": "Windows Server 2012 R2"
},
{
"version_value": "Windows RT 8.1"
},
{
"version_value": "Windows Server 2012 R2 (Server Core installation)"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows Server 2016"
},
{
"version_value": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1607 for x64-based Systems"
},
{
"version_value": "Windows Server 2016 (Server Core installation)"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1703 for x64-based Systems"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1709 for x64-based Systems"
},
{
"version_value": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows RT 8.1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2016",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server, version 1803 (Server Core Installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2019",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2019 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server, version 1903 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5",
"version": {
"version_data": [
{
"version_value": "Windows Server 2012"
},
{
"version_value": "Windows Server 2012 (Server Core installation)"
},
{
"version_value": "Windows 8.1 for 32-bit systems"
},
{
"version_value": "Windows 8.1 for x64-based systems"
},
{
"version_value": "Windows Server 2012 R2"
},
{
"version_value": "Windows Server 2012 R2 (Server Core installation)"
},
{
"version_value": "Windows 10 for 32-bit Systems"
},
{
"version_value": "Windows 10 for x64-based Systems"
},
{
"version_value": "Windows Server 2016"
},
{
"version_value": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1607 for x64-based Systems"
},
{
"version_value": "Windows Server 2016 (Server Core installation)"
},
{
"version_value": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1703 for x64-based Systems"
},
{
"version_value": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1709 for x64-based Systems"
},
{
"version_value": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1803 for x64-based Systems"
},
{
"version_value": "Windows Server, version 1803 (Server Core Installation)"
},
{
"version_value": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"version_value": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1809 for x64-based Systems"
},
{
"version_value": "Windows Server 2019"
},
{
"version_value": "Windows Server 2019 (Server Core installation)"
},
{
"version_value": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 on Windows Server, version 1903 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.0",
"version": {
"version_data": [
{
"version_value": "Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 2.0",
"version": {
"version_data": [
{
"version_value": "Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5.1",
"version": {
"version_data": [
{
"version_value": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"version_value": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
}
]
}
}
]
},
"vendor_name": "Microsoft"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial of Service"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"refsource": "MISC",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"name": "RHSA-2019:1259",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2019-0980",
"datePublished": "2019-05-16T18:24:57.000Z",
"dateReserved": "2018-11-26T00:00:00.000Z",
"dateUpdated": "2024-08-04T18:06:30.801Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-0980",
"date": "2026-05-27",
"epss": "0.0573",
"percentile": "0.90543"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_core:1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EDF760A-C775-457E-8091-586E56545B07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_core:1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F87DCF0-0552-4815-8148-C9894397C5EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_core:2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3BF7E3F6-D3AE-404D-8F0E-0C57BF23006C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_core:2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5AB75F9-B0FC-46B5-A863-0458696773DB\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"42A6DF09-B8E1-414D-97E7-453566055279\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21540673-614A-4D40-8BD7-3F07723803B0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEE2E768-0F45-46E1-B6D7-087917109D98\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"83B14968-3985-43C3-ACE5-8307196EFAE3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7CB85C75-4D35-480E-843D-60579EC75FCB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3FB5CDAE-C713-4D9D-9D6A-2C2E8924A4BB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CAACE735-003E-4ACB-A82E-C0CF97D7F013\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B921FDB-8E7D-427E-82BE-4432585080CF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*\", \"matchCriteriaId\": \"B320A104-9037-487E-BC9A-62B4A6B49FD0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40B3A045-B08A-44E0-91BE-726753F6A362\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6CE5198-C498-4672-AF4C-77AB4BE06C5C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"280FE663-23BE-45D2-9B31-5F577E390B48\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21540673-614A-4D40-8BD7-3F07723803B0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"280FE663-23BE-45D2-9B31-5F577E390B48\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FF0B660D-1F30-4D45-B98B-726EDB8CB90F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6CE5198-C498-4672-AF4C-77AB4BE06C5C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"83B14968-3985-43C3-ACE5-8307196EFAE3\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7CB85C75-4D35-480E-843D-60579EC75FCB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEE2E768-0F45-46E1-B6D7-087917109D98\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEE2E768-0F45-46E1-B6D7-087917109D98\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"83B14968-3985-43C3-ACE5-8307196EFAE3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7CB85C75-4D35-480E-843D-60579EC75FCB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3FB5CDAE-C713-4D9D-9D6A-2C2E8924A4BB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6CE5198-C498-4672-AF4C-77AB4BE06C5C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CAACE735-003E-4ACB-A82E-C0CF97D7F013\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B921FDB-8E7D-427E-82BE-4432585080CF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.\"}, {\"lang\": \"es\", \"value\": \"Existe una vulnerabilidad de Denegaci\\u00f3n de Servicio (DoS) cuando .NET Framework o .NET Core manejan inapropiadamente las solicitudes web, tambi\\u00e9n conocidas como \u0027.Net Framework y .Net Core Denial of Service Vulnerability\u0027. Este ID de CVE es diferente de CVE-2019-0820, CVE-2019-0981.\"}]",
"id": "CVE-2019-0980",
"lastModified": "2024-11-21T04:17:36.607",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2019-05-16T19:29:04.957",
"references": "[{\"url\": \"https://access.redhat.com/errata/RHSA-2019:1259\", \"source\": \"secure@microsoft.com\"}, {\"url\": \"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2019:1259\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-19\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-0980\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2019-05-16T19:29:04.957\",\"lastModified\":\"2024-11-21T04:17:36.607\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.\"},{\"lang\":\"es\",\"value\":\"Existe una vulnerabilidad de Denegaci\u00f3n de Servicio (DoS) cuando .NET Framework o .NET Core manejan inapropiadamente las solicitudes web, tambi\u00e9n conocidas como \u0027.Net Framework y .Net Core Denial of Service Vulnerability\u0027. Este ID de CVE es diferente de CVE-2019-0820, CVE-2019-0981.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-19\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_core:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EDF760A-C775-457E-8091-586E56545B07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_core:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F87DCF0-0552-4815-8148-C9894397C5EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_core:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BF7E3F6-D3AE-404D-8F0E-0C57BF23006C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_core:2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5AB75F9-B0FC-46B5-A863-0458696773DB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"42A6DF09-B8E1-414D-97E7-453566055279\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21540673-614A-4D40-8BD7-3F07723803B0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEE2E768-0F45-46E1-B6D7-087917109D98\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83B14968-3985-43C3-ACE5-8307196EFAE3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CB85C75-4D35-480E-843D-60579EC75FCB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FB5CDAE-C713-4D9D-9D6A-2C2E8924A4BB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAACE735-003E-4ACB-A82E-C0CF97D7F013\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B921FDB-8E7D-427E-82BE-4432585080CF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*\",\"matchCriteriaId\":\"B320A104-9037-487E-BC9A-62B4A6B49FD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40B3A045-B08A-44E0-91BE-726753F6A362\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6CE5198-C498-4672-AF4C-77AB4BE06C5C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F422A8C-2C4E-42C8-B420-E0728037E15C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"280FE663-23BE-45D2-9B31-5F577E390B48\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21540673-614A-4D40-8BD7-3F07723803B0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"280FE663-23BE-45D2-9B31-5F577E390B48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF0B660D-1F30-4D45-B98B-726EDB8CB90F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6CE5198-C498-4672-AF4C-77AB4BE06C5C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83B14968-3985-43C3-ACE5-8307196EFAE3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CB85C75-4D35-480E-843D-60579EC75FCB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEE2E768-0F45-46E1-B6D7-087917109D98\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEE2E768-0F45-46E1-B6D7-087917109D98\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83B14968-3985-43C3-ACE5-8307196EFAE3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CB85C75-4D35-480E-843D-60579EC75FCB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B8F3DD2-A145-4AF1-8545-CC42892DA3D1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FB5CDAE-C713-4D9D-9D6A-2C2E8924A4BB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2B1C231-DE19-4B8F-A4AA-5B3A65276E46\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E93068DB-549B-45AB-8E5C-00EB5D8B5CF8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6CE5198-C498-4672-AF4C-77AB4BE06C5C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAACE735-003E-4ACB-A82E-C0CF97D7F013\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B921FDB-8E7D-427E-82BE-4432585080CF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2019:1259\",\"source\":\"secure@microsoft.com\"},{\"url\":\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:1259\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2019-AVI-224
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft .Net. Elles permettent à un attaquant de provoquer un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | N/A | .NET Core 1.0 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.7.1/4.7.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.8 | ||
| Microsoft | N/A | Microsoft .NET Framework 3.0 Service Pack 2 | ||
| Microsoft | N/A | Microsoft .NET Framework 3.5 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 2.0 Service Pack 2 | ||
| Microsoft | .Net | ASP.NET Core 2.2 | ||
| Microsoft | N/A | .NET Core 1.1 | ||
| Microsoft | N/A | Microsoft .NET Framework 3.5.1 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.5.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.7.2 | ||
| Microsoft | N/A | .NET Core 2.1 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.7/4.7.1/4.7.2 | ||
| Microsoft | .Net | ASP.NET Core 2.1 | ||
| Microsoft | N/A | .NET Core 2.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": ".NET Core 1.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 3.0 Service Pack 2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 3.5",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 2.0 Service Pack 2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "ASP.NET Core 2.2",
"product": {
"name": ".Net",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": ".NET Core 1.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 3.5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": ".NET Core 2.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.7/4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "ASP.NET Core 2.1",
"product": {
"name": ".Net",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": ".NET Core 2.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-0864",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0864"
},
{
"name": "CVE-2019-0820",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0820"
},
{
"name": "CVE-2019-0980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0980"
},
{
"name": "CVE-2019-0982",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0982"
},
{
"name": "CVE-2019-0981",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0981"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-224",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-05-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft .Net\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un d\u00e9ni de service.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft .Net",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 14 mai 2019",
"url": "https://portal.msrc.microsoft.com/fr-FR/security-guidance"
}
]
}
CERTFR-2019-AVI-224
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft .Net. Elles permettent à un attaquant de provoquer un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | N/A | .NET Core 1.0 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.7.1/4.7.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.8 | ||
| Microsoft | N/A | Microsoft .NET Framework 3.0 Service Pack 2 | ||
| Microsoft | N/A | Microsoft .NET Framework 3.5 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 2.0 Service Pack 2 | ||
| Microsoft | .Net | ASP.NET Core 2.2 | ||
| Microsoft | N/A | .NET Core 1.1 | ||
| Microsoft | N/A | Microsoft .NET Framework 3.5.1 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.5.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.7.2 | ||
| Microsoft | N/A | .NET Core 2.1 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.7/4.7.1/4.7.2 | ||
| Microsoft | .Net | ASP.NET Core 2.1 | ||
| Microsoft | N/A | .NET Core 2.2 | ||
| Microsoft | N/A | Microsoft .NET Framework 4.6 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": ".NET Core 1.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 3.0 Service Pack 2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 3.5",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 2.0 Service Pack 2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "ASP.NET Core 2.2",
"product": {
"name": ".Net",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": ".NET Core 1.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 3.5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": ".NET Core 2.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.7/4.7.1/4.7.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "ASP.NET Core 2.1",
"product": {
"name": ".Net",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": ".NET Core 2.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft .NET Framework 4.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-0864",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0864"
},
{
"name": "CVE-2019-0820",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0820"
},
{
"name": "CVE-2019-0980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0980"
},
{
"name": "CVE-2019-0982",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0982"
},
{
"name": "CVE-2019-0981",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0981"
}
],
"links": [],
"reference": "CERTFR-2019-AVI-224",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-05-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft .Net\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un d\u00e9ni de service.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft .Net",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 14 mai 2019",
"url": "https://portal.msrc.microsoft.com/fr-FR/security-guidance"
}
]
}
BDU:2019-02030
Vulnerability from fstec - Published: 14.05.2019
VLAI
Title
Уязвимость программных платформ .NET Core, Microsoft .NET Framework и расширяемого средства автоматизации PowerShell Core, связанная с ошибками обработки запросов, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость программных платформ .NET Core, Microsoft .NET Framework и расширяемого средства автоматизации PowerShell Core связана с ошибками обработки запросов. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, вызвать отказ в обслуживании в результате отправки специально созданных запросов
Severity
Vendor
Microsoft Corp
Software Name
Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.6.1, Microsoft .NET Framework 4.7, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.7.2, .NET Core, Microsoft .NET Framework 4.8, PowerShell Core, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2
Software Version
- (Microsoft .NET Framework 3.5), - (Microsoft .NET Framework 3.5.1), - (Microsoft .NET Framework 4.5.2), - (Microsoft .NET Framework 4.6), - (Microsoft .NET Framework 4.6.1), - (Microsoft .NET Framework 4.7), - (Microsoft .NET Framework 4.6.2), - (Microsoft .NET Framework 4.7.1), - (Microsoft .NET Framework 4.7.2), 2.1 (.NET Core), 1.0 (.NET Core), 1.1 (.NET Core), 2.2 (.NET Core), - (Microsoft .NET Framework 4.8), 6.1 (PowerShell Core), 6.2 (PowerShell Core), - (Microsoft .NET Framework 2.0 Service Pack 2), - (Microsoft .NET Framework 3.0 Service Pack 2)
Possible Mitigations
Использование рекомендаций:
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980
Reference
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980
https://nvd.nist.gov/vuln/detail/CVE-2019-0980
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Microsoft .NET Framework 3.5), - (Microsoft .NET Framework 3.5.1), - (Microsoft .NET Framework 4.5.2), - (Microsoft .NET Framework 4.6), - (Microsoft .NET Framework 4.6.1), - (Microsoft .NET Framework 4.7), - (Microsoft .NET Framework 4.6.2), - (Microsoft .NET Framework 4.7.1), - (Microsoft .NET Framework 4.7.2), 2.1 (.NET Core), 1.0 (.NET Core), 1.1 (.NET Core), 2.2 (.NET Core), - (Microsoft .NET Framework 4.8), 6.1 (PowerShell Core), 6.2 (PowerShell Core), - (Microsoft .NET Framework 2.0 Service Pack 2), - (Microsoft .NET Framework 3.0 Service Pack 2)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "14.05.2019",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "14.06.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-02030",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2019-0980",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.6.1, Microsoft .NET Framework 4.7, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.7.2, .NET Core, Microsoft .NET Framework 4.8, PowerShell Core, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Microsoft Corp Windows 7 Service Pack 1 - 64-bit, Microsoft Corp Windows Server 2008 Service Pack 2 - 32-bit, Microsoft Corp Windows 7 Service Pack 1 - 32-bit, Microsoft Corp Windows 8.1 - 64-bit, Microsoft Corp Windows 8.1 - 32-bit, Microsoft Corp Windows Server 2008 Service Pack 2 - 64-bit, Microsoft Corp Windows Server 2012 - , Microsoft Corp Windows Server 2012 R2 - , Microsoft Corp Windows Server 2008 R2 Service Pack 1 - 64-bit, Microsoft Corp Windows RT 8.1 - ARM, Microsoft Corp Windows 10 - 64-bit, Microsoft Corp Windows 10 - 32-bit, Microsoft Corp Windows 10 1607 - 64-bit, Microsoft Corp Windows 10 1607 - 32-bit, Microsoft Corp Windows Server 2008 R2 Service Pack 1 - , Microsoft Corp Windows 10 1703 - 32-bit, Microsoft Corp Windows Server 2016 - , Microsoft Corp Windows 10 1703 - 64-bit, Microsoft Corp Windows Server 2012 R2 (Server Core installation) - , Microsoft Corp Windows Server 2016 (Server Core installation) - , Microsoft Corp Windows Server 2008 R2 Service Pack 1 (Server Core installation) - 64-bit, Microsoft Corp Windows Server 2008 Service Pack 2 - Itanium, Microsoft Corp Windows 10 1709 - 64-bit, Microsoft Corp Windows 10 1709 - 32-bit, Microsoft Corp Windows 10 1803 - 64-bit, Microsoft Corp Windows 10 1803 - 32-bit, Microsoft Corp Windows Server 1803 (Server Core Installation) - , Microsoft Corp Windows 10 1809 - 64-bit, Microsoft Corp Windows 10 1809 - 32-bit, Microsoft Corp Windows Server 2019 - , Microsoft Corp Windows Server 2019 (Server Core installation) - , Microsoft Corp Windows 10 1809 - ARM64, Microsoft Corp Windows 10 1709 - ARM64, Microsoft Corp Windows 10 1803 - ARM64, Microsoft Corp Windows 10 1903 - 32-bit, Microsoft Corp Windows 10 1903 - 64-bit, Microsoft Corp Windows Server 1903 (Server Core Installation) - ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c .NET Core, Microsoft .NET Framework \u0438 \u0440\u0430\u0441\u0448\u0438\u0440\u044f\u0435\u043c\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438 PowerShell Core, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c .NET Core, Microsoft .NET Framework \u0438 \u0440\u0430\u0441\u0448\u0438\u0440\u044f\u0435\u043c\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438 PowerShell Core \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0445 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-0980",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}
CNVD-2019-14683
Vulnerability from cnvd - Published: 2019-05-17
VLAI
Title
Microsoft .NET Framework和.NET Core拒绝服务漏洞(CNVD-2019-14683)
Description
Microsoft .NET Framework和.NET Core都是美国微软(Microsoft)公司的产品。Microsoft .NET Framework是一种全面且一致的编程模型,也是一个用于构建Windows、Windows Store、Windows Phone、Windows Server和Microsoft Azure的应用程序的开发平台。.NET Core是一套免费的开源开发平台。该平台具有多语言支持和跨平台等特点。
Microsoft .NET Framework和.NET Core中存在拒绝服务漏洞,该漏洞源于程序未能正确处理Web请求。远程攻击者可通过发送特制的请求利用该漏洞造成拒绝服务。
Severity
中
Patch Name
Microsoft .NET Framework和.NET Core拒绝服务漏洞(CNVD-2019-14683)的补丁
Patch Description
Microsoft .NET Framework和.NET Core都是美国微软(Microsoft)公司的产品。Microsoft .NET Framework是一种全面且一致的编程模型,也是一个用于构建Windows、Windows Store、Windows Phone、Windows Server和Microsoft Azure的应用程序的开发平台。.NET Core是一套免费的开源开发平台。该平台具有多语言支持和跨平台等特点。
Microsoft .NET Framework和.NET Core中存在拒绝服务漏洞,该漏洞源于程序未能正确处理Web请求。远程攻击者可通过发送特制的请求利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-0980
Reference
https://web.nvd.nist.gov//vuln/detail/CVE-2019-0980
Impacted products
| Name | ['Microsoft .NET Framework 3.0 SP2', 'Microsoft .NET Framework 2.0 SP2', 'Microsoft .NET Framework 3.5.1', 'Microsoft .Net Framework 3.5', 'Microsoft .NET Framework 4.6', 'Microsoft .NET Framework 4.6.2', 'Microsoft .NET Framework 4.7', 'Microsoft .NET Core 1.0', 'Microsoft .NET Core 1.1', 'Microsoft .NET Framework 4.7.1', 'Microsoft .NET Framework 4.7.2', 'Microsoft .NET Framework 4.5.2', 'Microsoft .NET Framework 4.6.1', 'Microsoft .NET Core 2.1', 'Microsoft .NET Core 2.2'] |
|---|
{
"bids": {
"bid": {
"bidNumber": "108232"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2019-0980",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0980"
}
},
"description": "Microsoft .NET Framework\u548c.NET Core\u90fd\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Microsoft .NET Framework\u662f\u4e00\u79cd\u5168\u9762\u4e14\u4e00\u81f4\u7684\u7f16\u7a0b\u6a21\u578b\uff0c\u4e5f\u662f\u4e00\u4e2a\u7528\u4e8e\u6784\u5efaWindows\u3001Windows Store\u3001Windows Phone\u3001Windows Server\u548cMicrosoft Azure\u7684\u5e94\u7528\u7a0b\u5e8f\u7684\u5f00\u53d1\u5e73\u53f0\u3002.NET Core\u662f\u4e00\u5957\u514d\u8d39\u7684\u5f00\u6e90\u5f00\u53d1\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u5177\u6709\u591a\u8bed\u8a00\u652f\u6301\u548c\u8de8\u5e73\u53f0\u7b49\u7279\u70b9\u3002 \n\nMicrosoft .NET Framework\u548c.NET Core\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406Web\u8bf7\u6c42\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "Nemanja Mijailovic",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-0980",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2019-14683",
"openTime": "2019-05-17",
"patchDescription": "Microsoft .NET Framework\u548c.NET Core\u90fd\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Microsoft .NET Framework\u662f\u4e00\u79cd\u5168\u9762\u4e14\u4e00\u81f4\u7684\u7f16\u7a0b\u6a21\u578b\uff0c\u4e5f\u662f\u4e00\u4e2a\u7528\u4e8e\u6784\u5efaWindows\u3001Windows Store\u3001Windows Phone\u3001Windows Server\u548cMicrosoft Azure\u7684\u5e94\u7528\u7a0b\u5e8f\u7684\u5f00\u53d1\u5e73\u53f0\u3002.NET Core\u662f\u4e00\u5957\u514d\u8d39\u7684\u5f00\u6e90\u5f00\u53d1\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u5177\u6709\u591a\u8bed\u8a00\u652f\u6301\u548c\u8de8\u5e73\u53f0\u7b49\u7279\u70b9\u3002 \r\n\r\nMicrosoft .NET Framework\u548c.NET Core\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406Web\u8bf7\u6c42\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Microsoft .NET Framework\u548c.NET Core\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2019-14683\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"Microsoft .NET Framework 3.0 SP2",
"Microsoft .NET Framework 2.0 SP2",
"Microsoft .NET Framework 3.5.1",
"Microsoft .Net Framework 3.5",
"Microsoft .NET Framework 4.6",
"Microsoft .NET Framework 4.6.2",
"Microsoft .NET Framework 4.7",
"Microsoft .NET Core 1.0",
"Microsoft .NET Core 1.1",
"Microsoft .NET Framework 4.7.1",
"Microsoft .NET Framework 4.7.2",
"Microsoft .NET Framework 4.5.2",
"Microsoft .NET Framework 4.6.1",
"Microsoft .NET Core 2.1",
"Microsoft .NET Core 2.2"
]
},
"referenceLink": "https://web.nvd.nist.gov//vuln/detail/CVE-2019-0980",
"serverity": "\u4e2d",
"submitTime": "2019-05-16",
"title": "Microsoft .NET Framework\u548c.NET Core\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2019-14683\uff09"
}
FKIE_CVE-2019-0980
Vulnerability from fkie_nvd - Published: 2019-05-16 19:29 - Updated: 2024-11-21 04:17
Severity
Summary
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_core:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9EDF760A-C775-457E-8091-586E56545B07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_core:1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2F87DCF0-0552-4815-8148-C9894397C5EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_core:2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3BF7E3F6-D3AE-404D-8F0E-0C57BF23006C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_core:2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A5AB75F9-B0FC-46B5-A863-0458696773DB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*",
"matchCriteriaId": "42A6DF09-B8E1-414D-97E7-453566055279",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*",
"matchCriteriaId": "D400E856-2B2E-4CEA-8CA5-309FDF371CEA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
"matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*",
"matchCriteriaId": "21540673-614A-4D40-8BD7-3F07723803B0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*",
"matchCriteriaId": "E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*",
"matchCriteriaId": "AEE2E768-0F45-46E1-B6D7-087917109D98",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*",
"matchCriteriaId": "83B14968-3985-43C3-ACE5-8307196EFAE3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*",
"matchCriteriaId": "7CB85C75-4D35-480E-843D-60579EC75FCB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*",
"matchCriteriaId": "6B8F3DD2-A145-4AF1-8545-CC42892DA3D1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*",
"matchCriteriaId": "3FB5CDAE-C713-4D9D-9D6A-2C2E8924A4BB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E93068DB-549B-45AB-8E5C-00EB5D8B5CF8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*",
"matchCriteriaId": "CAACE735-003E-4ACB-A82E-C0CF97D7F013",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*",
"matchCriteriaId": "5B921FDB-8E7D-427E-82BE-4432585080CF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EDC4407-7E92-4E60-82F0-0C87D1860D3A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*",
"matchCriteriaId": "B320A104-9037-487E-BC9A-62B4A6B49FD0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "40B3A045-B08A-44E0-91BE-726753F6A362",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E93068DB-549B-45AB-8E5C-00EB5D8B5CF8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C6CE5198-C498-4672-AF4C-77AB4BE06C5C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
"matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "280FE663-23BE-45D2-9B31-5F577E390B48",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
"matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*",
"matchCriteriaId": "21540673-614A-4D40-8BD7-3F07723803B0",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "734112B3-1383-4BE3-8721-C0F84566B764",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "36B0E40A-84EF-4099-A395-75D6B8CDA196",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*",
"matchCriteriaId": "E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "280FE663-23BE-45D2-9B31-5F577E390B48",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FF0B660D-1F30-4D45-B98B-726EDB8CB90F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "734112B3-1383-4BE3-8721-C0F84566B764",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "36B0E40A-84EF-4099-A395-75D6B8CDA196",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E93068DB-549B-45AB-8E5C-00EB5D8B5CF8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C6CE5198-C498-4672-AF4C-77AB4BE06C5C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "36B0E40A-84EF-4099-A395-75D6B8CDA196",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*",
"matchCriteriaId": "83B14968-3985-43C3-ACE5-8307196EFAE3",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*",
"matchCriteriaId": "7CB85C75-4D35-480E-843D-60579EC75FCB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*",
"matchCriteriaId": "6B8F3DD2-A145-4AF1-8545-CC42892DA3D1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "734112B3-1383-4BE3-8721-C0F84566B764",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "36B0E40A-84EF-4099-A395-75D6B8CDA196",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*",
"matchCriteriaId": "AEE2E768-0F45-46E1-B6D7-087917109D98",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "2D3F18AF-84ED-473B-A8DF-65EB23C475AF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*",
"matchCriteriaId": "E01A4CCA-4C43-46E0-90E6-3E4DBFBACD64",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*",
"matchCriteriaId": "AEE2E768-0F45-46E1-B6D7-087917109D98",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*",
"matchCriteriaId": "83B14968-3985-43C3-ACE5-8307196EFAE3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*",
"matchCriteriaId": "7CB85C75-4D35-480E-843D-60579EC75FCB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*",
"matchCriteriaId": "6B8F3DD2-A145-4AF1-8545-CC42892DA3D1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*",
"matchCriteriaId": "3FB5CDAE-C713-4D9D-9D6A-2C2E8924A4BB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E93068DB-549B-45AB-8E5C-00EB5D8B5CF8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C6CE5198-C498-4672-AF4C-77AB4BE06C5C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*",
"matchCriteriaId": "CAACE735-003E-4ACB-A82E-C0CF97D7F013",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*",
"matchCriteriaId": "5B921FDB-8E7D-427E-82BE-4432585080CF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981."
},
{
"lang": "es",
"value": "Existe una vulnerabilidad de Denegaci\u00f3n de Servicio (DoS) cuando .NET Framework o .NET Core manejan inapropiadamente las solicitudes web, tambi\u00e9n conocidas como \u0027.Net Framework y .Net Core Denial of Service Vulnerability\u0027. Este ID de CVE es diferente de CVE-2019-0820, CVE-2019-0981."
}
],
"id": "CVE-2019-0980",
"lastModified": "2024-11-21T04:17:36.607",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-05-16T19:29:04.957",
"references": [
{
"source": "secure@microsoft.com",
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
},
{
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-19"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-XHFC-GR8F-FFWC
Vulnerability from github – Published: 2022-05-24 16:45 – Updated: 2022-07-07 23:26
VLAI
Summary
Denial of service in ASP.NET Core
Details
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Severity
7.5 (High)
{
"affected": [
{
"package": {
"ecosystem": "NuGet",
"name": "System.Private.Uri"
},
"ranges": [
{
"events": [
{
"introduced": "4.3.0"
},
{
"fixed": "4.3.2"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2019-0980"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": true,
"github_reviewed_at": "2022-07-07T23:26:16Z",
"nvd_published_at": "2019-05-16T19:29:00Z",
"severity": "HIGH"
},
"details": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"id": "GHSA-xhfc-gr8f-ffwc",
"modified": "2022-07-07T23:26:16Z",
"published": "2022-05-24T16:45:53Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980"
},
{
"type": "WEB",
"url": "https://github.com/dotnet/announcements/issues/112"
},
{
"type": "WEB",
"url": "https://github.com/github/advisory-database/issues/302"
},
{
"type": "WEB",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
],
"summary": "Denial of service in ASP.NET Core"
}
GSD-2019-0980
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-0980",
"description": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"id": "GSD-2019-0980",
"references": [
"https://access.redhat.com/errata/RHSA-2019:1259",
"https://access.redhat.com/errata/RHSA-2019:1236",
"https://linux.oracle.com/cve/CVE-2019-0980.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-0980"
],
"details": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"id": "GSD-2019-0980",
"modified": "2023-12-13T01:23:39.266603Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2019-0980",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Microsoft .NET Framework 4.5.2",
"version": {
"version_data": [
{
"version_value": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"version_value": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2012"
},
{
"version_value": "Windows Server 2012 (Server Core installation)"
},
{
"version_value": "Windows 8.1 for 32-bit systems"
},
{
"version_value": "Windows 8.1 for x64-based systems"
},
{
"version_value": "Windows Server 2012 R2"
},
{
"version_value": "Windows RT 8.1"
},
{
"version_value": "Windows Server 2012 R2 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6",
"version": {
"version_data": [
{
"version_value": "Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6.2 on Windows 10 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6.2 on Windows 10 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": ".NET Core",
"version": {
"version_data": [
{
"version_value": "1"
},
{
"version_value": "1.1"
},
{
"version_value": "2.1"
},
{
"version_value": "2.2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1803 for x64-based Systems"
},
{
"version_value": "Windows Server, version 1803 (Server Core Installation)"
},
{
"version_value": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"version_value": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1809 for x64-based Systems"
},
{
"version_value": "Windows Server 2019"
},
{
"version_value": "Windows Server 2019 (Server Core installation)"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7.2 on Windows 10 Version 1809 for ARM64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"version_value": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2012"
},
{
"version_value": "Windows Server 2012 (Server Core installation)"
},
{
"version_value": "Windows 8.1 for 32-bit systems"
},
{
"version_value": "Windows 8.1 for x64-based systems"
},
{
"version_value": "Windows Server 2012 R2"
},
{
"version_value": "Windows RT 8.1"
},
{
"version_value": "Windows Server 2012 R2 (Server Core installation)"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows Server 2016"
},
{
"version_value": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1607 for x64-based Systems"
},
{
"version_value": "Windows Server 2016 (Server Core installation)"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1703 for x64-based Systems"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_value": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1709 for x64-based Systems"
},
{
"version_value": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows RT 8.1",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2016",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server, version 1803 (Server Core Installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2019",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server 2019 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1903 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 4.8 on Windows Server, version 1903 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5",
"version": {
"version_data": [
{
"version_value": "Windows Server 2012"
},
{
"version_value": "Windows Server 2012 (Server Core installation)"
},
{
"version_value": "Windows 8.1 for 32-bit systems"
},
{
"version_value": "Windows 8.1 for x64-based systems"
},
{
"version_value": "Windows Server 2012 R2"
},
{
"version_value": "Windows Server 2012 R2 (Server Core installation)"
},
{
"version_value": "Windows 10 for 32-bit Systems"
},
{
"version_value": "Windows 10 for x64-based Systems"
},
{
"version_value": "Windows Server 2016"
},
{
"version_value": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1607 for x64-based Systems"
},
{
"version_value": "Windows Server 2016 (Server Core installation)"
},
{
"version_value": "Windows 10 Version 1703 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1703 for x64-based Systems"
},
{
"version_value": "Windows 10 Version 1709 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1709 for x64-based Systems"
},
{
"version_value": "Windows 10 Version 1803 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1803 for x64-based Systems"
},
{
"version_value": "Windows Server, version 1803 (Server Core Installation)"
},
{
"version_value": "Windows 10 Version 1803 for ARM64-based Systems"
},
{
"version_value": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"version_value": "Windows 10 Version 1809 for x64-based Systems"
},
{
"version_value": "Windows Server 2019"
},
{
"version_value": "Windows Server 2019 (Server Core installation)"
},
{
"version_value": "Windows 10 Version 1709 for ARM64-based Systems"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for 32-bit Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 on Windows 10 Version 1903 for x64-based Systems",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 on Windows Server, version 1903 (Server Core installation)",
"version": {
"version_data": [
{
"version_value": ""
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.0",
"version": {
"version_data": [
{
"version_value": "Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 2.0",
"version": {
"version_data": [
{
"version_value": "Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
},
{
"version_value": "Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5.1",
"version": {
"version_data": [
{
"version_value": "Windows 7 for 32-bit Systems Service Pack 1"
},
{
"version_value": "Windows 7 for x64-based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
},
{
"version_value": "Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1"
},
{
"version_value": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
}
]
}
}
]
},
"vendor_name": "Microsoft"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial of Service"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"refsource": "MISC",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"name": "RHSA-2019:1259",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "[4.3.0,4.3.2)",
"affected_versions": "All versions starting from 4.3.0 before 4.3.2",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-19",
"CWE-937"
],
"date": "2022-07-07",
"description": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"fixed_versions": [
"4.3.2"
],
"identifier": "CVE-2019-0980",
"identifiers": [
"GHSA-xhfc-gr8f-ffwc",
"CVE-2019-0980"
],
"not_impacted": "All versions before 4.3.0, all versions starting from 4.3.2",
"package_slug": "nuget/System.Private.Uri",
"pubdate": "2022-05-24",
"solution": "Upgrade to version 4.3.2 or above.",
"title": "Denial of service in ASP.NET Core",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2019-0980",
"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"https://github.com/dotnet/announcements/issues/112",
"https://github.com/github/advisory-database/issues/302",
"https://github.com/advisories/GHSA-xhfc-gr8f-ffwc"
],
"uuid": "a6e01e23-0900-4888-8b32-365a32c7f432"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_core:2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_core:2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_core:1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_core:1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1903:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1803:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1903:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secure@microsoft.com",
"ID": "CVE-2019-0980"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-19"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"refsource": "MISC",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"name": "RHSA-2019:1259",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2019-05-22T13:29Z",
"publishedDate": "2019-05-16T19:29Z"
}
}
}
RHSA-2019:1236
Vulnerability from csaf_redhat - Published: 2019-05-15 21:55 - Updated: 2025-11-21 18:08Summary
Red Hat Security Advisory: .NET Core on Red Hat Enterprise Linux security and bug fix update
Severity
Moderate
Notes
Topic: Updates for rh-dotnetcore10-dotnetcore, rh-dotnetcore11-dotnetcore, rh-dotnet21-dotnet, rh-dotnet22-dotnet and rh-dotnet22-curl are now available for .NET Core on Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET Core that address security vulnerabilities are now available. The updated versions are .NET Core 1.0.16, 1.1.13, 2.1.11, and 2.2.5.
Security Fix(es):
* dotNET: timeouts for regular expressions are not enforced (CVE-2019-0820)
* dotNET: infinite loop in URI.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0980)
* dotNET: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0981)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Re-enable bash completion in rh-dotnet22-dotnet (BZ#1654863)
* Error rebuilding rh-dotnet22-curl in CentOS (BZ#1678932)
* Broken apphost caused by unset DOTNET_ROOT (BZ#1703479)
* Make bash completion compatible with rh-dotnet22 packages (BZ#1705259)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.
7.5 (High)
Affected products
Fixed
96 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
7.5 (High)
Affected products
Fixed
96 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.
7.5 (High)
Affected products
Fixed
96 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
32 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updates for rh-dotnetcore10-dotnetcore, rh-dotnetcore11-dotnetcore, rh-dotnet21-dotnet, rh-dotnet22-dotnet and rh-dotnet22-curl are now available for .NET Core on Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET Core that address security vulnerabilities are now available. The updated versions are .NET Core 1.0.16, 1.1.13, 2.1.11, and 2.2.5.\n\nSecurity Fix(es):\n\n* dotNET: timeouts for regular expressions are not enforced (CVE-2019-0820)\n\n* dotNET: infinite loop in URI.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0980)\n\n* dotNET: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0981)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* Re-enable bash completion in rh-dotnet22-dotnet (BZ#1654863)\n\n* Error rebuilding rh-dotnet22-curl in CentOS (BZ#1678932)\n\n* Broken apphost caused by unset DOTNET_ROOT (BZ#1703479)\n\n* Make bash completion compatible with rh-dotnet22 packages (BZ#1705259)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:1236",
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981"
},
{
"category": "external",
"summary": "1654863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1654863"
},
{
"category": "external",
"summary": "1678932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678932"
},
{
"category": "external",
"summary": "1703479",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1703479"
},
{
"category": "external",
"summary": "1703508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1703508"
},
{
"category": "external",
"summary": "1704454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1704454"
},
{
"category": "external",
"summary": "1704934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1704934"
},
{
"category": "external",
"summary": "1705147",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705147"
},
{
"category": "external",
"summary": "1705259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705259"
},
{
"category": "external",
"summary": "1705502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705502"
},
{
"category": "external",
"summary": "1705504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705504"
},
{
"category": "external",
"summary": "1705506",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705506"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1236.json"
}
],
"title": "Red Hat Security Advisory: .NET Core on Red Hat Enterprise Linux security and bug fix update",
"tracking": {
"current_release_date": "2025-11-21T18:08:30+00:00",
"generator": {
"date": "2025-11-21T18:08:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2019:1236",
"initial_release_date": "2019-05-15T21:55:11+00:00",
"revision_history": [
{
"date": "2019-05-15T21:55:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-05-15T21:55:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:08:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.2::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.2::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.2::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.1::el7"
}
}
}
],
"category": "product_family",
"name": ".NET Core on Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"product_id": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore10-dotnetcore@1.0.16-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"product_id": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore10-dotnetcore-debuginfo@1.0.16-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"product_id": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore11-dotnetcore-debuginfo@1.1.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"product_id": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore11-dotnetcore@1.1.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-0:2.2-7.el7.x86_64",
"product": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64",
"product_id": "rh-dotnet22-0:2.2-7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22@2.2-7.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"product": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"product_id": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-runtime@2.2-7.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-libcurl-devel@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-curl@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-libcurl@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-curl-debuginfo@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-debuginfo@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-host-fxr-2.2@2.2.5-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-sdk-2.2@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-host@2.2.5-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-runtime-2.2@2.2.5-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-sdk-2.2.1xx@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-0:2.1-10.el7.x86_64",
"product": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64",
"product_id": "rh-dotnet21-0:2.1-10.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21@2.1-10.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"product": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"product_id": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-runtime@2.1-10.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-runtime-2.1@2.1.11-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-sdk-2.1@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-sdk-2.1.5xx@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-debuginfo@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-host@2.1.11-2.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"product": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"product_id": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore10-dotnetcore@1.0.16-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"product": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"product_id": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore11-dotnetcore@1.1.13-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-0:2.2-7.el7.src",
"product": {
"name": "rh-dotnet22-0:2.2-7.el7.src",
"product_id": "rh-dotnet22-0:2.2-7.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22@2.2-7.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"product": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"product_id": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-curl@7.61.1-2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"product": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"product_id": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet@2.2.107-2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-0:2.1-10.el7.src",
"product": {
"name": "rh-dotnet21-0:2.1-10.el7.src",
"product_id": "rh-dotnet21-0:2.1-10.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21@2.1-10.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"product": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"product_id": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet@2.1.507-2.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"relates_to_product_reference": "7Server-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"relates_to_product_reference": "7Server-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-0820",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705506"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka \u0027.NET Framework and .NET Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: timeouts for regular expressions are not enforced",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0820"
},
{
"category": "external",
"summary": "RHBZ#1705506",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705506"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0820",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0820"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-15T21:55:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: timeouts for regular expressions are not enforced"
},
{
"cve": "CVE-2019-0980",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705502"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: infinite loop in Uri.TryCreate leading to ASP.Net Core Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0980"
},
{
"category": "external",
"summary": "RHBZ#1705502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0980"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980",
"url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-15T21:55:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: infinite loop in Uri.TryCreate leading to ASP.Net Core Denial of Service"
},
{
"cve": "CVE-2019-0981",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705504"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0981"
},
{
"category": "external",
"summary": "RHBZ#1705504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0981",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0981"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0981",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0981"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-15T21:55:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service"
}
]
}
RHSA-2019:1259
Vulnerability from csaf_redhat - Published: 2019-05-22 10:22 - Updated: 2025-11-21 18:08Summary
Red Hat Security Advisory: dotnet security, bug fix, and enhancement update
Severity
Important
Notes
Topic: An update for dotnet is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
A new version of .NET Core that address security vulnerabilities is now available. The updated version is .NET Core Runtime 2.1.11 and SDK 2.1.507.
Security Fix(es):
* dotnet: NuGet Tampering Vulnerability (CVE-2019-0757)
* dotnet: timeouts for regular expressions are not enforced (CVE-2019-0820)
* dotnet: infinite loop in URI.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0980)
* dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0981)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* dotnet: new SocketException((int)SocketError.InvalidArgument).Message is empty (BZ#1712471)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in dotnet. A tampering vulnerability exists in NuGet software when executed in a Linux or Mac environment. An attacker who successfully exploits the vulnerability could run arbitrary code in the context of the current user. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
7.8 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
35 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dotnet is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nA new version of .NET Core that address security vulnerabilities is now available. The updated version is .NET Core Runtime 2.1.11 and SDK 2.1.507.\n\nSecurity Fix(es):\n\n* dotnet: NuGet Tampering Vulnerability (CVE-2019-0757)\n\n* dotnet: timeouts for regular expressions are not enforced (CVE-2019-0820)\n\n* dotnet: infinite loop in URI.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0980)\n\n* dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0981)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* dotnet: new SocketException((int)SocketError.InvalidArgument).Message is empty (BZ#1712471)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:1259",
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981"
},
{
"category": "external",
"summary": "https://github.com/dotnet/core/blob/master/release-notes/2.1/2.1.11/2.1.11.md",
"url": "https://github.com/dotnet/core/blob/master/release-notes/2.1/2.1.11/2.1.11.md"
},
{
"category": "external",
"summary": "1685475",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1685475"
},
{
"category": "external",
"summary": "1696836",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1696836"
},
{
"category": "external",
"summary": "1705502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705502"
},
{
"category": "external",
"summary": "1705504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705504"
},
{
"category": "external",
"summary": "1705506",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705506"
},
{
"category": "external",
"summary": "1710068",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1710068"
},
{
"category": "external",
"summary": "1712471",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712471"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1259.json"
}
],
"title": "Red Hat Security Advisory: dotnet security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2025-11-21T18:08:32+00:00",
"generator": {
"date": "2025-11-21T18:08:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2019:1259",
"initial_release_date": "2019-05-22T10:22:43+00:00",
"revision_history": [
{
"date": "2019-05-22T10:22:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-05-22T10:22:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:08:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product": {
"name": "dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product_id": "dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-2.1-debuginfo@2.1.11-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64",
"product": {
"name": "dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64",
"product_id": "dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-2.1.5xx-debuginfo@2.1.507-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"product": {
"name": "dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"product_id": "dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-debugsource@2.1.507-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"product": {
"name": "dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"product_id": "dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-runtime-2.1@2.1.11-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product": {
"name": "dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product_id": "dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-fxr-2.1-debuginfo@2.1.11-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-0:2.1.11-2.el8_0.x86_64",
"product": {
"name": "dotnet-host-0:2.1.11-2.el8_0.x86_64",
"product_id": "dotnet-host-0:2.1.11-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host@2.1.11-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"product": {
"name": "dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"product_id": "dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-2.1@2.1.507-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"product": {
"name": "dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"product_id": "dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-debuginfo@2.1.507-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product": {
"name": "dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product_id": "dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-debuginfo@2.1.11-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"product": {
"name": "dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"product_id": "dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-sdk-2.1.5xx@2.1.507-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-0:2.1.507-2.el8_0.x86_64",
"product": {
"name": "dotnet-0:2.1.507-2.el8_0.x86_64",
"product_id": "dotnet-0:2.1.507-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet@2.1.507-2.el8_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"product": {
"name": "dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"product_id": "dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet-host-fxr-2.1@2.1.11-2.el8_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dotnet-0:2.1.507-2.el8_0.src",
"product": {
"name": "dotnet-0:2.1.507-2.el8_0.src",
"product_id": "dotnet-0:2.1.507-2.el8_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dotnet@2.1.507-2.el8_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:2.1.507-2.el8_0.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src"
},
"product_reference": "dotnet-0:2.1.507-2.el8_0.src",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-0:2.1.507-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64"
},
"product_reference": "dotnet-0:2.1.507-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64"
},
"product_reference": "dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-debugsource-0:2.1.507-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64"
},
"product_reference": "dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-0:2.1.11-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64"
},
"product_reference": "dotnet-host-0:2.1.11-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64"
},
"product_reference": "dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64"
},
"product_reference": "dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64"
},
"product_reference": "dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64"
},
"product_reference": "dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64"
},
"product_reference": "dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64"
},
"product_reference": "dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64"
},
"product_reference": "dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
},
"product_reference": "dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64",
"relates_to_product_reference": "AppStream-8.0.0.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-0757",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"discovery_date": "2019-03-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1685475"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in dotnet. A tampering vulnerability exists in NuGet software when executed in a Linux or Mac environment. An attacker who successfully exploits the vulnerability could run arbitrary code in the context of the current user. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: NuGet Tampering Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0757"
},
{
"category": "external",
"summary": "RHBZ#1685475",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1685475"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0757",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0757"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0757",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0757"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757"
}
],
"release_date": "2019-03-12T17:33:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-22T10:22:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: NuGet Tampering Vulnerability"
},
{
"cve": "CVE-2019-0820",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705506"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka \u0027.NET Framework and .NET Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: timeouts for regular expressions are not enforced",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0820"
},
{
"category": "external",
"summary": "RHBZ#1705506",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705506"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0820",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0820"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-22T10:22:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: timeouts for regular expressions are not enforced"
},
{
"cve": "CVE-2019-0980",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705502"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: infinite loop in Uri.TryCreate leading to ASP.Net Core Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0980"
},
{
"category": "external",
"summary": "RHBZ#1705502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0980"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980",
"url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-22T10:22:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: infinite loop in Uri.TryCreate leading to ASP.Net Core Denial of Service"
},
{
"cve": "CVE-2019-0981",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705504"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0981"
},
{
"category": "external",
"summary": "RHBZ#1705504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0981",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0981"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0981",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0981"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-22T10:22:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1259"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.src",
"AppStream-8.0.0.Z:dotnet-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debuginfo-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-debugsource-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-host-fxr-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-runtime-2.1-debuginfo-0:2.1.11-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-0:2.1.507-2.el8_0.x86_64",
"AppStream-8.0.0.Z:dotnet-sdk-2.1.5xx-debuginfo-0:2.1.507-2.el8_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service"
}
]
}
RHSA-2019_1236
Vulnerability from csaf_redhat - Published: 2019-05-15 21:55 - Updated: 2024-11-15 03:10Summary
Red Hat Security Advisory: .NET Core on Red Hat Enterprise Linux security and bug fix update
Severity
Moderate
Notes
Topic: Updates for rh-dotnetcore10-dotnetcore, rh-dotnetcore11-dotnetcore, rh-dotnet21-dotnet, rh-dotnet22-dotnet and rh-dotnet22-curl are now available for .NET Core on Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET Core that address security vulnerabilities are now available. The updated versions are .NET Core 1.0.16, 1.1.13, 2.1.11, and 2.2.5.
Security Fix(es):
* dotNET: timeouts for regular expressions are not enforced (CVE-2019-0820)
* dotNET: infinite loop in URI.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0980)
* dotNET: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0981)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Re-enable bash completion in rh-dotnet22-dotnet (BZ#1654863)
* Error rebuilding rh-dotnet22-curl in CentOS (BZ#1678932)
* Broken apphost caused by unset DOTNET_ROOT (BZ#1703479)
* Make bash completion compatible with rh-dotnet22 packages (BZ#1705259)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.
7.5 (High)
Affected products
Fixed
96 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
7.5 (High)
Affected products
Fixed
96 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.
7.5 (High)
Affected products
Fixed
96 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
32 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updates for rh-dotnetcore10-dotnetcore, rh-dotnetcore11-dotnetcore, rh-dotnet21-dotnet, rh-dotnet22-dotnet and rh-dotnet22-curl are now available for .NET Core on Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": ".NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET Core that address security vulnerabilities are now available. The updated versions are .NET Core 1.0.16, 1.1.13, 2.1.11, and 2.2.5.\n\nSecurity Fix(es):\n\n* dotNET: timeouts for regular expressions are not enforced (CVE-2019-0820)\n\n* dotNET: infinite loop in URI.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0980)\n\n* dotNET: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service (CVE-2019-0981)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* Re-enable bash completion in rh-dotnet22-dotnet (BZ#1654863)\n\n* Error rebuilding rh-dotnet22-curl in CentOS (BZ#1678932)\n\n* Broken apphost caused by unset DOTNET_ROOT (BZ#1703479)\n\n* Make bash completion compatible with rh-dotnet22 packages (BZ#1705259)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:1236",
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981"
},
{
"category": "external",
"summary": "1654863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1654863"
},
{
"category": "external",
"summary": "1678932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678932"
},
{
"category": "external",
"summary": "1703479",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1703479"
},
{
"category": "external",
"summary": "1703508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1703508"
},
{
"category": "external",
"summary": "1704454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1704454"
},
{
"category": "external",
"summary": "1704934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1704934"
},
{
"category": "external",
"summary": "1705147",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705147"
},
{
"category": "external",
"summary": "1705259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705259"
},
{
"category": "external",
"summary": "1705502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705502"
},
{
"category": "external",
"summary": "1705504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705504"
},
{
"category": "external",
"summary": "1705506",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705506"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1236.json"
}
],
"title": "Red Hat Security Advisory: .NET Core on Red Hat Enterprise Linux security and bug fix update",
"tracking": {
"current_release_date": "2024-11-15T03:10:45+00:00",
"generator": {
"date": "2024-11-15T03:10:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2019:1236",
"initial_release_date": "2019-05-15T21:55:11+00:00",
"revision_history": [
{
"date": "2019-05-15T21:55:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-05-15T21:55:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T03:10:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.0::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:1.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.2::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.2::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.2::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.1::el7"
}
}
},
{
"category": "product_name",
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_dotnet:2.1::el7"
}
}
}
],
"category": "product_family",
"name": ".NET Core on Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"product_id": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore10-dotnetcore@1.0.16-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"product_id": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore10-dotnetcore-debuginfo@1.0.16-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"product_id": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore11-dotnetcore-debuginfo@1.1.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"product": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"product_id": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore11-dotnetcore@1.1.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-0:2.2-7.el7.x86_64",
"product": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64",
"product_id": "rh-dotnet22-0:2.2-7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22@2.2-7.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"product": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"product_id": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-runtime@2.2-7.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-libcurl-devel@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-curl@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-libcurl@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"product_id": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-curl-debuginfo@7.61.1-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-debuginfo@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-host-fxr-2.2@2.2.5-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-sdk-2.2@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-host@2.2.5-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-runtime-2.2@2.2.5-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"product": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"product_id": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet-sdk-2.2.1xx@2.2.107-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-0:2.1-10.el7.x86_64",
"product": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64",
"product_id": "rh-dotnet21-0:2.1-10.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21@2.1-10.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"product": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"product_id": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-runtime@2.1-10.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-runtime-2.1@2.1.11-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-sdk-2.1@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-sdk-2.1.5xx@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-debuginfo@2.1.507-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"product": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"product_id": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet-host@2.1.11-2.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"product": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"product_id": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore10-dotnetcore@1.0.16-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"product": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"product_id": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnetcore11-dotnetcore@1.1.13-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-0:2.2-7.el7.src",
"product": {
"name": "rh-dotnet22-0:2.2-7.el7.src",
"product_id": "rh-dotnet22-0:2.2-7.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22@2.2-7.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"product": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"product_id": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-curl@7.61.1-2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"product": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"product_id": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet22-dotnet@2.2.107-2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-0:2.1-10.el7.src",
"product": {
"name": "rh-dotnet21-0:2.1-10.el7.src",
"product_id": "rh-dotnet21-0:2.1-10.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21@2.1-10.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"product": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"product_id": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-dotnet21-dotnet@2.1.507-2.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"relates_to_product_reference": "7Server-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"relates_to_product_reference": "7Server-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Server-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64"
},
"product_reference": "rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64"
},
"product_reference": "rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64"
},
"product_reference": "rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64"
},
"product_reference": "rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
},
"product_reference": "rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"relates_to_product_reference": "7Workstation-dotNET-2.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-0820",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705506"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka \u0027.NET Framework and .NET Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: timeouts for regular expressions are not enforced",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0820"
},
{
"category": "external",
"summary": "RHBZ#1705506",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705506"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0820",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0820"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-15T21:55:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: timeouts for regular expressions are not enforced"
},
{
"cve": "CVE-2019-0980",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705502"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: infinite loop in Uri.TryCreate leading to ASP.Net Core Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0980"
},
{
"category": "external",
"summary": "RHBZ#1705502",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705502"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0980",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0980"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0980"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980",
"url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-15T21:55:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: infinite loop in Uri.TryCreate leading to ASP.Net Core Denial of Service"
},
{
"cve": "CVE-2019-0981",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-05-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1705504"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka \u0027.Net Framework and .Net Core Denial of Service Vulnerability\u0027. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-0981"
},
{
"category": "external",
"summary": "RHBZ#1705504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-0981",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0981"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-0981",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-0981"
},
{
"category": "external",
"summary": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981",
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981"
}
],
"release_date": "2019-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-05-15T21:55:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1236"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7ComputeNode-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7ComputeNode-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Server-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Server-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.src",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.0:rh-dotnetcore10-dotnetcore-debuginfo-0:1.0.16-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.src",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-1.1:rh-dotnetcore11-dotnetcore-debuginfo-0:1.1.13-1.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.src",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-debuginfo-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-host-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-runtime-2.1-0:2.1.11-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-dotnet-sdk-2.1.5xx-0:2.1.507-2.el7.x86_64",
"7Workstation-dotNET-2.1:rh-dotnet21-runtime-0:2.1-10.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-0:2.2-7.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-curl-debuginfo-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.src",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-debuginfo-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-host-fxr-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-runtime-2.2-0:2.2.5-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-dotnet-sdk-2.2.1xx-0:2.2.107-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-libcurl-devel-0:7.61.1-2.el7.x86_64",
"7Workstation-dotNET-2.2:rh-dotnet22-runtime-0:2.2-7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: crash in IPAddress.TryCreate leading to ASP.Net Core Denial of Service"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…