Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2023-29331
Vulnerability from cvelistv5
▼ | URL | Tags | |
---|---|---|---|
secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331 | Patch, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331 | Patch, Vendor Advisory |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T14:07:45.647Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", tags: [ "vendor-advisory", "x_transferred", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { platforms: [ "Unknown", ], product: ".NET 6.0", vendor: "Microsoft", versions: [ { lessThan: "6.0.18", status: "affected", version: "6.0.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: ".NET 7.0", vendor: "Microsoft", versions: [ { lessThan: "7.0.7", status: "affected", version: "7.0.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.0", vendor: "Microsoft", versions: [ { lessThan: "17.0.22", status: "affected", version: "17.0.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.2", vendor: "Microsoft", versions: [ { lessThan: "17.2.16", status: "affected", version: "17.2.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.4", vendor: "Microsoft", versions: [ { lessThan: "17.4.8", status: "affected", version: "17.4.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "Microsoft Visual Studio 2022 version 17.6", vendor: "Microsoft", versions: [ { lessThan: "17.6.3", status: "affected", version: "17.6.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "PowerShell 7.2", vendor: "Microsoft", versions: [ { lessThan: "7.2.12", status: "affected", version: "7.2.0", versionType: "custom", }, ], }, { platforms: [ "Unknown", ], product: "PowerShell 7.3", vendor: "Microsoft", versions: [ { lessThan: "7.3.5", status: "affected", version: "7.3.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2012", "Windows Server 2016", "Windows Server 2012 (Server Core installation)", "Windows 10 Version 1607 for 32-bit Systems", "Windows Server 2016 (Server Core installation)", "Windows Server 2012 R2 (Server Core installation)", "Windows 10 Version 1607 for x64-based Systems", "Windows Server 2008 R2 for x64-based Systems Service Pack 1", "Windows Server 2012 R2", "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)", ], product: "Microsoft .NET Framework 4.8", vendor: "Microsoft", versions: [ { lessThan: "4.8.4644.0", status: "affected", version: "4.8.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2022", "Windows Server 2019", "Windows Server 2019 (Server Core installation)", "Windows 10 Version 1809 for 32-bit Systems", "Windows 10 Version 1809 for x64-based Systems", "Windows Server 2022 (Server Core installation)", "Windows 10 Version 21H2 for 32-bit Systems", "Windows 11 version 21H2 for ARM64-based Systems", "Windows 11 version 21H2 for x64-based Systems", "Windows 10 Version 21H2 for ARM64-based Systems", "Windows 10 Version 22H2 for x64-based Systems", "Windows 10 Version 21H2 for x64-based Systems", "Windows 10 Version 22H2 for ARM64-based Systems", "Windows 10 Version 22H2 for 32-bit Systems", ], product: "Microsoft .NET Framework 3.5 AND 4.8", vendor: "Microsoft", versions: [ { lessThan: "4.8.4644.0", status: "affected", version: "4.8.0", versionType: "custom", }, ], }, { platforms: [ "Windows 10 Version 1809 for 32-bit Systems", "Windows 10 Version 1809 for x64-based Systems", "Windows 10 Version 1809 for ARM64-based Systems", "Windows Server 2019", "Windows Server 2019 (Server Core installation)", ], product: "Microsoft .NET Framework 3.5 AND 4.7.2", vendor: "Microsoft", versions: [ { lessThan: "4.7.4050.0", status: "affected", version: "4.7.0", versionType: "custom", }, ], }, { platforms: [ "Windows 10 Version 1607 for 32-bit Systems", "Windows 10 Version 1607 for x64-based Systems", "Windows Server 2016", "Windows Server 2016 (Server Core installation)", ], product: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", vendor: "Microsoft", versions: [ { lessThan: "10.0.14393.5989", status: "affected", version: "3.0.0.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2008 R2 for x64-based Systems Service Pack 1", "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)", "Windows Server 2012 (Server Core installation)", "Windows Server 2012", "Windows Server 2012 R2", "Windows Server 2012 R2 (Server Core installation)", ], product: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", vendor: "Microsoft", versions: [ { lessThan: "4.7.04043.0", status: "affected", version: "4.7.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2022", "Windows Server 2022 (Server Core installation)", "Windows 11 version 21H2 for ARM64-based Systems", "Windows 11 version 21H2 for x64-based Systems", "Windows 10 Version 21H2 for 32-bit Systems", "Windows 10 Version 21H2 for x64-based Systems", "Windows 10 Version 21H2 for ARM64-based Systems", "Windows 11 Version 22H2 for ARM64-based Systems", "Windows 11 Version 22H2 for x64-based Systems", "Windows 10 Version 22H2 for x64-based Systems", "Windows 10 Version 22H2 for ARM64-based Systems", "Windows 10 Version 22H2 for 32-bit Systems", ], product: "Microsoft .NET Framework 3.5 AND 4.8.1", vendor: "Microsoft", versions: [ { lessThan: "4.8.9166.0", status: "affected", version: "4.8.1", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2008 for 32-bit Systems Service Pack 2", "Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)", "Windows Server 2008 for x64-based Systems Service Pack 2", "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)", ], product: "Microsoft .NET Framework 4.6.2", vendor: "Microsoft", versions: [ { lessThan: "4.7.04043.0", status: "affected", version: "4.7.0", versionType: "custom", }, ], }, { platforms: [ "Windows 10 for 32-bit Systems", "Windows 10 for x64-based Systems", ], product: "Microsoft .NET Framework 3.5 and 4.6.2", vendor: "Microsoft", versions: [ { lessThan: "10.0.10240.19983", status: "affected", version: "4.7.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2008 for x64-based Systems Service Pack 2", "Windows Server 2008 for 32-bit Systems Service Pack 2", ], product: "Microsoft .NET Framework 2.0 Service Pack 2", vendor: "Microsoft", versions: [ { lessThan: "3.0.6920.8954; 2.0.50727.8970", status: "affected", version: "2.0.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2008 for 32-bit Systems Service Pack 2", "Windows Server 2008 for x64-based Systems Service Pack 2", ], product: "Microsoft .NET Framework 3.0 Service Pack 2", vendor: "Microsoft", versions: [ { lessThan: "3.0.6920.8954; 2.0.50727.8970", status: "affected", version: "3.0.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2012 (Server Core installation)", "Windows Server 2012 R2", "Windows Server 2012", "Windows Server 2012 R2 (Server Core installation)", ], product: "Microsoft .NET Framework 3.5", vendor: "Microsoft", versions: [ { lessThan: "3.0.6920.8954; 2.0.50727.8970", status: "affected", version: "3.5.0", versionType: "custom", }, ], }, { platforms: [ "Windows Server 2008 R2 for x64-based Systems Service Pack 1", "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)", ], product: "Microsoft .NET Framework 3.5.1", vendor: "Microsoft", versions: [ { lessThan: "3.0.6920.8954; 2.0.50727.8970", status: "affected", version: "3.5.0", versionType: "custom", }, ], }, ], cpeApplicability: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "6.0.18", versionStartIncluding: "6.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "7.0.7", versionStartIncluding: "7.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", versionEndExcluding: "17.0.22", versionStartIncluding: "17.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", versionEndExcluding: "17.2.16", versionStartIncluding: "17.2.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", versionEndExcluding: "17.4.8", versionStartIncluding: "17.4.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:visual_studio:*:*:*:*:*:*:*:*", versionEndExcluding: "17.6.3", versionStartIncluding: "17.6.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*", versionEndExcluding: "7.2.12", versionStartIncluding: "7.2.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:powershell:*:-:*:*:*:*:*:*", versionEndExcluding: "7.3.5", versionStartIncluding: "7.3.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "4.8.4644.0", versionStartIncluding: "4.8.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "4.8.4644.0", versionStartIncluding: "4.8.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "4.7.4050.0", versionStartIncluding: "4.7.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:*:*:*:*:*:*:*:*", versionEndExcluding: "10.0.14393.5989", versionStartIncluding: "3.0.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "4.7.04043.0", versionStartIncluding: "4.7.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "4.8.9166.0", versionStartIncluding: "4.8.1", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "4.7.04043.0", versionStartIncluding: "4.7.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "10.0.10240.19983", versionStartIncluding: "4.7.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*", versionEndExcluding: "3.0.6920.8954; 2.0.50727.8970", versionStartIncluding: "2.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*", versionEndExcluding: "3.0.6920.8954; 2.0.50727.8970", versionStartIncluding: "3.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "3.0.6920.8954; 2.0.50727.8970", versionStartIncluding: "3.5.0", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", versionEndExcluding: "3.0.6920.8954; 2.0.50727.8970", versionStartIncluding: "3.5.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], datePublic: "2023-06-13T07:00:00+00:00", descriptions: [ { lang: "en-US", value: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", }, ], metrics: [ { cvssV3_1: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en-US", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-400", description: "CWE-400: Uncontrolled Resource Consumption", lang: "en-US", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-01-01T01:43:49.030Z", orgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8", shortName: "microsoft", }, references: [ { name: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", tags: [ "vendor-advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, ], title: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", }, }, cveMetadata: { assignerOrgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8", assignerShortName: "microsoft", cveId: "CVE-2023-29331", datePublished: "2023-06-14T14:52:19.830Z", dateReserved: "2023-04-04T22:34:18.378Z", dateUpdated: "2025-01-01T01:43:49.030Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\", \"matchCriteriaId\": \"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\", \"matchCriteriaId\": \"AB425562-C0A0-452E-AABE-F70522F15E1A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"83A79DD6-E74E-419F-93F1-323B68502633\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"61959ACC-B608-4556-92AF-4D94B338907A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"0C3552E0-F793-4CDD-965D-457495475805\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"345FCD64-D37B-425B-B64C-8B1640B7E850\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"83A79DD6-E74E-419F-93F1-323B68502633\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"61959ACC-B608-4556-92AF-4D94B338907A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"0C3552E0-F793-4CDD-965D-457495475805\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"345FCD64-D37B-425B-B64C-8B1640B7E850\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\", \"matchCriteriaId\": \"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\", \"matchCriteriaId\": \"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"42A6DF09-B8E1-414D-97E7-453566055279\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\", \"matchCriteriaId\": \"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\", \"matchCriteriaId\": \"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"1DE0C8DD-9C73-4876-8193-068F18074B58\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4E2C6C0-FD91-40D9-B1A4-C1C348A156C7\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability\"}]", id: "CVE-2023-29331", lastModified: "2024-11-21T07:56:52.667", metrics: "{\"cvssMetricV31\": [{\"source\": \"secure@microsoft.com\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}", published: "2023-06-14T15:15:09.763", references: "[{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]", sourceIdentifier: "secure@microsoft.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2023-29331\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2023-06-14T15:15:09.763\",\"lastModified\":\"2024-11-21T07:56:52.667\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"42A6DF09-B8E1-414D-97E7-453566055279\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DE0C8DD-9C73-4876-8193-068F18074B58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4E2C6C0-FD91-40D9-B1A4-C1C348A156C7\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}", }, }
rhsa-2023_4448
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4448", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:41+00:00", generator: { date: "2024-11-22T23:50:41+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4448", initial_release_date: "2023-08-03T07:58:53+00:00", revision_history: [ { date: "2023-08-03T07:58:53+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:58:53+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:41+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el8_6.src", product: { name: "dotnet6.0-0:6.0.120-1.el8_6.src", product_id: "dotnet6.0-0:6.0.120-1.el8_6.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
RHSA-2023:3582
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3582", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:24+00:00", generator: { date: "2024-11-22T23:28:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3582", initial_release_date: "2023-06-14T08:41:36+00:00", revision_history: [ { date: "2023-06-14T08:41:36+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:41:36+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el8_8.src", product: { name: "dotnet6.0-0:6.0.118-1.el8_8.src", product_id: "dotnet6.0-0:6.0.118-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:3581
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3581", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:04+00:00", generator: { date: "2024-11-22T23:28:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3581", initial_release_date: "2023-06-14T08:03:19+00:00", revision_history: [ { date: "2023-06-14T08:03:19+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:03:19+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el9_2.src", product: { name: "dotnet6.0-0:6.0.118-1.el9_2.src", product_id: "dotnet6.0-0:6.0.118-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3581
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3581", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:04+00:00", generator: { date: "2024-11-22T23:28:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3581", initial_release_date: "2023-06-14T08:03:19+00:00", revision_history: [ { date: "2023-06-14T08:03:19+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:03:19+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el9_2.src", product: { name: "dotnet6.0-0:6.0.118-1.el9_2.src", product_id: "dotnet6.0-0:6.0.118-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:4449
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4449", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:50+00:00", generator: { date: "2024-11-22T23:50:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4449", initial_release_date: "2023-08-03T07:57:34+00:00", revision_history: [ { date: "2023-08-03T07:57:34+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:57:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el9_0.src", product: { name: "dotnet6.0-0:6.0.120-1.el9_0.src", product_id: "dotnet6.0-0:6.0.120-1.el9_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
RHSA-2023:4449
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4449", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:50+00:00", generator: { date: "2024-11-22T23:50:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4449", initial_release_date: "2023-08-03T07:57:34+00:00", revision_history: [ { date: "2023-08-03T07:57:34+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:57:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el9_0.src", product: { name: "dotnet6.0-0:6.0.120-1.el9_0.src", product_id: "dotnet6.0-0:6.0.120-1.el9_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
rhsa-2023:3580
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3580", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:14+00:00", generator: { date: "2024-11-22T23:28:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3580", initial_release_date: "2023-06-14T08:54:51+00:00", revision_history: [ { date: "2023-06-14T08:54:51+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:54:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, ], category: "product_family", name: ".NET Core on Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3592
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3592", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:33+00:00", generator: { date: "2024-11-22T23:28:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3592", initial_release_date: "2023-06-14T09:51:37+00:00", revision_history: [ { date: "2023-06-14T09:51:37+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T09:51:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el9_2.src", product: { name: "dotnet7.0-0:7.0.107-1.el9_2.src", product_id: "dotnet7.0-0:7.0.107-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:3580
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3580", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:14+00:00", generator: { date: "2024-11-22T23:28:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3580", initial_release_date: "2023-06-14T08:54:51+00:00", revision_history: [ { date: "2023-06-14T08:54:51+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:54:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, ], category: "product_family", name: ".NET Core on Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3592
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3592", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:33+00:00", generator: { date: "2024-11-22T23:28:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3592", initial_release_date: "2023-06-14T09:51:37+00:00", revision_history: [ { date: "2023-06-14T09:51:37+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T09:51:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el9_2.src", product: { name: "dotnet7.0-0:7.0.107-1.el9_2.src", product_id: "dotnet7.0-0:7.0.107-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3581
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212379)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3581", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3581.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:04+00:00", generator: { date: "2024-11-22T23:28:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3581", initial_release_date: "2023-06-14T08:03:19+00:00", revision_history: [ { date: "2023-06-14T08:03:19+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:03:19+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el9_2.src", product: { name: "dotnet6.0-0:6.0.118-1.el9_2.src", product_id: "dotnet6.0-0:6.0.118-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:03:19+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3581", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3580
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: rh-dotnet60-dotnet (6.0.118). (BZ#2211715)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3580", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3580.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:14+00:00", generator: { date: "2024-11-22T23:28:14+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3580", initial_release_date: "2023-06-14T08:54:51+00:00", revision_history: [ { date: "2023-06-14T08:54:51+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:54:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:14+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, { category: "product_name", name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product: { name: ".NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_dotnet:6.0::el7", }, }, }, ], category: "product_family", name: ".NET Core on Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-aspnetcore-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-apphost-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-host@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-hostfxr-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-runtime-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-targeting-pack-6.0@6.0.18-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-templates-6.0@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-netstandard-targeting-pack-2.1@6.0.118-1.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_id: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet-debuginfo@6.0.118-1.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_id: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/rh-dotnet60-dotnet@6.0.118-1.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7)", product_id: "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Server-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, { category: "default_component_of", full_product_name: { name: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64 as a component of .NET Core on Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", }, product_reference: "rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", relates_to_product_reference: "7Workstation-dotNET-6.0", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:54:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3580", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7ComputeNode-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Server-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Server-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-aspnetcore-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.src", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-apphost-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-debuginfo-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-host-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-hostfxr-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-runtime-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-targeting-pack-6.0-0:6.0.18-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-dotnet-templates-6.0-0:6.0.118-1.el7_9.x86_64", "7Workstation-dotNET-6.0:rh-dotnet60-netstandard-targeting-pack-2.1-0:6.0.118-1.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3593
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3593", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:43+00:00", generator: { date: "2024-11-22T23:28:43+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3593", initial_release_date: "2023-06-14T10:02:32+00:00", revision_history: [ { date: "2023-06-14T10:02:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T10:02:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:43+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el8_8.src", product: { name: "dotnet7.0-0:7.0.107-1.el8_8.src", product_id: "dotnet7.0-0:7.0.107-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:3592
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211877)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3592", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3592.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:33+00:00", generator: { date: "2024-11-22T23:28:33+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3592", initial_release_date: "2023-06-14T09:51:37+00:00", revision_history: [ { date: "2023-06-14T09:51:37+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T09:51:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:33+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 9)", product: { name: "Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 9)", product: { name: "Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:9::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-host-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-host-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-host-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el9_2?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el9_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el9_2.src", product: { name: "dotnet7.0-0:7.0.107-1.el9_2.src", product_id: "dotnet7.0-0:7.0.107-1.el9_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el9_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)", product_id: "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "AppStream-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el9_2.src as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el9_2.src", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)", product_id: "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", relates_to_product_reference: "CRB-9.2.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T09:51:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3592", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "AppStream-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el9_2.src", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el9_2.x86_64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.aarch64", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.ppc64le", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.s390x", "CRB-9.2.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el9_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3582
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3582", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:24+00:00", generator: { date: "2024-11-22T23:28:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3582", initial_release_date: "2023-06-14T08:41:36+00:00", revision_history: [ { date: "2023-06-14T08:41:36+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:41:36+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el8_8.src", product: { name: "dotnet6.0-0:6.0.118-1.el8_8.src", product_id: "dotnet6.0-0:6.0.118-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:3582
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.\n\nThe following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.118). (BZ#2212378)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3582", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3582.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:24+00:00", generator: { date: "2024-11-22T23:28:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3582", initial_release_date: "2023-06-14T08:41:36+00:00", revision_history: [ { date: "2023-06-14T08:41:36+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T08:41:36+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.18-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_id: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.118-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.118-1.el8_8.src", product: { name: "dotnet6.0-0:6.0.118-1.el8_8.src", product_id: "dotnet6.0-0:6.0.118-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.118-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.118-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", }, product_reference: "dotnet6.0-0:6.0.118-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T08:41:36+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3582", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-6.0-0:6.0.18-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-6.0-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-0:6.0.118-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debuginfo-0:6.0.118-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet6.0-debugsource-0:6.0.118-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023_3593
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3593", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:43+00:00", generator: { date: "2024-11-22T23:28:43+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3593", initial_release_date: "2023-06-14T10:02:32+00:00", revision_history: [ { date: "2023-06-14T10:02:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T10:02:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:43+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el8_8.src", product: { name: "dotnet7.0-0:7.0.107-1.el8_8.src", product_id: "dotnet7.0-0:7.0.107-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
RHSA-2023:4448
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4448", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:41+00:00", generator: { date: "2024-11-22T23:50:41+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4448", initial_release_date: "2023-08-03T07:58:53+00:00", revision_history: [ { date: "2023-08-03T07:58:53+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:58:53+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:41+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el8_6.src", product: { name: "dotnet6.0-0:6.0.120-1.el8_6.src", product_id: "dotnet6.0-0:6.0.120-1.el8_6.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
RHSA-2023:3593
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 7.0 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7.\n\nThe following packages have been upgraded to a later upstream version: dotnet7.0 (7.0.107). (BZ#2211876)\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument (CVE-2023-32032)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML (CVE-2023-24936)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3593", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3593.json", }, ], title: "Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T23:28:43+00:00", generator: { date: "2024-11-22T23:28:43+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:3593", initial_release_date: "2023-06-14T10:02:32+00:00", revision_history: [ { date: "2023-06-14T10:02:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-06-14T10:02:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:28:43+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux CRB (v. 8)", product: { name: "Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-host-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=ppc64le", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-host-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-source-built-artifacts@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debugsource@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0-debuginfo@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_id: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0-debuginfo@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-host-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_id: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-7.0@7.0.7-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_id: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-7.0@7.0.107-1.el8_8?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_id: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@7.0.107-1.el8_8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet7.0-0:7.0.107-1.el8_8.src", product: { name: "dotnet7.0-0:7.0.107-1.el8_8.src", product_id: "dotnet7.0-0:7.0.107-1.el8_8.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet7.0@7.0.107-1.el8_8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "AppStream-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", }, product_reference: "dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-0:7.0.107-1.el8_8.src as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", }, product_reference: "dotnet7.0-0:7.0.107-1.el8_8.src", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", }, product_reference: "dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)", product_id: "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", relates_to_product_reference: "CRB-8.8.0.Z.MAIN.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-24936", discovery_date: "2023-05-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2192438", }, ], notes: [ { category: "description", text: "A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24936", }, { category: "external", summary: "RHBZ#2192438", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2192438", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24936", url: "https://www.cve.org/CVERecord?id=CVE-2023-24936", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24936", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "dotnet: Bypass restrictions when deserializing a DataSet or DataTable from XML", }, { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-32032", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212615", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-32032", }, { category: "external", summary: "RHBZ#2212615", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212615", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-32032", url: "https://www.cve.org/CVERecord?id=CVE-2023-32032", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-32032", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-06-14T10:02:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3593", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "AppStream-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:aspnetcore-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-apphost-pack-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-host-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-hostfxr-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-runtime-7.0-debuginfo-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-sdk-7.0-source-built-artifacts-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-targeting-pack-7.0-0:7.0.7-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet-templates-7.0-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-0:7.0.107-1.el8_8.src", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debuginfo-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:dotnet7.0-debugsource-0:7.0.107-1.el8_8.x86_64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.aarch64", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.ppc64le", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.s390x", "CRB-8.8.0.Z.MAIN.EUS:netstandard-targeting-pack-2.1-0:7.0.107-1.el8_8.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, ], }
rhsa-2023:4448
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4448", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4448.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:41+00:00", generator: { date: "2024-11-22T23:50:41+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4448", initial_release_date: "2023-08-03T07:58:53+00:00", revision_history: [ { date: "2023-08-03T07:58:53+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:58:53+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:41+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.6::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-host-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-host-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-host-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el8_6?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el8_6?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el8_6.src", product: { name: "dotnet6.0-0:6.0.120-1.el8_6.src", product_id: "dotnet6.0-0:6.0.120-1.el8_6.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el8_6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)", product_id: "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "AppStream-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el8_6.src as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el8_6.src", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.8.6)", product_id: "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", relates_to_product_reference: "CRB-8.6.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:58:53+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4448", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "AppStream-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-0:6.0.120-1.el8_6.src", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el8_6.x86_64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.aarch64", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.s390x", "CRB-8.6.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el8_6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
rhsa-2023_4449
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for .NET 6.0 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20.\n\nSecurity Fix(es):\n\n* dotnet: .NET Kestrel: Denial of Service processing X509 Certificates (CVE-2023-29331)\n\n* dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack (CVE-2023-29337)\n\n* dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption (CVE-2023-33128)\n\n* dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method (CVE-2023-33170)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:4449", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4449.json", }, ], title: "Red Hat Security Advisory: .NET 6.0 security update", tracking: { current_release_date: "2024-11-22T23:50:50+00:00", generator: { date: "2024-11-22T23:50:50+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2023:4449", initial_release_date: "2023-08-03T07:57:34+00:00", revision_history: [ { date: "2023-08-03T07:57:34+00:00", number: "1", summary: "Initial version", }, { date: "2023-08-03T07:57:34+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T23:50:50+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product: { name: "Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:9.0::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=aarch64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=x86_64", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/aspnetcore-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-targeting-pack-6.0@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-templates-6.0@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_id: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/netstandard-targeting-pack-2.1@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debugsource@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-apphost-pack-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-host-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-hostfxr-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_id: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-runtime-6.0-debuginfo@6.0.20-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_id: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0-debuginfo@6.0.120-1.el9_0?arch=s390x", }, }, }, { category: "product_version", name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_id: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet-sdk-6.0-source-built-artifacts@6.0.120-1.el9_0?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "dotnet6.0-0:6.0.120-1.el9_0.src", product: { name: "dotnet6.0-0:6.0.120-1.el9_0.src", product_id: "dotnet6.0-0:6.0.120-1.el9_0.src", product_identification_helper: { purl: "pkg:rpm/redhat/dotnet6.0@6.0.120-1.el9_0?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)", product_id: "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "AppStream-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", }, product_reference: "dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-0:6.0.120-1.el9_0.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", }, product_reference: "dotnet6.0-0:6.0.120-1.el9_0.src", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", }, product_reference: "dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)", product_id: "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", }, product_reference: "netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", relates_to_product_reference: "CRB-9.0.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212617", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29331", }, { category: "external", summary: "RHBZ#2212617", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212617", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29331", url: "https://www.cve.org/CVERecord?id=CVE-2023-29331", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: .NET Kestrel: Denial of Service processing X509 Certificates", }, { cve: "CVE-2023-29337", discovery_date: "2023-06-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2213703", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-29337", }, { category: "external", summary: "RHBZ#2213703", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2213703", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-29337", url: "https://www.cve.org/CVERecord?id=CVE-2023-29337", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29337", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: vulnerability exists in NuGet where a potential race condition can lead to a symlink attack", }, { cve: "CVE-2023-33128", discovery_date: "2023-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2212618", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33128", }, { category: "external", summary: "RHBZ#2212618", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2212618", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33128", url: "https://www.cve.org/CVERecord?id=CVE-2023-33128", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33128", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/6.0/6.0.18/6.0.18.md", }, { category: "external", summary: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", url: "https://github.com/dotnet/core/blob/c73158b8ef08db362585f9ed16b97c1d1372c666/release-notes/7.0/7.0.7/7.0.7.md", }, ], release_date: "2023-06-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: Remote Code Execution - Source generators issue can lead to a crash due to unmanaged heap corruption", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, discovery_date: "2023-07-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2221854", }, ], notes: [ { category: "description", text: "A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on confidentiality, integrity, and availability.", title: "Vulnerability description", }, { category: "summary", text: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-33170", }, { category: "external", summary: "RHBZ#2221854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2221854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-33170", url: "https://www.cve.org/CVERecord?id=CVE-2023-33170", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-33170", }, { category: "external", summary: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", url: "https://devblogs.microsoft.com/dotnet/july-2023-updates/", }, { category: "external", summary: "https://github.com/advisories/GHSA-25c8-p796-jg6r", url: "https://github.com/advisories/GHSA-25c8-p796-jg6r", }, { category: "external", summary: "https://github.com/dotnet/announcements/issues/264", url: "https://github.com/dotnet/announcements/issues/264", }, { category: "external", summary: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170", }, ], release_date: "2023-07-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-08-03T07:57:34+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:4449", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "AppStream-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:aspnetcore-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-apphost-pack-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-host-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-hostfxr-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-runtime-6.0-debuginfo-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-sdk-6.0-source-built-artifacts-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-targeting-pack-6.0-0:6.0.20-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet-templates-6.0-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-0:6.0.120-1.el9_0.src", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debuginfo-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:dotnet6.0-debugsource-0:6.0.120-1.el9_0.x86_64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.aarch64", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.s390x", "CRB-9.0.0.Z.EUS:netstandard-targeting-pack-2.1-0:6.0.120-1.el9_0.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method", }, ], }
ICSA-24-165-04
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-165-04.json", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-04", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens ST7 ScadaConnect", tracking: { current_release_date: "2024-06-11T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-24-165-04", initial_release_date: "2024-06-11T00:00:00.000000Z", revision_history: [ { date: "2024-06-11T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "CSAFPID-0001", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-44487", }, ], }
icsa-23-320-12
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "SINEC PNI before V2.0 is affected by multiple vulnerabilities.\n\nSiemens has released an update for SINEC PNI and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-150063.json", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-150063.html", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-150063.pdf", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-150063.txt", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-320-12.json", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-12", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens PNI", tracking: { current_release_date: "2023-11-14T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-23-320-12", initial_release_date: "2023-11-14T00:00:00.000000Z", revision_history: [ { date: "2023-11-14T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V2.0", product: { name: "SINEC PNI", product_id: "CSAFPID-0001", }, }, ], category: "product_name", name: "SINEC PNI", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-30184", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Information Disclosure Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-30184", }, { cve: "CVE-2022-37434", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "summary", text: "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-37434", }, { cve: "CVE-2022-41032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "NuGet Client Elevation of Privilege Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-41032", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, ], }
ICSA-23-320-12
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "SINEC PNI before V2.0 is affected by multiple vulnerabilities.\n\nSiemens has released an update for SINEC PNI and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-150063.json", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-150063.html", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-150063.pdf", }, { category: "self", summary: "SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-150063.txt", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-320-12.json", }, { category: "self", summary: "ICS Advisory ICSA-23-320-12 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-23-320-12", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens PNI", tracking: { current_release_date: "2023-11-14T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-23-320-12", initial_release_date: "2023-11-14T00:00:00.000000Z", revision_history: [ { date: "2023-11-14T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V2.0", product: { name: "SINEC PNI", product_id: "CSAFPID-0001", }, }, ], category: "product_name", name: "SINEC PNI", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-30184", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Information Disclosure Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-30184", }, { cve: "CVE-2022-37434", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "summary", text: "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-37434", }, { cve: "CVE-2022-41032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "NuGet Client Elevation of Privilege Vulnerability.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-41032", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V2.0 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109825079/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, ], }
icsa-24-165-04
Vulnerability from csaf_cisa
Notes
{ document: { acknowledgments: [ { organization: "Siemens ProductCERT", summary: "reporting these vulnerabilities to CISA.", }, ], category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited", tlp: { label: "WHITE", url: "https://us-cert.cisa.gov/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, { category: "legal_disclaimer", text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", title: "Legal Notice", }, { category: "other", text: "This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.", title: "Advisory Conversion Disclaimer", }, { category: "other", text: "Multiple", title: "Critical infrastructure sectors", }, { category: "other", text: "Worldwide", title: "Countries/areas deployed", }, { category: "other", text: "Germany", title: "Company headquarters location", }, { category: "general", text: "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.", title: "Recommended Practices", }, { category: "general", text: "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.", title: "Recommended Practices", }, { category: "general", text: "Locate control system networks and remote devices behind firewalls and isolate them from business networks.", title: "Recommended Practices", }, { category: "general", text: "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.", title: "Recommended Practices", }, { category: "general", text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.", title: "Recommended Practices", }, { category: "general", text: "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", title: "Recommended Practices", }, { category: "general", text: "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.", title: "Recommended Practices", }, { category: "general", text: "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.", title: "Recommended Practices", }, ], publisher: { category: "other", contact_details: "central@cisa.dhs.gov", name: "CISA", namespace: "https://www.cisa.gov/", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 JSON", url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2024/icsa-24-165-04.json", }, { category: "self", summary: "ICS Advisory ICSA-24-165-04 - Web Version", url: "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-04", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/topics/industrial-control-systems", }, { category: "external", summary: "Recommended Practices", url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf", }, { category: "external", summary: "Recommended Practices", url: "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B", }, ], title: "Siemens ST7 ScadaConnect", tracking: { current_release_date: "2024-06-11T00:00:00.000000Z", generator: { engine: { name: "CISA CSAF Generator", version: "1.0.0", }, }, id: "ICSA-24-165-04", initial_release_date: "2024-06-11T00:00:00.000000Z", revision_history: [ { date: "2024-06-11T00:00:00.000000Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "CSAFPID-0001", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "CSAFPID-0001", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "CSAFPID-0001", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "CSAFPID-0001", ], }, ], title: "CVE-2023-44487", }, ], }
ghsa-555c-2p6r-68mm
Vulnerability from github
Microsoft Security Advisory CVE-2023-29331: .NET Denial of Service vulnerability
Executive summary
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
A vulnerability exists in .NET when processing X.509 certificates that may result in Denial of Service.
Details: KB5025823
Announcement
Announcement for this issue can be found at https://github.com/dotnet/announcements/issues/257
Mitigation factors
Microsoft has not identified any mitigating factors for this vulnerability.
Affected software
- Any .NET 7.0 application running on .NET 7.0.5 or earlier.
- Any .NET 6.0 application running on .NET 6.0.16 or earlier.
If your application uses the following package versions, ensure you update to the latest version of .NET.
.NET 7
Package name | Affected version | Patched version ------------ | ---------------- | ------------------------- Microsoft.Windows.Compatibility | >= 7.0.0, < 7.0.1 | 7.0.3 System.Security.Cryptography.Pkcs | >= 7.0.0, < 7.0.1 | 7.0.2 Microsoft.NetCore.App.Runtime.linux-arm | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-musl-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.linux-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.osx-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-arm64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x64 | >= 7.0.0, < 7.0.5 | 7.0.7 Microsoft.NetCore.App.Runtime.win-x86 | >= 7.0.0, < 7.0.5 | 7.0.7
.NET 6
Package name | Affected version | Patched version ------------ | ---------------- | ------------------------- Microsoft.Windows.Compatibility | >= 6.0.0, < 6.0.4 | 6.0.6 System.Security.Cryptography.Pkcs | >= 6.0.0, < 6.0.2 | 6.0.3 Microsoft.NetCore.App.Runtime.linux-arm | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-musl-arm | >= 6.0.1, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-musl-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-musl-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.linux-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.osx-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.osx-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-arm | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-arm64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-x64 | >= 6.0.0, < 6.0.16 | 6.0.18 Microsoft.NetCore.App.Runtime.win-x86 | >= 6.0.0, < 6.0.16 | 6.0.18
Advisory FAQ
How do I know if I am affected?
If you have a runtime or SDK with a version listed, or an affected package listed in affected software, you're exposed to the vulnerability.
How do I fix the issue?
- To fix the issue please install the latest version of .NET 6.0 or .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.
- If you are using one of the affected packages, please update to the patched version listed above.
- If you have .NET 6.0 or greater installed, you can list the versions you have installed by running the
dotnet --info
command. You will see output like the following;
``` .NET Core SDK (reflecting any global.json):
Version: 6.0.300 Commit: 8473146e7d
Runtime Environment:
OS Name: Windows OS Version: 10.0.18363 OS Platform: Windows RID: win10-x64 Base Path: C:\Program Files\dotnet\sdk\6.0.300\
Host (useful for support):
Version: 6.0.5 Commit: 8473146e7d
.NET Core SDKs installed:
6.0.300 [C:\Program Files\dotnet\sdk]
.NET Core runtimes installed:
Microsoft.AspNetCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.AspNetCore.App] Microsoft.NETCore.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.NETCore.App] Microsoft.WindowsDesktop.App 6.0.5 [C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App]
To install additional .NET Core runtimes or SDKs: https://aka.ms/dotnet-download ```
- If you're using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.
- If you're using .NET 6.0, you should download and install Runtime 6.0.18 or SDK 6.0.312 (for Visual Studio 2022 v17.2) from https://dotnet.microsoft.com/download/dotnet-core/6.0.
.NET 6.0 and and .NET 7.0 updates are also available from Microsoft Update. To access this either type "Check for updates" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.
Once you have installed the updated runtime or SDK, restart your apps for the update to take effect.
Additionally, if you've deployed self-contained applications targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.
Other Information
Reporting Security Issues
If you have found a potential security issue in .NET 6.0 or .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at https://aka.ms/corebounty.
Support
You can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.
Disclaimer
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
External Links
Revisions
V1.0 (June 13, 2023): Advisory published.
Version 1.0
Last Updated 2023-06-13
{ affected: [ { database_specific: { last_known_affected_version_range: "<= 7.0.1", }, package: { ecosystem: "NuGet", name: "Microsoft.Windows.Compatibility", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.3", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.4", }, package: { ecosystem: "NuGet", name: "Microsoft.Windows.Compatibility", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.6", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.1", }, package: { ecosystem: "NuGet", name: "System.Security.Cryptography.Pkcs", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.2", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.2", }, package: { ecosystem: "NuGet", name: "System.Security.Cryptography.Pkcs", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.3", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-arm", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-arm", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-arm64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-arm", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-arm", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-arm64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-x64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-musl-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-x64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.linux-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.osx-arm64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.osx-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.osx-x64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.osx-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-arm", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-arm", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-arm64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-arm64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-x64", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-x64", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 7.0.5", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-x86", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.0.7", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 6.0.16", }, package: { ecosystem: "NuGet", name: "Microsoft.NETCore.App.Runtime.win-x86", }, ranges: [ { events: [ { introduced: "6.0.0", }, { fixed: "6.0.18", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2023-29331", ], database_specific: { cwe_ids: [ "CWE-400", ], github_reviewed: true, github_reviewed_at: "2023-06-14T17:08:54Z", nvd_published_at: "2023-06-14T15:15:09Z", severity: "HIGH", }, details: "# Microsoft Security Advisory CVE-2023-29331: .NET Denial of Service vulnerability\n\n## <a name=\"executive-summary\"></a>Executive summary\n\nMicrosoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0 and .NET 6.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.\n\nA vulnerability exists in .NET when processing X.509 certificates that may result in Denial of Service. \n\nDetails: [KB5025823 ](https://support.microsoft.com/kb/5025823)\n\n## Announcement\n\nAnnouncement for this issue can be found at https://github.com/dotnet/announcements/issues/257\n\n### <a name=\"mitigation-factors\"></a>Mitigation factors\n\nMicrosoft has not identified any mitigating factors for this vulnerability.\n\n## <a name=\"affected-software\"></a>Affected software\n\n* Any .NET 7.0 application running on .NET 7.0.5 or earlier.\n* Any .NET 6.0 application running on .NET 6.0.16 or earlier.\n\nIf your application uses the following package versions, ensure you update to the latest version of .NET.\n\n### <a name=\".NET 7\"></a>.NET 7\n\nPackage name | Affected version | Patched version\n------------ | ---------------- | -------------------------\n[Microsoft.Windows.Compatibility](https://www.nuget.org/packages/Microsoft.Windows.Compatibility) | >= 7.0.0, < 7.0.1 | 7.0.3\n[System.Security.Cryptography.Pkcs](https://www.nuget.org/packages/System.Security.Cryptography.Pkcs) | >= 7.0.0, < 7.0.1 | 7.0.2\n[Microsoft.NetCore.App.Runtime.linux-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-musl-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-x64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.linux-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-x64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-arm64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.osx-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-x64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x64) | >= 7.0.0, < 7.0.5 | 7.0.7\n[Microsoft.NetCore.App.Runtime.win-x86](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x86) | >= 7.0.0, < 7.0.5 | 7.0.7\n\n### <a name=\".NET 6\"></a>.NET 6\n\nPackage name | Affected version | Patched version\n------------ | ---------------- | -------------------------\n[Microsoft.Windows.Compatibility](https://www.nuget.org/packages/Microsoft.Windows.Compatibility) | >= 6.0.0, < 6.0.4 | 6.0.6\n[System.Security.Cryptography.Pkcs](https://www.nuget.org/packages/System.Security.Cryptography.Pkcs) | >= 6.0.0, < 6.0.2 | 6.0.3\n[Microsoft.NetCore.App.Runtime.linux-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-arm64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-musl-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm) | >= 6.0.1, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-musl-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-arm64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-musl-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-musl-x64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.linux-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.linux-x64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.osx-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-arm64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.osx-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.osx-x64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-arm](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-arm64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-arm64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-x64](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x64) | >= 6.0.0, < 6.0.16 | 6.0.18\n[Microsoft.NetCore.App.Runtime.win-x86](https://www.nuget.org/packages/Microsoft.NetCore.App.Runtime.win-x86) | >= 6.0.0, < 6.0.16 | 6.0.18\n\n\n## Advisory FAQ\n\n### <a name=\"how-affected\"></a>How do I know if I am affected?\n\nIf you have a runtime or SDK with a version listed, or an affected package listed in [affected software](#affected-software), you're exposed to the vulnerability.\n\n### <a name=\"how-fix\"></a>How do I fix the issue?\n\n* To fix the issue please install the latest version of .NET 6.0 or .NET 7.0. If you have installed one or more .NET SDKs through Visual Studio, Visual Studio will prompt you to update Visual Studio, which will also update your .NET SDKs.\n* If you are using one of the affected packages, please update to the patched version listed above.\n* If you have .NET 6.0 or greater installed, you can list the versions you have installed by running the `dotnet --info` command. You will see output like the following;\n\n```\n.NET Core SDK (reflecting any global.json):\n\n Version: 6.0.300\n Commit: 8473146e7d\n\nRuntime Environment:\n\n OS Name: Windows\n OS Version: 10.0.18363\n OS Platform: Windows\n RID: win10-x64\n Base Path: C:\\Program Files\\dotnet\\sdk\\6.0.300\\\n\nHost (useful for support):\n\n Version: 6.0.5\n Commit: 8473146e7d\n\n.NET Core SDKs installed:\n\n 6.0.300 [C:\\Program Files\\dotnet\\sdk]\n\n.NET Core runtimes installed:\n\n Microsoft.AspNetCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.AspNetCore.App]\n Microsoft.NETCore.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.NETCore.App]\n Microsoft.WindowsDesktop.App 6.0.5 [C:\\Program Files\\dotnet\\shared\\Microsoft.WindowsDesktop.App]\n\nTo install additional .NET Core runtimes or SDKs:\n https://aka.ms/dotnet-download\n```\n\n* If you're using .NET 7.0, you should download and install Runtime 7.0.7 or SDK 7.0.106 (for Visual Studio 2022 v17.4) from https://dotnet.microsoft.com/download/dotnet-core/7.0.\n* If you're using .NET 6.0, you should download and install Runtime 6.0.18 or SDK 6.0.312 (for Visual Studio 2022 v17.2) from https://dotnet.microsoft.com/download/dotnet-core/6.0.\n\n.NET 6.0 and and .NET 7.0 updates are also available from Microsoft Update. To access this either type \"Check for updates\" in your Windows search, or open Settings, choose Update & Security and then click Check for Updates.\n\nOnce you have installed the updated runtime or SDK, restart your apps for the update to take effect.\n\nAdditionally, if you've deployed [self-contained applications](https://docs.microsoft.com/dotnet/core/deploying/#self-contained-deployments-scd) targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.\n\n## Other Information\n\n### Reporting Security Issues\n\nIf you have found a potential security issue in .NET 6.0 or .NET 7.0, please email details to secure@microsoft.com. Reports may qualify for the Microsoft .NET Core & .NET 5 Bounty. Details of the Microsoft .NET Bounty Program including terms and conditions are at <https://aka.ms/corebounty>.\n\n### Support\n\nYou can ask questions about this issue on GitHub in the .NET GitHub organization. The main repos are located at https://github.com/dotnet/runtime and https://github.com/dotnet/aspnet/. The Announcements repo (https://github.com/dotnet/Announcements) will contain this bulletin as an issue and will include a link to a discussion issue. You can ask questions in the linked discussion issue.\n\n### Disclaimer\n\nThe information provided in this advisory is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.\n\n### External Links\n\n[CVE-2023-29331]( https://www.cve.org/CVERecord?id=2023-29331)\n\n### Revisions\n\nV1.0 (June 13, 2023): Advisory published.\n\n_Version 1.0_\n\n_Last Updated 2023-06-13_", id: "GHSA-555c-2p6r-68mm", modified: "2024-07-30T21:16:01Z", published: "2023-06-14T17:08:54Z", references: [ { type: "WEB", url: "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", }, { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", }, { type: "WEB", url: "https://github.com/dotnet/announcements/issues/257", }, { type: "PACKAGE", url: "https://github.com/dotnet/runtime", }, { type: "WEB", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, { type: "WEB", url: "https://support.microsoft.com/kb/5025823", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", type: "CVSS_V3", }, ], summary: ".NET Denial of Service vulnerability", }
gsd-2023-29331
Vulnerability from gsd
{ GSD: { alias: "CVE-2023-29331", id: "GSD-2023-29331", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2023-29331", ], details: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", id: "GSD-2023-29331", modified: "2023-12-13T01:20:57.339477Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "secure@microsoft.com", ID: "CVE-2023-29331", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: ".NET 6.0", version: { version_data: [ { version_affected: "<", version_name: "6.0.0", version_value: "6.0.18", }, ], }, }, { product_name: ".NET 7.0", version: { version_data: [ { version_affected: "<", version_name: "7.0.0", version_value: "7.0.7", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.0", version: { version_data: [ { version_affected: "<", version_name: "17.0.0", version_value: "17.0.22", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.2", version: { version_data: [ { version_affected: "<", version_name: "17.2.0", version_value: "17.2.16", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.4", version: { version_data: [ { version_affected: "<", version_name: "17.4.0", version_value: "17.4.8", }, ], }, }, { product_name: "Microsoft Visual Studio 2022 version 17.6", version: { version_data: [ { version_affected: "<", version_name: "17.6.0", version_value: "17.6.3", }, ], }, }, { product_name: "PowerShell 7.2", version: { version_data: [ { version_affected: "<", version_name: "7.2.0", version_value: "7.2.12", }, ], }, }, { product_name: "PowerShell 7.3", version: { version_data: [ { version_affected: "<", version_name: "7.3.0", version_value: "7.3.5", }, ], }, }, { product_name: "Microsoft .NET Framework 4.8", version: { version_data: [ { version_affected: "<", version_name: "4.8.0", version_value: "4.8.4644.0", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5 AND 4.8", version: { version_data: [ { version_affected: "<", version_name: "4.8.0", version_value: "4.8.4644.0", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5 AND 4.7.2", version: { version_data: [ { version_affected: "<", version_name: "4.7.0", version_value: "4.7.4050.0", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", version: { version_data: [ { version_affected: "<", version_name: "3.0.0.0", version_value: "10.0.14393.5989", }, ], }, }, { product_name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", version: { version_data: [ { version_affected: "<", version_name: "4.7.0", version_value: "4.7.04043.0", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5 AND 4.8.1", version: { version_data: [ { version_affected: "<", version_name: "4.8.1", version_value: "4.8.9166.0", }, ], }, }, { product_name: "Microsoft .NET Framework 4.6.2", version: { version_data: [ { version_affected: "<", version_name: "4.7.0", version_value: "4.7.04043.0", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5 and 4.6.2", version: { version_data: [ { version_affected: "<", version_name: "4.7.0", version_value: "10.0.10240.19983", }, ], }, }, { product_name: "Microsoft .NET Framework 2.0 Service Pack 2", version: { version_data: [ { version_affected: "<", version_name: "2.0.0", version_value: "3.0.6920.8954; 2.0.50727.8970", }, ], }, }, { product_name: "Microsoft .NET Framework 3.0 Service Pack 2", version: { version_data: [ { version_affected: "<", version_name: "3.0.0", version_value: "3.0.6920.8954; 2.0.50727.8970", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5", version: { version_data: [ { version_affected: "<", version_name: "3.5.0", version_value: "3.0.6920.8954; 2.0.50727.8970", }, ], }, }, { product_name: "Microsoft .NET Framework 3.5.1", version: { version_data: [ { version_affected: "<", version_name: "3.5.0", version_value: "3.0.6920.8954; 2.0.50727.8970", }, ], }, }, ], }, vendor_name: "Microsoft", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", }, ], }, impact: { cvss: [ { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Denial of Service", }, ], }, ], }, references: { reference_data: [ { name: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", refsource: "MISC", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-arm", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "8ab9cb12-3676-4e67-a839-39398a119561", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-arm64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "6a4dde3a-9bc4-45c8-9440-57f4f178ff2f", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "afd23bc7-0c19-4550-9755-9298430bf755", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-musl-arm64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "576af8c9-35cd-4278-bf12-eecfc787a316", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-musl-x64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "b53e7dcb-ee87-454f-8896-ab6771a03c9f", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.linux-x64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "67f548a5-aafc-4993-be9f-edaf0cf4bb10", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.osx-arm64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "6100ceb5-8a24-4636-8422-eed7c6998f76", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.osx-x64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "d543efed-a86f-452d-9c4f-0fe2ad14b89b", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-arm", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "73adc168-5a6b-418a-bd7b-4a314dd9de45", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-arm64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "37245832-eba3-46cd-86b0-2c42e98aa6d9", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-x64", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "349a2425-1bfc-4f9a-8ba4-35d5dc01a242", }, { affected_range: "[6.0.0,6.0.16],[7.0.0,7.0.5]", affected_versions: "All versions starting from 6.0.0 up to 6.0.16, all versions starting from 7.0.0 up to 7.0.5", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.18", "7.0.7", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.16 before 7.0.0, all versions after 7.0.5", package_slug: "nuget/Microsoft.NetCore.App.Runtime.win-x86", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.18, 7.0.7 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "cf50bd57-0888-4fcb-b1b7-011368d2a866", }, { affected_range: "[6.0.0,6.0.4],[7.0.0,7.0.1]", affected_versions: "All versions starting from 6.0.0 up to 6.0.4, all versions starting from 7.0.0 up to 7.0.1", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.6", "7.0.3", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.4 before 7.0.0, all versions after 7.0.1", package_slug: "nuget/Microsoft.Windows.Compatibility", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.6, 7.0.3 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "cfdc2e84-d6f7-4817-834f-eefcc064e4fd", }, { affected_range: "[6.0.0,6.0.2],[7.0.0,7.0.1]", affected_versions: "All versions starting from 6.0.0 up to 6.0.2, all versions starting from 7.0.0 up to 7.0.1", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-78", "CWE-937", ], date: "2023-06-14", description: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", fixed_versions: [ "6.0.3", "7.0.2", ], identifier: "CVE-2023-29331", identifiers: [ "GHSA-555c-2p6r-68mm", "CVE-2023-29331", ], not_impacted: "All versions before 6.0.0, all versions after 6.0.2 before 7.0.0, all versions after 7.0.1", package_slug: "nuget/System.Security.Cryptography.Pkcs", pubdate: "2023-06-14", solution: "Upgrade to versions 6.0.3, 7.0.2 or above.", title: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", urls: [ "https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm", "https://nvd.nist.gov/vuln/detail/CVE-2023-29331", "https://github.com/dotnet/announcements/issues/257", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", "https://support.microsoft.com/kb/5025823", "https://github.com/advisories/GHSA-555c-2p6r-68mm", ], uuid: "9ed7a65b-c26c-43fd-b75e-2af118075399", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "secure@microsoft.com", ID: "CVE-2023-29331", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], }, ], }, references: { reference_data: [ { name: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", refsource: "MISC", tags: [ "Patch", "Vendor Advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, ], }, }, impact: { baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, }, }, lastModifiedDate: "2023-06-22T20:10Z", publishedDate: "2023-06-14T15:15Z", }, }, }
ncsc-2024-0246
Vulnerability from csaf_ncscnl
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", }, }, lang: "nl", notes: [ { category: "legal_disclaimer", text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.", }, { category: "description", text: "Siemens heeft kwetsbaarheden verholpen in diverse producten, zoals SCALANCE, SICAM, Tecnomatix, SITOP en PowerSys.", title: "Feiten", }, { category: "description", text: "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van beveiligingsmaatregel\n- (Remote) code execution (Administrator/Root rechten)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n- Verhoogde gebruikersrechten\n\nDe kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.\n", title: "Interpretaties", }, { category: "description", text: "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.", title: "Oplossingen", }, { category: "general", text: "medium", title: "Kans", }, { category: "general", text: "high", title: "Schade", }, { category: "general", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "general", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "general", text: "Heap-based Buffer Overflow", title: "CWE-122", }, { category: "general", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "general", text: "Write-what-where Condition", title: "CWE-123", }, { category: "general", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, { category: "general", text: "Improper Null Termination", title: "CWE-170", }, { category: "general", text: "Integer Overflow or Wraparound", title: "CWE-190", }, { category: "general", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "general", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "Improper Privilege Management", title: "CWE-269", }, { category: "general", text: "Improper Authentication", title: "CWE-287", }, { category: "general", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "general", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "general", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, { category: "general", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, { category: "general", text: "Missing Cryptographic Step", title: "CWE-325", }, { category: "general", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "general", text: "Use of Weak Hash", title: "CWE-328", }, { category: "general", text: "Use of Insufficiently Random Values", title: "CWE-330", }, { category: "general", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, { category: "general", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, { category: "general", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "general", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, { category: "general", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "general", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "general", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "general", text: "Double Free", title: "CWE-415", }, { category: "general", text: "Use After Free", title: "CWE-416", }, { category: "general", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "Insufficiently Protected Credentials", title: "CWE-522", }, { category: "general", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, { category: "general", text: "Insufficient Session Expiration", title: "CWE-613", }, { category: "general", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, { category: "general", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, { category: "general", text: "Improper Locking", title: "CWE-667", }, { category: "general", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "general", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, { category: "general", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, { category: "general", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "general", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "general", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, { category: "general", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "general", text: "Deadlock", title: "CWE-833", }, { category: "general", text: "Excessive Iteration", title: "CWE-834", }, { category: "general", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, { category: "general", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], publisher: { category: "coordinator", contact_details: "cert@ncsc.nl", name: "Nationaal Cyber Security Centrum", namespace: "https://www.ncsc.nl/", }, references: [ { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-024584.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-196737.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-238730.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-319319.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-337522.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-481506.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-540640.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-620338.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-625862.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-690517.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-879734.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-900277.pdf", }, ], title: "Kwetsbaarheden verholpen in Siemens producten", tracking: { current_release_date: "2024-06-11T13:29:25.912614Z", id: "NCSC-2024-0246", initial_release_date: "2024-06-11T13:29:25.912614Z", revision_history: [ { date: "2024-06-11T13:29:25.912614Z", number: "0", summary: "Initiele versie", }, ], status: "final", version: "1.0.0", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "mendix", product: { name: "mendix", product_id: "CSAFPID-538452", product_identification_helper: { cpe: "cpe:2.3:a:siemens:mendix:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "simatic", product: { name: "simatic", product_id: "CSAFPID-166121", product_identification_helper: { cpe: "cpe:2.3:a:siemens:simatic:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sinec-nms", product: { name: "sinec-nms", product_id: "CSAFPID-163798", product_identification_helper: { cpe: "cpe:2.3:a:siemens:sinec-nms:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tecnomatix_plant_simulation", product: { name: "tecnomatix_plant_simulation", product_id: "CSAFPID-166120", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tecnomatix_plant_simulation:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tia_administrator", product: { name: "tia_administrator", product_id: "CSAFPID-766096", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_w700", product: { name: "scalance_w700", product_id: "CSAFPID-1009262", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xm-400", product: { name: "scalance_xm-400", product_id: "CSAFPID-1014214", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xr-500", product: { name: "scalance_xr-500", product_id: "CSAFPID-1014213", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xr-500:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_ak_3", product: { name: "sicam_ak_3", product_id: "CSAFPID-1007975", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_ak_3:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_bc", product: { name: "sicam_bc", product_id: "CSAFPID-1007979", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_bc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_tm", product: { name: "sicam_tm", product_id: "CSAFPID-1007978", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_tm:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "siplus_tim_1531_irc", product: { name: "siplus_tim_1531_irc", product_id: "CSAFPID-1326635", product_identification_helper: { cpe: "cpe:2.3:h:siemens:siplus_tim_1531_irc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sitop_ups1600", product: { name: "sitop_ups1600", product_id: "CSAFPID-1037908", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sitop_ups1600:-:*:*:*:*:*:*:*", }, }, }, ], category: "vendor", name: "siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2023-28319", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-28319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28319.json", }, ], title: "CVE-2023-28319", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-28484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28484.json", }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-29331", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29331.json", }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2023-29469", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29469.json", }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-32032", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-32032.json", }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33126", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33126.json", }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-1220", name: "Insufficient Granularity of Access Control", }, notes: [ { category: "other", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33127", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33127.json", }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-33128", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33128.json", }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33135", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33135.json", }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33170", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33170.json", }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35390", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35390.json", }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35391", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35391.json", }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-35788", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-35788", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35788.json", }, ], title: "CVE-2023-35788", }, { cve: "CVE-2023-35823", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35823", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35823.json", }, ], title: "CVE-2023-35823", }, { cve: "CVE-2023-35824", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35824", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35824.json", }, ], title: "CVE-2023-35824", }, { cve: "CVE-2023-35828", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35828", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35828.json", }, ], title: "CVE-2023-35828", }, { cve: "CVE-2023-35829", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-35829", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35829.json", }, ], title: "CVE-2023-35829", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36038", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36038.json", }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], references: [ { category: "self", summary: "CVE-2023-36049", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36049.json", }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36435.json", }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36558", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36558.json", }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2023-36792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36792.json", }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-36793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36793.json", }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-36794", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36794.json", }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, ], references: [ { category: "self", summary: "CVE-2023-36796", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36796.json", }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36799", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36799.json", }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38171", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38171.json", }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38178.json", }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38180", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38180.json", }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-38380", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, ], references: [ { category: "self", summary: "CVE-2023-38380", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38380.json", }, ], title: "CVE-2023-38380", }, { cve: "CVE-2023-38533", cwe: { id: "CWE-379", name: "Creation of Temporary File in Directory with Insecure Permissions", }, notes: [ { category: "other", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, ], references: [ { category: "self", summary: "CVE-2023-38533", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38533.json", }, ], title: "CVE-2023-38533", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-39615", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39615.json", }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-41910", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-41910", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41910.json", }, ], title: "CVE-2023-41910", }, { cve: "CVE-2023-44317", cwe: { id: "CWE-349", name: "Acceptance of Extraneous Untrusted Data With Trusted Data", }, notes: [ { category: "other", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, ], references: [ { category: "self", summary: "CVE-2023-44317", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44317.json", }, ], title: "CVE-2023-44317", }, { cve: "CVE-2023-44318", cwe: { id: "CWE-321", name: "Use of Hard-coded Cryptographic Key", }, notes: [ { category: "other", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, ], references: [ { category: "self", summary: "CVE-2023-44318", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44318.json", }, ], title: "CVE-2023-44318", }, { cve: "CVE-2023-44319", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, notes: [ { category: "other", text: "Use of Weak Hash", title: "CWE-328", }, ], references: [ { category: "self", summary: "CVE-2023-44319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44319.json", }, ], title: "CVE-2023-44319", }, { cve: "CVE-2023-44373", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2023-44373", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44373.json", }, ], title: "CVE-2023-44373", }, { cve: "CVE-2023-44374", cwe: { id: "CWE-567", name: "Unsynchronized Access to Shared Data in a Multithreaded Context", }, notes: [ { category: "other", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, ], references: [ { category: "self", summary: "CVE-2023-44374", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44374.json", }, ], title: "CVE-2023-44374", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-44487", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json", }, ], title: "CVE-2023-44487", }, { cve: "CVE-2023-49691", cwe: { id: "CWE-78", name: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, ], references: [ { category: "self", summary: "CVE-2023-49691", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-49691.json", }, ], title: "CVE-2023-49691", }, { cve: "CVE-2023-50763", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, notes: [ { category: "other", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, ], references: [ { category: "self", summary: "CVE-2023-50763", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-50763.json", }, ], title: "CVE-2023-50763", }, { cve: "CVE-2023-52474", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-52474", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52474.json", }, ], title: "CVE-2023-52474", }, { cve: "CVE-2024-0775", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-0775", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0775.json", }, ], title: "CVE-2024-0775", }, { cve: "CVE-2024-31484", cwe: { id: "CWE-170", name: "Improper Null Termination", }, notes: [ { category: "other", text: "Improper Null Termination", title: "CWE-170", }, ], references: [ { category: "self", summary: "CVE-2024-31484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-31484.json", }, ], title: "CVE-2024-31484", }, { cve: "CVE-2024-33500", cwe: { id: "CWE-269", name: "Improper Privilege Management", }, notes: [ { category: "other", text: "Improper Privilege Management", title: "CWE-269", }, ], references: [ { category: "self", summary: "CVE-2024-33500", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33500.json", }, ], title: "CVE-2024-33500", }, { cve: "CVE-2024-35206", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, notes: [ { category: "other", text: "Insufficient Session Expiration", title: "CWE-613", }, ], references: [ { category: "self", summary: "CVE-2024-35206", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35206.json", }, ], title: "CVE-2024-35206", }, { cve: "CVE-2024-35207", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, notes: [ { category: "other", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, ], references: [ { category: "self", summary: "CVE-2024-35207", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35207.json", }, ], title: "CVE-2024-35207", }, { cve: "CVE-2024-35208", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, notes: [ { category: "other", text: "Insufficiently Protected Credentials", title: "CWE-522", }, ], references: [ { category: "self", summary: "CVE-2024-35208", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35208.json", }, ], title: "CVE-2024-35208", }, { cve: "CVE-2024-35209", cwe: { id: "CWE-749", name: "Exposed Dangerous Method or Function", }, notes: [ { category: "other", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, ], references: [ { category: "self", summary: "CVE-2024-35209", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35209.json", }, ], title: "CVE-2024-35209", }, { cve: "CVE-2024-35210", cwe: { id: "CWE-319", name: "Cleartext Transmission of Sensitive Information", }, notes: [ { category: "other", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, ], references: [ { category: "self", summary: "CVE-2024-35210", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35210.json", }, ], title: "CVE-2024-35210", }, { cve: "CVE-2024-35211", cwe: { id: "CWE-614", name: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", }, notes: [ { category: "other", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, ], references: [ { category: "self", summary: "CVE-2024-35211", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35211.json", }, ], title: "CVE-2024-35211", }, { cve: "CVE-2024-35212", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-35212", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35212.json", }, ], title: "CVE-2024-35212", }, { cve: "CVE-2024-35292", cwe: { id: "CWE-330", name: "Use of Insufficiently Random Values", }, notes: [ { category: "other", text: "Use of Insufficiently Random Values", title: "CWE-330", }, ], references: [ { category: "self", summary: "CVE-2024-35292", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35292.json", }, ], title: "CVE-2024-35292", }, { cve: "CVE-2024-35303", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, ], product_status: { known_affected: [ "CSAFPID-166120", ], }, references: [ { category: "self", summary: "CVE-2024-35303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35303.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-166120", ], }, ], title: "CVE-2024-35303", }, { cve: "CVE-2024-36266", cwe: { id: "CWE-287", name: "Improper Authentication", }, notes: [ { category: "other", text: "Improper Authentication", title: "CWE-287", }, ], references: [ { category: "self", summary: "CVE-2024-36266", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36266.json", }, ], title: "CVE-2024-36266", }, { cve: "CVE-2021-47178", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, notes: [ { category: "other", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2021-47178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-47178.json", }, ], title: "CVE-2021-47178", }, { cve: "CVE-2022-1015", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-1015", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-1015.json", }, ], title: "CVE-2022-1015", }, { cve: "CVE-2022-2097", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2022-2097", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-2097.json", }, ], title: "CVE-2022-2097", }, { cve: "CVE-2022-3435", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2022-3435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3435.json", }, ], title: "CVE-2022-3435", }, { cve: "CVE-2022-3545", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-3545", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3545.json", }, ], title: "CVE-2022-3545", }, { cve: "CVE-2022-3623", cwe: { id: "CWE-123", name: "Write-what-where Condition", }, notes: [ { category: "other", text: "Write-what-where Condition", title: "CWE-123", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-3623", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3623.json", }, ], title: "CVE-2022-3623", }, { cve: "CVE-2022-3643", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-3643", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3643.json", }, ], title: "CVE-2022-3643", }, { cve: "CVE-2022-4304", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, ], references: [ { category: "self", summary: "CVE-2022-4304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4304.json", }, ], title: "CVE-2022-4304", }, { cve: "CVE-2022-4450", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-4450", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4450.json", }, ], title: "CVE-2022-4450", }, { cve: "CVE-2022-36323", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-36323", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36323.json", }, ], title: "CVE-2022-36323", }, { cve: "CVE-2022-39189", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, ], references: [ { category: "self", summary: "CVE-2022-39189", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-39189.json", }, ], title: "CVE-2022-39189", }, { cve: "CVE-2022-40225", cwe: { id: "CWE-681", name: "Incorrect Conversion between Numeric Types", }, notes: [ { category: "other", text: "Incorrect Conversion between Numeric Types", title: "CWE-681", }, ], references: [ { category: "self", summary: "CVE-2022-40225", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40225.json", }, ], title: "CVE-2022-40225", }, { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2022-40303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40303.json", }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-40304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40304.json", }, ], title: "CVE-2022-40304", }, { cve: "CVE-2022-41742", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-41742", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-41742.json", }, ], title: "CVE-2022-41742", }, { cve: "CVE-2022-42328", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42328", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42328.json", }, ], title: "CVE-2022-42328", }, { cve: "CVE-2022-42329", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42329", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42329.json", }, ], title: "CVE-2022-42329", }, { cve: "CVE-2022-44792", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44792.json", }, ], title: "CVE-2022-44792", }, { cve: "CVE-2022-44793", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44793.json", }, ], title: "CVE-2022-44793", }, { cve: "CVE-2022-45886", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2022-45886", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45886.json", }, ], title: "CVE-2022-45886", }, { cve: "CVE-2022-45887", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-45887", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45887.json", }, ], title: "CVE-2022-45887", }, { cve: "CVE-2022-45919", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-45919", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45919.json", }, ], title: "CVE-2022-45919", }, { cve: "CVE-2022-46144", cwe: { id: "CWE-664", name: "Improper Control of a Resource Through its Lifetime", }, notes: [ { category: "other", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, ], references: [ { category: "self", summary: "CVE-2022-46144", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-46144.json", }, ], title: "CVE-2022-46144", }, { cve: "CVE-2023-0160", cwe: { id: "CWE-833", name: "Deadlock", }, notes: [ { category: "other", text: "Deadlock", title: "CWE-833", }, { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-0160", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0160.json", }, ], title: "CVE-2023-0160", }, { cve: "CVE-2023-0215", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-0215", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json", }, ], title: "CVE-2023-0215", }, { cve: "CVE-2023-0286", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-0286", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json", }, ], title: "CVE-2023-0286", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-0464", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0464.json", }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0465", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0465.json", }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0466", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0466.json", }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-1017", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-1017", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-1017.json", }, ], title: "CVE-2023-1017", }, { cve: "CVE-2023-2124", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-2124", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2124.json", }, ], title: "CVE-2023-2124", }, { cve: "CVE-2023-2269", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-2269", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2269.json", }, ], title: "CVE-2023-2269", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, ], references: [ { category: "self", summary: "CVE-2023-3446", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3446.json", }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-3817", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Excessive Iteration", title: "CWE-834", }, ], references: [ { category: "self", summary: "CVE-2023-3817", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3817.json", }, ], title: "CVE-2023-3817", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "other", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2023-5678", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5678.json", }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21255", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-21255", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21255.json", }, ], title: "CVE-2023-21255", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-21808", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21808.json", }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24895", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24895.json", }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-24897", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24897.json", }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24936", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24936.json", }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-26552", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26552", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26552.json", }, ], title: "CVE-2023-26552", }, { cve: "CVE-2023-26553", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26553", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26553.json", }, ], title: "CVE-2023-26553", }, { cve: "CVE-2023-26554", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26554", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26554.json", }, ], title: "CVE-2023-26554", }, { cve: "CVE-2023-27321", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-27321", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-27321.json", }, ], title: "CVE-2023-27321", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-28260", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28260.json", }, ], title: "CVE-2023-28260", }, ], }
NCSC-2024-0246
Vulnerability from csaf_ncscnl
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", }, }, lang: "nl", notes: [ { category: "legal_disclaimer", text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.", }, { category: "description", text: "Siemens heeft kwetsbaarheden verholpen in diverse producten, zoals SCALANCE, SICAM, Tecnomatix, SITOP en PowerSys.", title: "Feiten", }, { category: "description", text: "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van beveiligingsmaatregel\n- (Remote) code execution (Administrator/Root rechten)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n- Verhoogde gebruikersrechten\n\nDe kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.\n", title: "Interpretaties", }, { category: "description", text: "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.", title: "Oplossingen", }, { category: "general", text: "medium", title: "Kans", }, { category: "general", text: "high", title: "Schade", }, { category: "general", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "general", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "general", text: "Heap-based Buffer Overflow", title: "CWE-122", }, { category: "general", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "general", text: "Write-what-where Condition", title: "CWE-123", }, { category: "general", text: "Out-of-bounds Read", title: "CWE-125", }, { category: "general", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, { category: "general", text: "Improper Null Termination", title: "CWE-170", }, { category: "general", text: "Integer Overflow or Wraparound", title: "CWE-190", }, { category: "general", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "general", text: "Improper Input Validation", title: "CWE-20", }, { category: "general", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "general", text: "Improper Privilege Management", title: "CWE-269", }, { category: "general", text: "Improper Authentication", title: "CWE-287", }, { category: "general", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "general", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "general", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, { category: "general", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, { category: "general", text: "Missing Cryptographic Step", title: "CWE-325", }, { category: "general", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "general", text: "Use of Weak Hash", title: "CWE-328", }, { category: "general", text: "Use of Insufficiently Random Values", title: "CWE-330", }, { category: "general", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, { category: "general", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, { category: "general", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "general", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, { category: "general", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "general", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "general", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "general", text: "Double Free", title: "CWE-415", }, { category: "general", text: "Use After Free", title: "CWE-416", }, { category: "general", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "general", text: "Insufficiently Protected Credentials", title: "CWE-522", }, { category: "general", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, { category: "general", text: "Insufficient Session Expiration", title: "CWE-613", }, { category: "general", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, { category: "general", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, { category: "general", text: "Improper Locking", title: "CWE-667", }, { category: "general", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "general", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, { category: "general", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, { category: "general", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "general", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "general", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, { category: "general", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "general", text: "Deadlock", title: "CWE-833", }, { category: "general", text: "Excessive Iteration", title: "CWE-834", }, { category: "general", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, { category: "general", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], publisher: { category: "coordinator", contact_details: "cert@ncsc.nl", name: "Nationaal Cyber Security Centrum", namespace: "https://www.ncsc.nl/", }, references: [ { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-024584.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-196737.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-238730.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-319319.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-337522.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-481506.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-540640.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-620338.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-625862.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-690517.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-879734.pdf", }, { category: "external", summary: "Reference - ncscclear; siemens", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-900277.pdf", }, ], title: "Kwetsbaarheden verholpen in Siemens producten", tracking: { current_release_date: "2024-06-11T13:29:25.912614Z", id: "NCSC-2024-0246", initial_release_date: "2024-06-11T13:29:25.912614Z", revision_history: [ { date: "2024-06-11T13:29:25.912614Z", number: "0", summary: "Initiele versie", }, ], status: "final", version: "1.0.0", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "mendix", product: { name: "mendix", product_id: "CSAFPID-538452", product_identification_helper: { cpe: "cpe:2.3:a:siemens:mendix:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "simatic", product: { name: "simatic", product_id: "CSAFPID-166121", product_identification_helper: { cpe: "cpe:2.3:a:siemens:simatic:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sinec-nms", product: { name: "sinec-nms", product_id: "CSAFPID-163798", product_identification_helper: { cpe: "cpe:2.3:a:siemens:sinec-nms:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tecnomatix_plant_simulation", product: { name: "tecnomatix_plant_simulation", product_id: "CSAFPID-166120", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tecnomatix_plant_simulation:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "tia_administrator", product: { name: "tia_administrator", product_id: "CSAFPID-766096", product_identification_helper: { cpe: "cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_w700", product: { name: "scalance_w700", product_id: "CSAFPID-1009262", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xm-400", product: { name: "scalance_xm-400", product_id: "CSAFPID-1014214", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "scalance_xr-500", product: { name: "scalance_xr-500", product_id: "CSAFPID-1014213", product_identification_helper: { cpe: "cpe:2.3:h:siemens:scalance_xr-500:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_ak_3", product: { name: "sicam_ak_3", product_id: "CSAFPID-1007975", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_ak_3:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_bc", product: { name: "sicam_bc", product_id: "CSAFPID-1007979", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_bc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sicam_tm", product: { name: "sicam_tm", product_id: "CSAFPID-1007978", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sicam_tm:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "siplus_tim_1531_irc", product: { name: "siplus_tim_1531_irc", product_id: "CSAFPID-1326635", product_identification_helper: { cpe: "cpe:2.3:h:siemens:siplus_tim_1531_irc:-:*:*:*:*:*:*:*", }, }, }, { category: "product_name", name: "sitop_ups1600", product: { name: "sitop_ups1600", product_id: "CSAFPID-1037908", product_identification_helper: { cpe: "cpe:2.3:h:siemens:sitop_ups1600:-:*:*:*:*:*:*:*", }, }, }, ], category: "vendor", name: "siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2023-28319", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-28319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28319.json", }, ], title: "CVE-2023-28319", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-28484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28484.json", }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-29331", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29331.json", }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2023-29469", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29469.json", }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-32032", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-32032.json", }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33126", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33126.json", }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-1220", name: "Insufficient Granularity of Access Control", }, notes: [ { category: "other", text: "Insufficient Granularity of Access Control", title: "CWE-1220", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33127", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33127.json", }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-33128", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33128.json", }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33135", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33135.json", }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-33170", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33170.json", }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", title: "CWE-77", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35390", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35390.json", }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, notes: [ { category: "other", text: "Exposure of Sensitive Information to an Unauthorized Actor", title: "CWE-200", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-35391", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35391.json", }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-35788", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-35788", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35788.json", }, ], title: "CVE-2023-35788", }, { cve: "CVE-2023-35823", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35823", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35823.json", }, ], title: "CVE-2023-35823", }, { cve: "CVE-2023-35824", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35824", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35824.json", }, ], title: "CVE-2023-35824", }, { cve: "CVE-2023-35828", cwe: { id: "CWE-362", name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", }, notes: [ { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2023-35828", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35828.json", }, ], title: "CVE-2023-35828", }, { cve: "CVE-2023-35829", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-35829", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-35829.json", }, ], title: "CVE-2023-35829", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36038", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36038.json", }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Improper Control of Generation of Code ('Code Injection')", title: "CWE-94", }, ], references: [ { category: "self", summary: "CVE-2023-36049", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36049.json", }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36435.json", }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36558", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36558.json", }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2023-36792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36792.json", }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-36793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36793.json", }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-36794", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36794.json", }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, { category: "other", text: "Integer Underflow (Wrap or Wraparound)", title: "CWE-191", }, ], references: [ { category: "self", summary: "CVE-2023-36796", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36796.json", }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-36799", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36799.json", }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38171", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38171.json", }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38178.json", }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-38180", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38180.json", }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-38380", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, ], references: [ { category: "self", summary: "CVE-2023-38380", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38380.json", }, ], title: "CVE-2023-38380", }, { cve: "CVE-2023-38533", cwe: { id: "CWE-379", name: "Creation of Temporary File in Directory with Insecure Permissions", }, notes: [ { category: "other", text: "Creation of Temporary File in Directory with Insecure Permissions", title: "CWE-379", }, ], references: [ { category: "self", summary: "CVE-2023-38533", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38533.json", }, ], title: "CVE-2023-38533", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, ], references: [ { category: "self", summary: "CVE-2023-39615", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39615.json", }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-41910", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, notes: [ { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-41910", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41910.json", }, ], title: "CVE-2023-41910", }, { cve: "CVE-2023-44317", cwe: { id: "CWE-349", name: "Acceptance of Extraneous Untrusted Data With Trusted Data", }, notes: [ { category: "other", text: "Acceptance of Extraneous Untrusted Data With Trusted Data", title: "CWE-349", }, ], references: [ { category: "self", summary: "CVE-2023-44317", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44317.json", }, ], title: "CVE-2023-44317", }, { cve: "CVE-2023-44318", cwe: { id: "CWE-321", name: "Use of Hard-coded Cryptographic Key", }, notes: [ { category: "other", text: "Use of Hard-coded Cryptographic Key", title: "CWE-321", }, ], references: [ { category: "self", summary: "CVE-2023-44318", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44318.json", }, ], title: "CVE-2023-44318", }, { cve: "CVE-2023-44319", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, notes: [ { category: "other", text: "Use of Weak Hash", title: "CWE-328", }, ], references: [ { category: "self", summary: "CVE-2023-44319", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44319.json", }, ], title: "CVE-2023-44319", }, { cve: "CVE-2023-44373", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2023-44373", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44373.json", }, ], title: "CVE-2023-44373", }, { cve: "CVE-2023-44374", cwe: { id: "CWE-567", name: "Unsynchronized Access to Shared Data in a Multithreaded Context", }, notes: [ { category: "other", text: "Unsynchronized Access to Shared Data in a Multithreaded Context", title: "CWE-567", }, ], references: [ { category: "self", summary: "CVE-2023-44374", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44374.json", }, ], title: "CVE-2023-44374", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-44487", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json", }, ], title: "CVE-2023-44487", }, { cve: "CVE-2023-49691", cwe: { id: "CWE-78", name: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", title: "CWE-78", }, ], references: [ { category: "self", summary: "CVE-2023-49691", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-49691.json", }, ], title: "CVE-2023-49691", }, { cve: "CVE-2023-50763", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, notes: [ { category: "other", text: "Loop with Unreachable Exit Condition ('Infinite Loop')", title: "CWE-835", }, ], references: [ { category: "self", summary: "CVE-2023-50763", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-50763.json", }, ], title: "CVE-2023-50763", }, { cve: "CVE-2023-52474", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-52474", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52474.json", }, ], title: "CVE-2023-52474", }, { cve: "CVE-2024-0775", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-0775", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0775.json", }, ], title: "CVE-2024-0775", }, { cve: "CVE-2024-31484", cwe: { id: "CWE-170", name: "Improper Null Termination", }, notes: [ { category: "other", text: "Improper Null Termination", title: "CWE-170", }, ], references: [ { category: "self", summary: "CVE-2024-31484", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-31484.json", }, ], title: "CVE-2024-31484", }, { cve: "CVE-2024-33500", cwe: { id: "CWE-269", name: "Improper Privilege Management", }, notes: [ { category: "other", text: "Improper Privilege Management", title: "CWE-269", }, ], references: [ { category: "self", summary: "CVE-2024-33500", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33500.json", }, ], title: "CVE-2024-33500", }, { cve: "CVE-2024-35206", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, notes: [ { category: "other", text: "Insufficient Session Expiration", title: "CWE-613", }, ], references: [ { category: "self", summary: "CVE-2024-35206", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35206.json", }, ], title: "CVE-2024-35206", }, { cve: "CVE-2024-35207", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, notes: [ { category: "other", text: "Cross-Site Request Forgery (CSRF)", title: "CWE-352", }, ], references: [ { category: "self", summary: "CVE-2024-35207", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35207.json", }, ], title: "CVE-2024-35207", }, { cve: "CVE-2024-35208", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, notes: [ { category: "other", text: "Insufficiently Protected Credentials", title: "CWE-522", }, ], references: [ { category: "self", summary: "CVE-2024-35208", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35208.json", }, ], title: "CVE-2024-35208", }, { cve: "CVE-2024-35209", cwe: { id: "CWE-749", name: "Exposed Dangerous Method or Function", }, notes: [ { category: "other", text: "Exposed Dangerous Method or Function", title: "CWE-749", }, ], references: [ { category: "self", summary: "CVE-2024-35209", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35209.json", }, ], title: "CVE-2024-35209", }, { cve: "CVE-2024-35210", cwe: { id: "CWE-319", name: "Cleartext Transmission of Sensitive Information", }, notes: [ { category: "other", text: "Cleartext Transmission of Sensitive Information", title: "CWE-319", }, ], references: [ { category: "self", summary: "CVE-2024-35210", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35210.json", }, ], title: "CVE-2024-35210", }, { cve: "CVE-2024-35211", cwe: { id: "CWE-614", name: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", }, notes: [ { category: "other", text: "Sensitive Cookie in HTTPS Session Without 'Secure' Attribute", title: "CWE-614", }, ], references: [ { category: "self", summary: "CVE-2024-35211", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35211.json", }, ], title: "CVE-2024-35211", }, { cve: "CVE-2024-35212", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2024-35212", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35212.json", }, ], title: "CVE-2024-35212", }, { cve: "CVE-2024-35292", cwe: { id: "CWE-330", name: "Use of Insufficiently Random Values", }, notes: [ { category: "other", text: "Use of Insufficiently Random Values", title: "CWE-330", }, ], references: [ { category: "self", summary: "CVE-2024-35292", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35292.json", }, ], title: "CVE-2024-35292", }, { cve: "CVE-2024-35303", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, ], product_status: { known_affected: [ "CSAFPID-166120", ], }, references: [ { category: "self", summary: "CVE-2024-35303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35303.json", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "CSAFPID-166120", ], }, ], title: "CVE-2024-35303", }, { cve: "CVE-2024-36266", cwe: { id: "CWE-287", name: "Improper Authentication", }, notes: [ { category: "other", text: "Improper Authentication", title: "CWE-287", }, ], references: [ { category: "self", summary: "CVE-2024-36266", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36266.json", }, ], title: "CVE-2024-36266", }, { cve: "CVE-2021-47178", cwe: { id: "CWE-121", name: "Stack-based Buffer Overflow", }, notes: [ { category: "other", text: "Stack-based Buffer Overflow", title: "CWE-121", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2021-47178", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-47178.json", }, ], title: "CVE-2021-47178", }, { cve: "CVE-2022-1015", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-1015", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-1015.json", }, ], title: "CVE-2022-1015", }, { cve: "CVE-2022-2097", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2022-2097", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-2097.json", }, ], title: "CVE-2022-2097", }, { cve: "CVE-2022-3435", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2022-3435", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3435.json", }, ], title: "CVE-2022-3435", }, { cve: "CVE-2022-3545", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "other", text: "Improper Restriction of Operations within the Bounds of a Memory Buffer", title: "CWE-119", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-3545", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3545.json", }, ], title: "CVE-2022-3545", }, { cve: "CVE-2022-3623", cwe: { id: "CWE-123", name: "Write-what-where Condition", }, notes: [ { category: "other", text: "Write-what-where Condition", title: "CWE-123", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-3623", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3623.json", }, ], title: "CVE-2022-3623", }, { cve: "CVE-2022-3643", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-3643", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3643.json", }, ], title: "CVE-2022-3643", }, { cve: "CVE-2022-4304", cwe: { id: "CWE-326", name: "Inadequate Encryption Strength", }, notes: [ { category: "other", text: "Inadequate Encryption Strength", title: "CWE-326", }, ], references: [ { category: "self", summary: "CVE-2022-4304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4304.json", }, ], title: "CVE-2022-4304", }, { cve: "CVE-2022-4450", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-4450", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-4450.json", }, ], title: "CVE-2022-4450", }, { cve: "CVE-2022-36323", cwe: { id: "CWE-74", name: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", }, notes: [ { category: "other", text: "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", title: "CWE-74", }, ], references: [ { category: "self", summary: "CVE-2022-36323", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-36323.json", }, ], title: "CVE-2022-36323", }, { cve: "CVE-2022-39189", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Missing Encryption of Sensitive Data", title: "CWE-311", }, ], references: [ { category: "self", summary: "CVE-2022-39189", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-39189.json", }, ], title: "CVE-2022-39189", }, { cve: "CVE-2022-40225", cwe: { id: "CWE-681", name: "Incorrect Conversion between Numeric Types", }, notes: [ { category: "other", text: "Incorrect Conversion between Numeric Types", title: "CWE-681", }, ], references: [ { category: "self", summary: "CVE-2022-40225", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40225.json", }, ], title: "CVE-2022-40225", }, { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "other", text: "Integer Overflow or Wraparound", title: "CWE-190", }, ], references: [ { category: "self", summary: "CVE-2022-40303", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40303.json", }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "other", text: "Double Free", title: "CWE-415", }, ], references: [ { category: "self", summary: "CVE-2022-40304", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-40304.json", }, ], title: "CVE-2022-40304", }, { cve: "CVE-2022-41742", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2022-41742", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-41742.json", }, ], title: "CVE-2022-41742", }, { cve: "CVE-2022-42328", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42328", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42328.json", }, ], title: "CVE-2022-42328", }, { cve: "CVE-2022-42329", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2022-42329", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42329.json", }, ], title: "CVE-2022-42329", }, { cve: "CVE-2022-44792", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44792", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44792.json", }, ], title: "CVE-2022-44792", }, { cve: "CVE-2022-44793", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2022-44793", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-44793.json", }, ], title: "CVE-2022-44793", }, { cve: "CVE-2022-45886", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2022-45886", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45886.json", }, ], title: "CVE-2022-45886", }, { cve: "CVE-2022-45887", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, notes: [ { category: "other", text: "Missing Release of Memory after Effective Lifetime", title: "CWE-401", }, { category: "other", text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", title: "CWE-362", }, ], references: [ { category: "self", summary: "CVE-2022-45887", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45887.json", }, ], title: "CVE-2022-45887", }, { cve: "CVE-2022-45919", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2022-45919", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-45919.json", }, ], title: "CVE-2022-45919", }, { cve: "CVE-2022-46144", cwe: { id: "CWE-664", name: "Improper Control of a Resource Through its Lifetime", }, notes: [ { category: "other", text: "Improper Control of a Resource Through its Lifetime", title: "CWE-664", }, ], references: [ { category: "self", summary: "CVE-2022-46144", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-46144.json", }, ], title: "CVE-2022-46144", }, { cve: "CVE-2023-0160", cwe: { id: "CWE-833", name: "Deadlock", }, notes: [ { category: "other", text: "Deadlock", title: "CWE-833", }, { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-0160", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0160.json", }, ], title: "CVE-2023-0160", }, { cve: "CVE-2023-0215", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-0215", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json", }, ], title: "CVE-2023-0215", }, { cve: "CVE-2023-0286", cwe: { id: "CWE-704", name: "Incorrect Type Conversion or Cast", }, notes: [ { category: "other", text: "Incorrect Type Conversion or Cast", title: "CWE-704", }, { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-0286", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json", }, ], title: "CVE-2023-0286", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, ], references: [ { category: "self", summary: "CVE-2023-0464", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0464.json", }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0465", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0465.json", }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "other", text: "Improper Certificate Validation", title: "CWE-295", }, ], references: [ { category: "self", summary: "CVE-2023-0466", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0466.json", }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-1017", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-1017", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-1017.json", }, ], title: "CVE-2023-1017", }, { cve: "CVE-2023-2124", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, { category: "other", text: "Out-of-bounds Read", title: "CWE-125", }, ], references: [ { category: "self", summary: "CVE-2023-2124", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2124.json", }, ], title: "CVE-2023-2124", }, { cve: "CVE-2023-2269", cwe: { id: "CWE-667", name: "Improper Locking", }, notes: [ { category: "other", text: "Improper Locking", title: "CWE-667", }, ], references: [ { category: "self", summary: "CVE-2023-2269", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-2269.json", }, ], title: "CVE-2023-2269", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "Inefficient Regular Expression Complexity", title: "CWE-1333", }, ], references: [ { category: "self", summary: "CVE-2023-3446", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3446.json", }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-3817", cwe: { id: "CWE-404", name: "Improper Resource Shutdown or Release", }, notes: [ { category: "other", text: "Improper Resource Shutdown or Release", title: "CWE-404", }, { category: "other", text: "Excessive Iteration", title: "CWE-834", }, ], references: [ { category: "self", summary: "CVE-2023-3817", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-3817.json", }, ], title: "CVE-2023-3817", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "other", text: "Improper Check for Unusual or Exceptional Conditions", title: "CWE-754", }, { category: "other", text: "Missing Cryptographic Step", title: "CWE-325", }, ], references: [ { category: "self", summary: "CVE-2023-5678", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5678.json", }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21255", cwe: { id: "CWE-416", name: "Use After Free", }, notes: [ { category: "other", text: "Use After Free", title: "CWE-416", }, { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-21255", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21255.json", }, ], title: "CVE-2023-21255", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Use After Free", title: "CWE-416", }, ], references: [ { category: "self", summary: "CVE-2023-21808", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-21808.json", }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24895", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24895.json", }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, { category: "other", text: "Heap-based Buffer Overflow", title: "CWE-122", }, ], references: [ { category: "self", summary: "CVE-2023-24897", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24897.json", }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-24936", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24936.json", }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-26552", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26552", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26552.json", }, ], title: "CVE-2023-26552", }, { cve: "CVE-2023-26553", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26553", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26553.json", }, ], title: "CVE-2023-26553", }, { cve: "CVE-2023-26554", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, notes: [ { category: "other", text: "Out-of-bounds Write", title: "CWE-787", }, ], references: [ { category: "self", summary: "CVE-2023-26554", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26554.json", }, ], title: "CVE-2023-26554", }, { cve: "CVE-2023-27321", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "other", text: "Uncontrolled Resource Consumption", title: "CWE-400", }, { category: "other", text: "NULL Pointer Dereference", title: "CWE-476", }, ], references: [ { category: "self", summary: "CVE-2023-27321", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-27321.json", }, ], title: "CVE-2023-27321", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "other", text: "Improper Input Validation", title: "CWE-20", }, ], references: [ { category: "self", summary: "CVE-2023-28260", url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28260.json", }, ], title: "CVE-2023-28260", }, ], }
fkie_cve-2023-29331
Vulnerability from fkie_nvd
▼ | URL | Tags | |
---|---|---|---|
secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331 | Patch, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331 | Patch, Vendor Advisory |
Vendor | Product | Version | |
---|---|---|---|
microsoft | .net_framework | 4.8 | |
microsoft | windows_10_1607 | - | |
microsoft | windows_10_1607 | - | |
microsoft | windows_server_2008 | r2 | |
microsoft | windows_server_2012 | - | |
microsoft | windows_server_2012 | r2 | |
microsoft | windows_server_2016 | - | |
microsoft | .net_framework | 4.6.2 | |
microsoft | .net_framework | 4.7 | |
microsoft | .net_framework | 4.7.1 | |
microsoft | .net_framework | 4.7.2 | |
microsoft | windows_server_2008 | r2 | |
microsoft | windows_server_2012 | - | |
microsoft | windows_server_2012 | r2 | |
microsoft | .net_framework | 4.6.2 | |
microsoft | windows_server_2008 | - | |
microsoft | windows_server_2008 | - | |
microsoft | windows_server_2012 | - | |
microsoft | windows_server_2012 | r2 | |
microsoft | .net_framework | 3.5.1 | |
microsoft | windows_server_2008 | r2 | |
microsoft | .net_framework | 3.5 | |
microsoft | .net_framework | 4.6.2 | |
microsoft | windows_10_1507 | - | |
microsoft | windows_10_1507 | - | |
microsoft | .net_framework | 3.5 | |
microsoft | .net_framework | 4.8.1 | |
microsoft | windows_10_1607 | - | |
microsoft | windows_10_1607 | - | |
microsoft | windows_10_21h2 | - | |
microsoft | windows_10_21h2 | - | |
microsoft | windows_10_21h2 | - | |
microsoft | windows_10_22h2 | - | |
microsoft | windows_10_22h2 | - | |
microsoft | windows_10_22h2 | - | |
microsoft | windows_11_21h2 | - | |
microsoft | windows_11_21h2 | - | |
microsoft | windows_11_22h2 | - | |
microsoft | windows_11_22h2 | - | |
microsoft | windows_server_2022 | - | |
microsoft | .net_framework | 3.5 | |
microsoft | .net_framework | 4.8 | |
microsoft | windows_10_1607 | - | |
microsoft | windows_10_1607 | - | |
microsoft | windows_10_1809 | - | |
microsoft | windows_10_1809 | - | |
microsoft | windows_10_21h2 | - | |
microsoft | windows_10_21h2 | - | |
microsoft | windows_10_21h2 | - | |
microsoft | windows_10_22h2 | - | |
microsoft | windows_10_22h2 | - | |
microsoft | windows_10_22h2 | - | |
microsoft | windows_11_21h2 | - | |
microsoft | windows_11_21h2 | - | |
microsoft | windows_11_22h2 | - | |
microsoft | windows_11_22h2 | - | |
microsoft | windows_server_2019 | - | |
microsoft | windows_server_2022 | - | |
microsoft | .net_framework | 3.5 | |
microsoft | .net_framework | 4.7.2 | |
microsoft | windows_10_1809 | - | |
microsoft | windows_10_1809 | - | |
microsoft | windows_server_2019 | - | |
microsoft | .net_framework | 3.5 | |
microsoft | .net_framework | 4.6.2 | |
microsoft | .net_framework | 4.7 | |
microsoft | .net_framework | 4.7.1 | |
microsoft | .net_framework | 4.7.2 | |
microsoft | windows_10_1607 | - | |
microsoft | windows_10_1607 | - | |
microsoft | windows_server_2016 | - | |
microsoft | .net_framework | 3.5 | |
microsoft | windows_server_2012 | - | |
microsoft | windows_server_2012 | r2 | |
microsoft | .net_framework | 3.0 | |
microsoft | windows_server_2008 | - | |
microsoft | windows_server_2008 | - | |
microsoft | .net_framework | 2.0 | |
microsoft | windows_server_2008 | - | |
microsoft | windows_server_2008 | - | |
microsoft | .net | 6.0.0 | |
microsoft | .net | 7.0.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*", matchCriteriaId: "2D3F18AF-84ED-473B-A8DF-65EB23C475AF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", matchCriteriaId: "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", matchCriteriaId: "0A1BC97A-263E-4291-8AEF-02EE4E6031E9", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", matchCriteriaId: "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", matchCriteriaId: "A7DF96F8-BA6A-4780-9CA3-F719B3F81074", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", matchCriteriaId: "DB18C4CE-5917-401E-ACF7-2747084FD36E", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", matchCriteriaId: "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", matchCriteriaId: "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*", matchCriteriaId: "734112B3-1383-4BE3-8721-C0F84566B764", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*", matchCriteriaId: "36B0E40A-84EF-4099-A395-75D6B8CDA196", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", matchCriteriaId: "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", matchCriteriaId: "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", matchCriteriaId: "A7DF96F8-BA6A-4780-9CA3-F719B3F81074", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", matchCriteriaId: "DB18C4CE-5917-401E-ACF7-2747084FD36E", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", matchCriteriaId: "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", matchCriteriaId: "2127D10C-B6F3-4C1D-B9AA-5D78513CC996", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", matchCriteriaId: "AB425562-C0A0-452E-AABE-F70522F15E1A", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", matchCriteriaId: "A7DF96F8-BA6A-4780-9CA3-F719B3F81074", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", matchCriteriaId: "DB18C4CE-5917-401E-ACF7-2747084FD36E", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*", matchCriteriaId: "8EDC4407-7E92-4E60-82F0-0C87D1860D3A", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", matchCriteriaId: "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", matchCriteriaId: "E039CE1F-B988-4741-AE2E-5B36E2AF9688", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", matchCriteriaId: "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*", matchCriteriaId: "A045AC0A-471E-444C-B3B0-4CABC23E8CFB", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*", matchCriteriaId: "28A7FEE9-B473-48A0-B0ED-A5CC1E44194C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", matchCriteriaId: "E039CE1F-B988-4741-AE2E-5B36E2AF9688", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*", matchCriteriaId: "934D4E46-12C1-41DC-A28C-A2C430E965E4", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", matchCriteriaId: "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", matchCriteriaId: "0A1BC97A-263E-4291-8AEF-02EE4E6031E9", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "8FC46499-DB6E-48BF-9334-85EE27AFE7AF", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "83A79DD6-E74E-419F-93F1-323B68502633", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", matchCriteriaId: "61959ACC-B608-4556-92AF-4D94B338907A", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "A9D54EE6-30AF-411C-A285-A4DCB6C6EC06", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "C230D3BF-7FCE-405C-B62E-B9190C995C3C", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", matchCriteriaId: "1FD62DCB-66D1-4CEA-828E-0BD302AC63CA", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "0C3552E0-F793-4CDD-965D-457495475805", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "B2D24C54-F04F-4717-B614-FE67B3ED9DC0", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "D5EC3F68-8F41-4F6B-B2E5-920322A4A321", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", matchCriteriaId: "821614DD-37DD-44E2-A8A4-FE8D23A33C3C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", matchCriteriaId: "E039CE1F-B988-4741-AE2E-5B36E2AF9688", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*", matchCriteriaId: "2D3F18AF-84ED-473B-A8DF-65EB23C475AF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", matchCriteriaId: "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", matchCriteriaId: "0A1BC97A-263E-4291-8AEF-02EE4E6031E9", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", matchCriteriaId: "306B7CE6-8239-4AED-9ED4-4C9F5B349F58", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", matchCriteriaId: "345FCD64-D37B-425B-B64C-8B1640B7E850", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "8FC46499-DB6E-48BF-9334-85EE27AFE7AF", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "83A79DD6-E74E-419F-93F1-323B68502633", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*", matchCriteriaId: "61959ACC-B608-4556-92AF-4D94B338907A", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "A9D54EE6-30AF-411C-A285-A4DCB6C6EC06", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "C230D3BF-7FCE-405C-B62E-B9190C995C3C", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*", matchCriteriaId: "1FD62DCB-66D1-4CEA-828E-0BD302AC63CA", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "0C3552E0-F793-4CDD-965D-457495475805", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*", matchCriteriaId: "B2D24C54-F04F-4717-B614-FE67B3ED9DC0", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*", matchCriteriaId: "D5EC3F68-8F41-4F6B-B2E5-920322A4A321", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", matchCriteriaId: "DB79EE26-FC32-417D-A49C-A1A63165A968", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*", matchCriteriaId: "821614DD-37DD-44E2-A8A4-FE8D23A33C3C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", matchCriteriaId: "E039CE1F-B988-4741-AE2E-5B36E2AF9688", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", matchCriteriaId: "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*", matchCriteriaId: "306B7CE6-8239-4AED-9ED4-4C9F5B349F58", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*", matchCriteriaId: "345FCD64-D37B-425B-B64C-8B1640B7E850", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", matchCriteriaId: "DB79EE26-FC32-417D-A49C-A1A63165A968", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", matchCriteriaId: "E039CE1F-B988-4741-AE2E-5B36E2AF9688", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*", matchCriteriaId: "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*", matchCriteriaId: "734112B3-1383-4BE3-8721-C0F84566B764", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*", matchCriteriaId: "36B0E40A-84EF-4099-A395-75D6B8CDA196", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*", matchCriteriaId: "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*", matchCriteriaId: "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*", matchCriteriaId: "0A1BC97A-263E-4291-8AEF-02EE4E6031E9", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", matchCriteriaId: "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*", matchCriteriaId: "E039CE1F-B988-4741-AE2E-5B36E2AF9688", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", matchCriteriaId: "A7DF96F8-BA6A-4780-9CA3-F719B3F81074", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", matchCriteriaId: "DB18C4CE-5917-401E-ACF7-2747084FD36E", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*", matchCriteriaId: "D400E856-2B2E-4CEA-8CA5-309FDF371CEA", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", matchCriteriaId: "2127D10C-B6F3-4C1D-B9AA-5D78513CC996", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", matchCriteriaId: "AB425562-C0A0-452E-AABE-F70522F15E1A", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*", matchCriteriaId: "42A6DF09-B8E1-414D-97E7-453566055279", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*", matchCriteriaId: "2127D10C-B6F3-4C1D-B9AA-5D78513CC996", vulnerable: false, }, { criteria: "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*", matchCriteriaId: "AB425562-C0A0-452E-AABE-F70522F15E1A", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*", matchCriteriaId: "1DE0C8DD-9C73-4876-8193-068F18074B58", vulnerable: true, }, { criteria: "cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*", matchCriteriaId: "F4E2C6C0-FD91-40D9-B1A4-C1C348A156C7", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", }, ], id: "CVE-2023-29331", lastModified: "2024-11-21T07:56:52.667", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "secure@microsoft.com", type: "Primary", }, ], }, published: "2023-06-14T15:15:09.763", references: [ { source: "secure@microsoft.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, ], sourceIdentifier: "secure@microsoft.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-400", }, ], source: "secure@microsoft.com", type: "Secondary", }, { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
ssa-341067
Vulnerability from csaf_siemens
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited. (TLPv2: TLP:CLEAR)", tlp: { label: "WHITE", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "productcert@siemens.com", name: "Siemens ProductCERT", namespace: "https://www.siemens.com", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, ], title: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1", tracking: { current_release_date: "2024-06-11T00:00:00Z", generator: { engine: { name: "Siemens ProductCERT CSAF Generator", version: "1", }, }, id: "SSA-341067", initial_release_date: "2024-06-11T00:00:00Z", revision_history: [ { date: "2024-06-11T00:00:00Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "interim", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "1", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-44487", }, ], }
SSA-341067
Vulnerability from csaf_siemens
Notes
{ document: { category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Disclosure is not limited. (TLPv2: TLP:CLEAR)", tlp: { label: "WHITE", }, }, lang: "en", notes: [ { category: "summary", text: "Siemens has released a new version for ST7 ScadaConnect and recommends to update to the latest version.", title: "Summary", }, { category: "general", text: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity", title: "General Recommendations", }, { category: "general", text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories", title: "Additional Resources", }, { category: "legal_disclaimer", text: "Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "productcert@siemens.com", name: "Siemens ProductCERT", namespace: "https://www.siemens.com", }, references: [ { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - HTML Version", url: "https://cert-portal.siemens.com/productcert/html/ssa-341067.html", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - CSAF Version", url: "https://cert-portal.siemens.com/productcert/csaf/ssa-341067.json", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - PDF Version", url: "https://cert-portal.siemens.com/productcert/pdf/ssa-341067.pdf", }, { category: "self", summary: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1 - TXT Version", url: "https://cert-portal.siemens.com/productcert/txt/ssa-341067.txt", }, ], title: "SSA-341067: Multiple vulnerabilities in third-party components in ST7 ScadaConnect before V1.1", tracking: { current_release_date: "2024-06-11T00:00:00Z", generator: { engine: { name: "Siemens ProductCERT CSAF Generator", version: "1", }, }, id: "SSA-341067", initial_release_date: "2024-06-11T00:00:00Z", revision_history: [ { date: "2024-06-11T00:00:00Z", legacy_version: "1.0", number: "1", summary: "Publication Date", }, ], status: "interim", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version_range", name: "<V1.1", product: { name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", product_id: "1", product_identification_helper: { model_numbers: [ "6NH7997-5DA10-0AA0", ], }, }, }, ], category: "product_name", name: "ST7 ScadaConnect (6NH7997-5DA10-0AA0)", }, ], category: "vendor", name: "Siemens", }, ], }, vulnerabilities: [ { cve: "CVE-2022-40303", cwe: { id: "CWE-190", name: "Integer Overflow or Wraparound", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40303", }, { cve: "CVE-2022-40304", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2022-40304", }, { cve: "CVE-2023-0464", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0464", }, { cve: "CVE-2023-0465", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "Applications that use a non-default option when verifying certificates may be\r\nvulnerable to an attack from a malicious CA to circumvent certain checks.\r\n\r\nInvalid certificate policies in leaf certificates are silently ignored by\r\nOpenSSL and other certificate policy checks are skipped for that certificate.\r\nA malicious CA could use this to deliberately assert invalid certificate policies\r\nin order to circumvent policy checking on the certificate altogether.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing\r\nthe `-policy` argument to the command line utilities or by calling the\r\n`X509_VERIFY_PARAM_set1_policies()` function.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0465", }, { cve: "CVE-2023-0466", cwe: { id: "CWE-295", name: "Improper Certificate Validation", }, notes: [ { category: "summary", text: "The function X509_VERIFY_PARAM_add0_policy() is documented to\nimplicitly enable the certificate policy check when doing certificate\nverification. However the implementation of the function does not\nenable the check which allows certificates with invalid or incorrect\npolicies to pass the certificate verification.\n\nAs suddenly enabling the policy check could break existing deployments it was\ndecided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy()\nfunction.\n\nInstead the applications that require OpenSSL to perform certificate\npolicy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly\nenable the policy check by calling X509_VERIFY_PARAM_set_flags() with\nthe X509_V_FLAG_POLICY_CHECK flag argument.\n\nCertificate policy checks are disabled by default in OpenSSL and are not\ncommonly used by applications.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-0466", }, { cve: "CVE-2023-3446", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, notes: [ { category: "summary", text: "Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ('p' parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulernable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the '-check' option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-3446", }, { cve: "CVE-2023-5678", cwe: { id: "CWE-754", name: "Improper Check for Unusual or Exceptional Conditions", }, notes: [ { category: "summary", text: "Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the \"-pubcheck\" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-5678", }, { cve: "CVE-2023-21808", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-21808", }, { cve: "CVE-2023-24895", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24895", }, { cve: "CVE-2023-24897", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24897", }, { cve: "CVE-2023-24936", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-24936", }, { cve: "CVE-2023-28260", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET DLL Hijacking Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28260", }, { cve: "CVE-2023-28484", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, notes: [ { category: "summary", text: "In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-28484", }, { cve: "CVE-2023-29331", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29331", }, { cve: "CVE-2023-29469", cwe: { id: "CWE-415", name: "Double Free", }, notes: [ { category: "summary", text: "An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\\0' value).", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-29469", }, { cve: "CVE-2023-32032", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-32032", }, { cve: "CVE-2023-33126", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33126", }, { cve: "CVE-2023-33127", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33127", }, { cve: "CVE-2023-33128", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33128", }, { cve: "CVE-2023-33135", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33135", }, { cve: "CVE-2023-33170", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET and Visual Studio Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-33170", }, { cve: "CVE-2023-35390", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35390", }, { cve: "CVE-2023-35391", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-35391", }, { cve: "CVE-2023-36038", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 8.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36038", }, { cve: "CVE-2023-36049", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.6, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36049", }, { cve: "CVE-2023-36435", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36435", }, { cve: "CVE-2023-36558", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "ASP.NET Core - Security Feature Bypass Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36558", }, { cve: "CVE-2023-36792", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36792", }, { cve: "CVE-2023-36793", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36793", }, { cve: "CVE-2023-36794", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36794", }, { cve: "CVE-2023-36796", cwe: { id: "CWE-311", name: "Missing Encryption of Sensitive Data", }, notes: [ { category: "summary", text: "Visual Studio Remote Code Execution Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36796", }, { cve: "CVE-2023-36799", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-36799", }, { cve: "CVE-2023-38171", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: "Microsoft QUIC Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38171", }, { cve: "CVE-2023-38178", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET Core and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38178", }, { cve: "CVE-2023-38180", cwe: { id: "CWE-20", name: "Improper Input Validation", }, notes: [ { category: "summary", text: ".NET and Visual Studio Denial of Service Vulnerability", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-38180", }, { cve: "CVE-2023-39615", cwe: { id: "CWE-119", name: "Improper Restriction of Operations within the Bounds of a Memory Buffer", }, notes: [ { category: "summary", text: "Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support the legacy SAX1 interface with custom callbacks; there is a crash even without crafted input.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-39615", }, { cve: "CVE-2023-44487", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "summary", text: "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.", title: "Summary", }, ], product_status: { known_affected: [ "1", ], }, remediations: [ { category: "vendor_fix", details: "Update to V1.1 or later version", product_ids: [ "1", ], url: "https://support.industry.siemens.com/cs/ww/en/view/109955597/", }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", ], }, ], title: "CVE-2023-44487", }, ], }
WID-SEC-W-2023-1446
Vulnerability from csaf_certbund
Notes
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform für kollaborative Softwareprojekte.\r\nNuGet ist ein Programm für die Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-1446 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json", }, { category: "self", summary: "WID-SEC-2023-1446 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446", }, { category: "external", summary: "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26", url: "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-2 vom 2023-06-23", url: "https://ubuntu.com/security/notices/USN-6161-2", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3592.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3593.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16", url: "https://linux.oracle.com/errata/ELSA-2023-3582.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15", url: "http://linux.oracle.com/errata/ELSA-2023-3581.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-1 vom 2023-06-13", url: "https://ubuntu.com/security/notices/USN-6161-1", }, { category: "external", summary: "Microsoft Leitfaden für Sicherheitsupdates vom 2023-06-13", url: "https://msrc.microsoft.com/update-guide", }, ], source_lang: "en-US", title: "Microsoft Developer Tools: Mehrere Schwachstellen", tracking: { current_release_date: "2023-09-25T22:00:00.000+00:00", generator: { date: "2024-08-15T17:52:25.204+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-1446", initial_release_date: "2023-06-13T22:00:00.000+00:00", revision_history: [ { date: "2023-06-13T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-06-14T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-06-15T22:00:00.000+00:00", number: "3", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-18T22:00:00.000+00:00", number: "4", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-25T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Ubuntu aufgenommen", }, { date: "2023-08-02T22:00:00.000+00:00", number: "6", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-09-25T22:00:00.000+00:00", number: "7", summary: "Neue Updates von HITACHI aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Hitachi Storage Virtual Storage Platform", product: { name: "Hitachi Storage Virtual Storage Platform", product_id: "T020487", product_identification_helper: { cpe: "cpe:/h:hitachi:storage:virtual_storage_platform", }, }, }, ], category: "vendor", name: "Hitachi", }, { branches: [ { branches: [ { category: "product_name", name: "Microsoft .NET Framework 4.8.1", product: { name: "Microsoft .NET Framework 4.8.1", product_id: "1273212", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5.1", product: { name: "Microsoft .NET Framework 3.5.1", product_id: "130815", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.6.2", product: { name: "Microsoft .NET Framework 4.6.2", product_id: "336763", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.6.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7", product: { name: "Microsoft .NET Framework 4.7", product_id: "432554", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.1", product: { name: "Microsoft .NET Framework 4.7.1", product_id: "432555", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.2", product: { name: "Microsoft .NET Framework 4.7.2", product_id: "432556", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.8", product: { name: "Microsoft .NET Framework 4.8", product_id: "432557", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5", product: { name: "Microsoft .NET Framework 3.5", product_id: "834793", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5:-", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 2.0 SP2", product: { name: "Microsoft .NET Framework 2.0 SP2", product_id: "T021515", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:2.0_sp2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.0 SP2", product: { name: "Microsoft .NET Framework 3.0 SP2", product_id: "T024564", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.0_sp2", }, }, }, ], category: "product_name", name: ".NET Framework", }, { category: "product_name", name: "Microsoft Azure DevOps Server 2020.1.2", product: { name: "Microsoft Azure DevOps Server 2020.1.2", product_id: "1342801", product_identification_helper: { cpe: "cpe:/o:microsoft:azure_devops_server:2020.1.2:-", }, }, }, { branches: [ { category: "product_name", name: "Microsoft NuGet 6.0.4", product: { name: "Microsoft NuGet 6.0.4", product_id: "T028096", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.0.4", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.2.3", product: { name: "Microsoft NuGet 6.2.3", product_id: "T028097", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.2.3", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.3.2", product: { name: "Microsoft NuGet 6.3.2", product_id: "T028098", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.3.2", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.4.1", product: { name: "Microsoft NuGet 6.4.1", product_id: "T028099", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.4.1", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.5.0", product: { name: "Microsoft NuGet 6.5.0", product_id: "T028100", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.5.0", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.6.0", product: { name: "Microsoft NuGet 6.6.0", product_id: "T028101", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.6.0", }, }, }, ], category: "product_name", name: "NuGet", }, { category: "product_name", name: "Microsoft Visual Studio 2013 Update 5", product: { name: "Microsoft Visual Studio 2013 Update 5", product_id: "T014512", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2013:update_5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2015 Update 3", product: { name: "Microsoft Visual Studio 2015 Update 3", product_id: "T014511", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2015:update_3", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2017 version 15.9", product: { name: "Microsoft Visual Studio 2017 version 15.9", product_id: "T015502", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2017:version_15.9", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2019 version 16.11", product: { name: "Microsoft Visual Studio 2019 version 16.11", product_id: "T024563", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2019:version_16.11", }, }, }, { branches: [ { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.0", product: { name: "Microsoft Visual Studio 2022 version 17.0", product_id: "T026754", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.0", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.2", product: { name: "Microsoft Visual Studio 2022 version 17.2", product_id: "T028102", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.2", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.4", product: { name: "Microsoft Visual Studio 2022 version 17.4", product_id: "T028103", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.4", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.5", product: { name: "Microsoft Visual Studio 2022 version 17.5", product_id: "T028104", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.6", product: { name: "Microsoft Visual Studio 2022 version 17.6", product_id: "T028105", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.6", }, }, }, ], category: "product_name", name: "Visual Studio 2022", }, { category: "product_name", name: "Microsoft Visual Studio Code", product: { name: "Microsoft Visual Studio Code", product_id: "699261", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_code:-", }, }, }, ], category: "vendor", name: "Microsoft", }, { branches: [ { category: "product_name", name: "Oracle Linux", product: { name: "Oracle Linux", product_id: "T004914", product_identification_helper: { cpe: "cpe:/o:oracle:linux:-", }, }, }, ], category: "vendor", name: "Oracle", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, ], category: "vendor", name: "Red Hat", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2023-33144", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33144", }, { cve: "CVE-2023-33141", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33141", }, { cve: "CVE-2023-33139", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33139", }, { cve: "CVE-2023-33135", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33135", }, { cve: "CVE-2023-33128", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33128", }, { cve: "CVE-2023-33126", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33126", }, { cve: "CVE-2023-32032", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32032", }, { cve: "CVE-2023-32030", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32030", }, { cve: "CVE-2023-29353", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29353", }, { cve: "CVE-2023-29337", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29337", }, { cve: "CVE-2023-29331", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29331", }, { cve: "CVE-2023-29326", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29326", }, { cve: "CVE-2023-29012", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29012", }, { cve: "CVE-2023-29011", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29011", }, { cve: "CVE-2023-29007", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29007", }, { cve: "CVE-2023-27911", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27911", }, { cve: "CVE-2023-27910", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27910", }, { cve: "CVE-2023-27909", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27909", }, { cve: "CVE-2023-25815", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25815", }, { cve: "CVE-2023-25652", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25652", }, { cve: "CVE-2023-24936", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24936", }, { cve: "CVE-2023-24897", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24897", }, { cve: "CVE-2023-24895", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24895", }, { cve: "CVE-2023-21569", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21569", }, { cve: "CVE-2023-21565", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21565", }, ], }
wid-sec-w-2023-1446
Vulnerability from csaf_certbund
Notes
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform für kollaborative Softwareprojekte.\r\nNuGet ist ein Programm für die Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-1446 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json", }, { category: "self", summary: "WID-SEC-2023-1446 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446", }, { category: "external", summary: "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26", url: "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4449", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03", url: "https://access.redhat.com/errata/RHSA-2023:4448", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-2 vom 2023-06-23", url: "https://ubuntu.com/security/notices/USN-6161-2", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3592.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17", url: "https://linux.oracle.com/errata/ELSA-2023-3593.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16", url: "https://linux.oracle.com/errata/ELSA-2023-3582.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15", url: "http://linux.oracle.com/errata/ELSA-2023-3581.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3593", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3581", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3580", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3582", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14", url: "https://access.redhat.com/errata/RHSA-2023:3592", }, { category: "external", summary: "Ubuntu Security Notice USN-6161-1 vom 2023-06-13", url: "https://ubuntu.com/security/notices/USN-6161-1", }, { category: "external", summary: "Microsoft Leitfaden für Sicherheitsupdates vom 2023-06-13", url: "https://msrc.microsoft.com/update-guide", }, ], source_lang: "en-US", title: "Microsoft Developer Tools: Mehrere Schwachstellen", tracking: { current_release_date: "2023-09-25T22:00:00.000+00:00", generator: { date: "2024-08-15T17:52:25.204+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-1446", initial_release_date: "2023-06-13T22:00:00.000+00:00", revision_history: [ { date: "2023-06-13T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-06-14T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-06-15T22:00:00.000+00:00", number: "3", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-18T22:00:00.000+00:00", number: "4", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2023-06-25T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Ubuntu aufgenommen", }, { date: "2023-08-02T22:00:00.000+00:00", number: "6", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-09-25T22:00:00.000+00:00", number: "7", summary: "Neue Updates von HITACHI aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Hitachi Storage Virtual Storage Platform", product: { name: "Hitachi Storage Virtual Storage Platform", product_id: "T020487", product_identification_helper: { cpe: "cpe:/h:hitachi:storage:virtual_storage_platform", }, }, }, ], category: "vendor", name: "Hitachi", }, { branches: [ { branches: [ { category: "product_name", name: "Microsoft .NET Framework 4.8.1", product: { name: "Microsoft .NET Framework 4.8.1", product_id: "1273212", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5.1", product: { name: "Microsoft .NET Framework 3.5.1", product_id: "130815", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.6.2", product: { name: "Microsoft .NET Framework 4.6.2", product_id: "336763", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.6.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7", product: { name: "Microsoft .NET Framework 4.7", product_id: "432554", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.1", product: { name: "Microsoft .NET Framework 4.7.1", product_id: "432555", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.1", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.7.2", product: { name: "Microsoft .NET Framework 4.7.2", product_id: "432556", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.7.2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 4.8", product: { name: "Microsoft .NET Framework 4.8", product_id: "432557", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:4.8", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.5", product: { name: "Microsoft .NET Framework 3.5", product_id: "834793", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.5:-", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 2.0 SP2", product: { name: "Microsoft .NET Framework 2.0 SP2", product_id: "T021515", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:2.0_sp2", }, }, }, { category: "product_name", name: "Microsoft .NET Framework 3.0 SP2", product: { name: "Microsoft .NET Framework 3.0 SP2", product_id: "T024564", product_identification_helper: { cpe: "cpe:/a:microsoft:.net_framework:3.0_sp2", }, }, }, ], category: "product_name", name: ".NET Framework", }, { category: "product_name", name: "Microsoft Azure DevOps Server 2020.1.2", product: { name: "Microsoft Azure DevOps Server 2020.1.2", product_id: "1342801", product_identification_helper: { cpe: "cpe:/o:microsoft:azure_devops_server:2020.1.2:-", }, }, }, { branches: [ { category: "product_name", name: "Microsoft NuGet 6.0.4", product: { name: "Microsoft NuGet 6.0.4", product_id: "T028096", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.0.4", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.2.3", product: { name: "Microsoft NuGet 6.2.3", product_id: "T028097", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.2.3", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.3.2", product: { name: "Microsoft NuGet 6.3.2", product_id: "T028098", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.3.2", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.4.1", product: { name: "Microsoft NuGet 6.4.1", product_id: "T028099", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.4.1", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.5.0", product: { name: "Microsoft NuGet 6.5.0", product_id: "T028100", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.5.0", }, }, }, { category: "product_name", name: "Microsoft NuGet 6.6.0", product: { name: "Microsoft NuGet 6.6.0", product_id: "T028101", product_identification_helper: { cpe: "cpe:/a:microsoft:nuget:6.6.0", }, }, }, ], category: "product_name", name: "NuGet", }, { category: "product_name", name: "Microsoft Visual Studio 2013 Update 5", product: { name: "Microsoft Visual Studio 2013 Update 5", product_id: "T014512", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2013:update_5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2015 Update 3", product: { name: "Microsoft Visual Studio 2015 Update 3", product_id: "T014511", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2015:update_3", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2017 version 15.9", product: { name: "Microsoft Visual Studio 2017 version 15.9", product_id: "T015502", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2017:version_15.9", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2019 version 16.11", product: { name: "Microsoft Visual Studio 2019 version 16.11", product_id: "T024563", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2019:version_16.11", }, }, }, { branches: [ { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.0", product: { name: "Microsoft Visual Studio 2022 version 17.0", product_id: "T026754", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.0", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.2", product: { name: "Microsoft Visual Studio 2022 version 17.2", product_id: "T028102", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.2", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.4", product: { name: "Microsoft Visual Studio 2022 version 17.4", product_id: "T028103", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.4", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.5", product: { name: "Microsoft Visual Studio 2022 version 17.5", product_id: "T028104", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.5", }, }, }, { category: "product_name", name: "Microsoft Visual Studio 2022 version 17.6", product: { name: "Microsoft Visual Studio 2022 version 17.6", product_id: "T028105", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_2022:version_17.6", }, }, }, ], category: "product_name", name: "Visual Studio 2022", }, { category: "product_name", name: "Microsoft Visual Studio Code", product: { name: "Microsoft Visual Studio Code", product_id: "699261", product_identification_helper: { cpe: "cpe:/a:microsoft:visual_studio_code:-", }, }, }, ], category: "vendor", name: "Microsoft", }, { branches: [ { category: "product_name", name: "Oracle Linux", product: { name: "Oracle Linux", product_id: "T004914", product_identification_helper: { cpe: "cpe:/o:oracle:linux:-", }, }, }, ], category: "vendor", name: "Oracle", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, ], category: "vendor", name: "Red Hat", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2023-33144", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33144", }, { cve: "CVE-2023-33141", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33141", }, { cve: "CVE-2023-33139", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33139", }, { cve: "CVE-2023-33135", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33135", }, { cve: "CVE-2023-33128", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33128", }, { cve: "CVE-2023-33126", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-33126", }, { cve: "CVE-2023-32032", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32032", }, { cve: "CVE-2023-32030", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-32030", }, { cve: "CVE-2023-29353", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29353", }, { cve: "CVE-2023-29337", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29337", }, { cve: "CVE-2023-29331", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29331", }, { cve: "CVE-2023-29326", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29326", }, { cve: "CVE-2023-29012", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29012", }, { cve: "CVE-2023-29011", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29011", }, { cve: "CVE-2023-29007", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-29007", }, { cve: "CVE-2023-27911", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27911", }, { cve: "CVE-2023-27910", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27910", }, { cve: "CVE-2023-27909", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-27909", }, { cve: "CVE-2023-25815", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25815", }, { cve: "CVE-2023-25652", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-25652", }, { cve: "CVE-2023-24936", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24936", }, { cve: "CVE-2023-24897", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24897", }, { cve: "CVE-2023-24895", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-24895", }, { cve: "CVE-2023-21569", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21569", }, { cve: "CVE-2023-21565", notes: [ { category: "description", text: "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "432555", "432556", "T028100", "432554", "67646", "432557", "T014511", "T015502", "T014512", "130815", "T004914", "T020487", "T021515", "1342801", "T024564", "T024563", "T028105", "T028103", "T028104", "T028101", "T028102", "T028099", "T028097", "T028098", "T028096", "834793", "336763", "699261", "1273212", "T000126", "T026754", ], }, release_date: "2023-06-13T22:00:00.000+00:00", title: "CVE-2023-21565", }, ], }
msrc_cve-2023-29331
Vulnerability from csaf_microsoft
Notes
{ document: { acknowledgments: [ { names: [ "Kevin Jones, GitHub", ], }, ], aggregate_severity: { namespace: "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Public", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en-US", notes: [ { category: "general", text: "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle", title: "Additional Resources", }, { category: "legal_disclaimer", text: "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.", title: "Disclaimer", }, { category: "general", text: "Required. The vulnerability documented by this CVE requires customer action to resolve.", title: "Customer Action", }, ], publisher: { category: "vendor", contact_details: "secure@microsoft.com", name: "Microsoft Security Response Center", namespace: "https://msrc.microsoft.com", }, references: [ { category: "self", summary: "CVE-2023-29331 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability - HTML", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, { category: "self", summary: "CVE-2023-29331 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability - CSAF", url: "https://msrc.microsoft.com/csaf/2023/msrc_cve-2023-29331.json", }, { category: "external", summary: "Microsoft Exploitability Index", url: "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1", }, { category: "external", summary: "Microsoft Support Lifecycle", url: "https://support.microsoft.com/lifecycle", }, { category: "external", summary: "Common Vulnerability Scoring System", url: "https://www.first.org/cvss", }, ], title: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", tracking: { current_release_date: "2023-06-29T07:00:00.000Z", generator: { date: "2025-01-01T01:43:29.862Z", engine: { name: "MSRC Generator", version: "1.0", }, }, id: "msrc_CVE-2023-29331", initial_release_date: "2023-06-13T07:00:00.000Z", revision_history: [ { date: "2023-06-13T07:00:00.000Z", legacy_version: "1", number: "1", summary: "Information published.", }, { date: "2023-06-29T07:00:00.000Z", legacy_version: "2", number: "2", summary: "Revised the Security Updates table to include PowerShell 7.2 and PowerShell 7.3 because these versions of PowerShell 7 are affected by this vulnerability. See [https://github.com/PowerShell/Announcements/issues/44](https://github.com/PowerShell/Announcements/issues/44) for more information.", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { category: "product_version_range", name: "<6.0.18", product: { name: ".NET 6.0 <6.0.18", product_id: "24", }, }, { category: "product_version", name: "6.0.18", product: { name: ".NET 6.0 6.0.18", product_id: "12009", }, }, ], category: "product_name", name: ".NET 6.0", }, { branches: [ { category: "product_version_range", name: "<7.0.7", product: { name: ".NET 7.0 <7.0.7", product_id: "3", }, }, { category: "product_version", name: "7.0.7", product: { name: ".NET 7.0 7.0.7", product_id: "12130", }, }, ], category: "product_name", name: ".NET 7.0", }, { branches: [ { category: "product_version_range", name: "<17.0.22", product: { name: "Microsoft Visual Studio 2022 version 17.0 <17.0.22", product_id: "26", }, }, { category: "product_version", name: "17.0.22", product: { name: "Microsoft Visual Studio 2022 version 17.0 17.0.22", product_id: "11969", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.0", }, { branches: [ { category: "product_version_range", name: "<17.2.16", product: { name: "Microsoft Visual Studio 2022 version 17.2 <17.2.16", product_id: "23", }, }, { category: "product_version", name: "17.2.16", product: { name: "Microsoft Visual Studio 2022 version 17.2 17.2.16", product_id: "12051", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.2", }, { branches: [ { category: "product_version_range", name: "<17.4.8", product: { name: "Microsoft Visual Studio 2022 version 17.4 <17.4.8", product_id: "4", }, }, { category: "product_version", name: "17.4.8", product: { name: "Microsoft Visual Studio 2022 version 17.4 17.4.8", product_id: "12129", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.4", }, { branches: [ { category: "product_version_range", name: "<17.6.3", product: { name: "Microsoft Visual Studio 2022 version 17.6 <17.6.3", product_id: "1", }, }, { category: "product_version", name: "17.6.3", product: { name: "Microsoft Visual Studio 2022 version 17.6 17.6.3", product_id: "12187", }, }, ], category: "product_name", name: "Microsoft Visual Studio 2022 version 17.6", }, { branches: [ { category: "product_version_range", name: "<7.2.12", product: { name: "PowerShell 7.2 <7.2.12", product_id: "25", }, }, { category: "product_version", name: "7.2.12", product: { name: "PowerShell 7.2 7.2.12", product_id: "11970", }, }, ], category: "product_name", name: "PowerShell 7.2", }, { branches: [ { category: "product_version_range", name: "<7.3.5", product: { name: "PowerShell 7.3 <7.3.5", product_id: "2", }, }, { category: "product_version", name: "7.3.5", product: { name: "PowerShell 7.3 7.3.5", product_id: "12131", }, }, ], category: "product_name", name: "PowerShell 7.3", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "56", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10378", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "57", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10816", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "42", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11923", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "43", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11571", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "58", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10379", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "44", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11572", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "59", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10852", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "60", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10855", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "45", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11568", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "61", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10543", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "62", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10853", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "63", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10051", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "64", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10483", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "46", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11569", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "47", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11924", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 <4.8.4644.0", product_id: "65", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 4.8 4.8.4644.0", product_id: "11650-10049", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "48", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11929", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "49", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11927", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "50", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11926", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "51", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11930", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "52", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-12097", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "53", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-11931", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "54", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-12098", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0", product_id: "55", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0", product_id: "11676-12099", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0", product_id: "37", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0", product_id: "11677-11568", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0", product_id: "38", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0", product_id: "11677-11569", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0", product_id: "39", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0", product_id: "11677-11570", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0", product_id: "40", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0", product_id: "11677-11571", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0", product_id: "41", }, }, { category: "product_version", name: "4.8.4644.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0", product_id: "11677-11572", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.7.2", }, { branches: [ { category: "product_version_range", name: "<10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989", product_id: "33", }, }, { category: "product_version", name: "10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989", product_id: "11723-10852", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989", product_id: "34", }, }, { category: "product_version", name: "10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989", product_id: "11723-10853", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989", product_id: "35", }, }, { category: "product_version", name: "10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989", product_id: "11723-10816", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989", product_id: "36", }, }, { category: "product_version", name: "10.0.14393.5989", product: { name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989", product_id: "11723-10855", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.7.4050.0", product_id: "27", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.7.4050.0", product_id: "11863-10051", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.7.4050.0", product_id: "28", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.7.4050.0", product_id: "11863-10049", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.7.4050.0", product_id: "29", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.7.4050.0", product_id: "11863-10379", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.7.4050.0", product_id: "30", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.7.4050.0", product_id: "11863-10378", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.7.4050.0", product_id: "31", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.7.4050.0", product_id: "11863-10483", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.7.4050.0", product_id: "32", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.7.4050.0", product_id: "11863-10543", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "11", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11923", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "12", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11924", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "13", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11927", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "14", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11926", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "15", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11929", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "16", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11931", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "17", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-11930", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "18", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-12085", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "19", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-12086", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "20", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-12097", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "21", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-12098", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0", product_id: "22", }, }, { category: "product_version", name: "4.8.9166.0", product: { name: "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0", product_id: "12079-12099", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 AND 4.8.1", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 <4.7.4050.0", product_id: "7", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 4.7.4050.0", product_id: "12115-9312", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 <4.7.4050.0", product_id: "8", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 4.7.4050.0", product_id: "12115-10287", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 <4.7.4050.0", product_id: "9", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 4.7.4050.0", product_id: "12115-9318", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 <4.7.4050.0", product_id: "10", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 4.6.2 4.7.4050.0", product_id: "12115-9344", }, }, ], category: "product_name", name: "Microsoft .NET Framework 4.6.2", }, { branches: [ { category: "product_version_range", name: "<10.0.10240.19983", product: { name: "Microsoft .NET Framework 3.5 and 4.6.2 <10.0.10240.19983", product_id: "5", }, }, { category: "product_version", name: "10.0.10240.19983", product: { name: "Microsoft .NET Framework 3.5 and 4.6.2 10.0.10240.19983", product_id: "12128-10729", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 and 4.6.2", }, { branches: [ { category: "product_version_range", name: "<10.0.10240.19983", product: { name: "Microsoft .NET Framework 3.5 and 4.6.2 <10.0.10240.19983", product_id: "6", }, }, { category: "product_version", name: "10.0.10240.19983", product: { name: "Microsoft .NET Framework 3.5 and 4.6.2 10.0.10240.19983", product_id: "12128-10735", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5 and 4.6.2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 2.0 Service Pack 2 <4.7.4050.0", product_id: "68", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 2.0 Service Pack 2 4.7.4050.0", product_id: "9292-9318", }, }, ], category: "product_name", name: "Microsoft .NET Framework 2.0 Service Pack 2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 2.0 Service Pack 2 <4.7.4050.0", product_id: "69", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 2.0 Service Pack 2 4.7.4050.0", product_id: "9292-9312", }, }, ], category: "product_name", name: "Microsoft .NET Framework 2.0 Service Pack 2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 3.0 Service Pack 2 <4.7.4050.0", product_id: "70", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 3.0 Service Pack 2 4.7.4050.0", product_id: "9195-9312", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.0 Service Pack 2", }, { branches: [ { category: "product_version_range", name: "<4.7.4050.0", product: { name: "Microsoft .NET Framework 3.0 Service Pack 2 <4.7.4050.0", product_id: "71", }, }, { category: "product_version", name: "4.7.4050.0", product: { name: "Microsoft .NET Framework 3.0 Service Pack 2 4.7.4050.0", product_id: "9195-9318", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.0 Service Pack 2", }, { branches: [ { category: "product_version_range", name: "<3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970", product_id: "72", }, }, { category: "product_version", name: "3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970", product_id: "2472-10379", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5", }, { branches: [ { category: "product_version_range", name: "<3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970", product_id: "73", }, }, { category: "product_version", name: "3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970", product_id: "2472-10483", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5", }, { branches: [ { category: "product_version_range", name: "<3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970", product_id: "74", }, }, { category: "product_version", name: "3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970", product_id: "2472-10378", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5", }, { branches: [ { category: "product_version_range", name: "<3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970", product_id: "75", }, }, { category: "product_version", name: "3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970", product_id: "2472-10543", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5", }, { branches: [ { category: "product_version_range", name: "<3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5.1 <3.0.6920.8954; 2.0.50727.8970", product_id: "66", }, }, { category: "product_version", name: "3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5.1 3.0.6920.8954; 2.0.50727.8970", product_id: "9495-10051", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5.1", }, { branches: [ { category: "product_version_range", name: "<3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5.1 <3.0.6920.8954; 2.0.50727.8970", product_id: "67", }, }, { category: "product_version", name: "3.0.6920.8954; 2.0.50727.8970", product: { name: "Microsoft .NET Framework 3.5.1 3.0.6920.8954; 2.0.50727.8970", product_id: "9495-10049", }, }, ], category: "product_name", name: "Microsoft .NET Framework 3.5.1", }, ], }, vulnerabilities: [ { cve: "CVE-2023-29331", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, notes: [ { category: "general", text: "Microsoft", title: "Assigning CNA", }, ], product_status: { fixed: [ "11650-10049", "11650-10051", "11650-10378", "11650-10379", "11650-10483", "11650-10543", "11650-10816", "11650-10852", "11650-10853", "11650-10855", "11676-11568", "11676-11569", "11676-11571", "11676-11572", "11676-11923", "11676-11924", "11676-11926", "11676-11927", "11676-11929", "11676-11930", "11676-11931", "11676-12097", "11676-12098", "11676-12099", "11677-11568", "11677-11569", "11677-11570", "11677-11571", "11677-11572", "11723-10816", "11723-10852", "11723-10853", "11723-10855", "11863-10049", "11863-10051", "11863-10378", "11863-10379", "11863-10483", "11863-10543", "11969", "11970", "12009", "12051", "12079-11923", "12079-11924", "12079-11926", "12079-11927", "12079-11929", "12079-11930", "12079-11931", "12079-12085", "12079-12086", "12079-12097", "12079-12098", "12079-12099", "12115-10287", "12115-9312", "12115-9318", "12115-9344", "12128-10729", "12128-10735", "12129", "12130", "12131", "12187", "2472-10378", "2472-10379", "2472-10483", "2472-10543", "9195-9312", "9195-9318", "9292-9312", "9292-9318", "9495-10049", "9495-10051", ], known_affected: [ "1", "2", "3", "4", "5", "6", "7", "8", "9", "10", "11", "12", "13", "14", "15", "16", "17", "18", "19", "20", "21", "22", "23", "24", "25", "26", "27", "28", "29", "30", "31", "32", "33", "34", "35", "36", "37", "38", "39", "40", "41", "42", "43", "44", "45", "46", "47", "48", "49", "50", "51", "52", "53", "54", "55", "56", "57", "58", "59", "60", "61", "62", "63", "64", "65", "66", "67", "68", "69", "70", "71", "72", "73", "74", "75", ], }, references: [ { category: "self", summary: "CVE-2023-29331 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability - HTML", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, { category: "self", summary: "CVE-2023-29331 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability - CSAF", url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331", }, ], remediations: [ { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "6.0.18:Security Update:https://support.microsoft.com/help/5027797", product_ids: [ "24", ], url: "https://support.microsoft.com/help/5027797", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "7.0.7:Security Update:https://support.microsoft.com/help/5027798", product_ids: [ "3", ], url: "https://support.microsoft.com/help/5027798", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.0.22:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes-v17.0", product_ids: [ "26", ], url: "https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes-v17.0", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.2.16:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes", product_ids: [ "23", ], url: "https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.4.8:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", product_ids: [ "4", ], url: "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "17.6.3:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", product_ids: [ "1", ], url: "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "7.2.12:Security Update:https://github.com/PowerShell/Announcements/issues/44", product_ids: [ "25", ], url: "https://github.com/PowerShell/Announcements/issues/44", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "7.3.5:Security Update:https://github.com/PowerShell/Announcements/issues/44", product_ids: [ "2", ], url: "https://github.com/PowerShell/Announcements/issues/44", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Monthly Rollup:https://support.microsoft.com/help/5027541", product_ids: [ "56", "58", ], url: "https://support.microsoft.com/help/5027541", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Only:https://support.microsoft.com/help/5027532", product_ids: [ "56", "58", ], url: "https://support.microsoft.com/help/5027532", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027123", product_ids: [ "57", "59", "60", "62", ], url: "https://support.microsoft.com/help/5027123", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027544", product_ids: [ "42", "47", ], url: "https://support.microsoft.com/help/5027544", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027536", product_ids: [ "43", "44", "45", "46", "38", ], url: "https://support.microsoft.com/help/5027536", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Monthly Rollup:https://support.microsoft.com/help/5027542", product_ids: [ "61", "64", ], url: "https://support.microsoft.com/help/5027542", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Only:https://support.microsoft.com/help/5027533", product_ids: [ "61", "64", ], url: "https://support.microsoft.com/help/5027533", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Monthly Rollup:https://support.microsoft.com/help/5027540", product_ids: [ "63", "65", ], url: "https://support.microsoft.com/help/5027540", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Only:https://support.microsoft.com/help/5027531", product_ids: [ "63", "65", ], url: "https://support.microsoft.com/help/5027531", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027537", product_ids: [ "48", "51", "53", ], url: "https://support.microsoft.com/help/5027537", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027539", product_ids: [ "49", "50", ], url: "https://support.microsoft.com/help/5027539", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027538", product_ids: [ "52", "54", "55", ], url: "https://support.microsoft.com/help/5027538", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.4050.0:Security Update:https://support.microsoft.com/help/5027536", product_ids: [ "37", "39", "40", "41", ], url: "https://support.microsoft.com/help/5027536", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "10.0.14393.5989:Security Update:https://support.microsoft.com/help/5027219", product_ids: [ "33", "34", "35", "36", ], url: "https://support.microsoft.com/help/5027219", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.04043.0:Monthly Rollup:https://support.microsoft.com/help/5027540", product_ids: [ "27", "28", ], url: "https://support.microsoft.com/help/5027540", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.4050.0:Security Only:https://support.microsoft.com/help/5027531", product_ids: [ "27", "28", ], url: "https://support.microsoft.com/help/5027531", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.04043.0:Monthly Rollup:https://support.microsoft.com/help/5027541", product_ids: [ "29", "30", ], url: "https://support.microsoft.com/help/5027541", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.4050.0:Security Only:https://support.microsoft.com/help/5027532", product_ids: [ "29", "30", ], url: "https://support.microsoft.com/help/5027532", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.04043.0:Monthly Rollup:https://support.microsoft.com/help/5027542", product_ids: [ "31", "32", ], url: "https://support.microsoft.com/help/5027542", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.4050.0:Security Only:https://support.microsoft.com/help/5027533", product_ids: [ "31", "32", ], url: "https://support.microsoft.com/help/5027533", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027544", product_ids: [ "11", "12", ], url: "https://support.microsoft.com/help/5027544", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027539", product_ids: [ "13", "14", ], url: "https://support.microsoft.com/help/5027539", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027537", product_ids: [ "15", "16", "17", ], url: "https://support.microsoft.com/help/5027537", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027119", product_ids: [ "18", "19", ], url: "https://support.microsoft.com/help/5027119", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027538", product_ids: [ "20", "21", "22", ], url: "https://support.microsoft.com/help/5027538", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.04043.0:Monthly Rollup:https://support.microsoft.com/help/5027543", product_ids: [ "7", "8", "9", "10", ], url: "https://support.microsoft.com/help/5027543", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "4.7.4050.0:Security Only:https://support.microsoft.com/help/5027534", product_ids: [ "7", "8", "9", "10", "68", "71", ], url: "https://support.microsoft.com/help/5027534", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "10.0.10240.19983:Security Update:https://support.microsoft.com/help/5027230", product_ids: [ "5", "6", ], url: "https://support.microsoft.com/help/5027230", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027543", product_ids: [ "68", "69", "70", "71", ], url: "https://support.microsoft.com/help/5027543", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027534", product_ids: [ "69", "70", ], url: "https://support.microsoft.com/help/5027534", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027541", product_ids: [ "72", "74", ], url: "https://support.microsoft.com/help/5027541", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027532", product_ids: [ "72", "74", ], url: "https://support.microsoft.com/help/5027532", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027542", product_ids: [ "73", "75", ], url: "https://support.microsoft.com/help/5027542", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027533", product_ids: [ "73", "75", ], url: "https://support.microsoft.com/help/5027533", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027540", product_ids: [ "66", "67", ], url: "https://support.microsoft.com/help/5027540", }, { category: "vendor_fix", date: "2023-06-13T07:00:00.000Z", details: "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027531", product_ids: [ "66", "67", ], url: "https://support.microsoft.com/help/5027531", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", environmentalsScore: 0, exploitCodeMaturity: "PROOF_OF_CONCEPT", integrityImpact: "NONE", privilegesRequired: "NONE", remediationLevel: "OFFICIAL_FIX", reportConfidence: "CONFIRMED", scope: "UNCHANGED", temporalScore: 6.7, userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", version: "3.1", }, products: [ "1", "2", "3", "4", "5", "6", "7", "8", "9", "10", "11", "12", "13", "14", "15", "16", "17", "18", "19", "20", "21", "22", "23", "24", "25", "26", "27", "28", "29", "30", "31", "32", "33", "34", "35", "36", "37", "38", "39", "40", "41", "42", "43", "44", "45", "46", "47", "48", "49", "50", "51", "52", "53", "54", "55", "56", "57", "58", "59", "60", "61", "62", "63", "64", "65", "66", "67", "68", "69", "70", "71", "72", "73", "74", "75", ], }, ], threats: [ { category: "impact", details: "Denial of Service", }, { category: "exploit_status", details: "Exploited:No;Latest Software Release:Exploitation Less Likely", }, ], title: ".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability", }, ], }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.